Hi!
I am representing Tuxcare ELS team. We would like to provide our advisories for OSV, but I can't find any step-by-step guidelines for opensource maintainers. Do you have some?
I am a little bit lost in all the information you provide. Could you answer a couple of questions, please?
1. How should I provide access to vulnerabilities in OSV format? Should it be some kind of repository, bucket, or an API?
2. How can one request its advisories to be added to OSV portal? Is there some process of application? Whom should I contact?
3. Should I write an importer extension for supporting our information myself or is it done my someone else?
Thanks for your efforts,
Nikita Ivanov, C Developer
--
You received this message because you are subscribed to the Google Groups "osv-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to osv-discuss...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/osv-discuss/fe6cc614-374e-4947-aab5-69f332c14368n%40googlegroups.com.
This email is confidential. If you are not the right addressee, please inform the sender and please erase this email including any attachments.
Hi!
Thanks for your reply. I have read an importer source code in order to figure out what you said, so the response was late indeed :(
Nevertheless, I'll try to sum up my thoughts about user experience, but memories are a little bit vague by now.
We are working on creating a Git repository by now and will contact you later as soon as we finish.