Thanks for pointing out the license issue; there is a willingness to change
this (it's currently this way because Mitre's own draft tools are the same
license). I'll work on that. For the demo/show&tell i'll just host it on
my local machine.
thanks, Mark
On Wed, Aug 21, 2019 at 3:59 PM sebb wr
On Wed, 21 Aug 2019 at 11:55, Mark J. Cox wrote:
>
> > Many of the files have very long lines, so will be difficult to maintain.
>
> The Vulnogram tool is a nodejs app and the standalone files are generated
> using a nodejs script. I was intending to just check in the compiled files
> for now.
On Wed, Aug 21, 2019 at 1:29 PM Sam Ruby wrote:
> On Wed, Aug 21, 2019 at 6:55 AM Mark J. Cox wrote:
> >
> > > Many of the files have very long lines, so will be difficult to
> maintain.
> >
> > The Vulnogram tool is a nodejs app and the standalone files are
> generated using a nodejs script. I
Sam Ruby wrote on 2019-8-21 8:29AM EDT:
> On Wed, Aug 21, 2019 at 6:55 AM Mark J. Cox wrote:
...snip...
> Perhaps we can discuss the right long term solution, then work
> backwards from there?
>
> One possibility is for the security team to request a VM (perhaps
> security.apache.org or perhaps c
On Wed, Aug 21, 2019 at 6:55 AM Mark J. Cox wrote:
>
> > Many of the files have very long lines, so will be difficult to maintain.
>
> The Vulnogram tool is a nodejs app and the standalone files are generated
> using a nodejs script. I was intending to just check in the compiled files
> for now
> Many of the files have very long lines, so will be difficult to maintain.
The Vulnogram tool is a nodejs app and the standalone files are generated using
a nodejs script. I was intending to just check in the compiled files for now.
> Also there is no indication of the source of the code and i
On Wed, 21 Aug 2019 at 09:31, Mark Cox wrote:
>
> Okay, I created a PR for it! https://github.com/apache/whimsy/pull/73 and
Thanks.
Had a quick look.
Many of the files have very long lines, so will be difficult to maintain.
Also there is no indication of the source of the code and its license.
Okay, I created a PR for it! https://github.com/apache/whimsy/pull/73 and
hope we can integrate it in time for the ApacheCon security BoF
Thanks, Mark
On Wed, Aug 7, 2019 at 9:05 AM Mark Cox wrote:
> Hi all!
>
> Many of our projects struggle with the format of creating Mitre CVEs and
> various
On Wed, Aug 7, 2019 at 5:23 AM Mark Cox wrote:
>
> Hi all!
>
> Many of our projects struggle with the format of creating Mitre CVEs and
> various text representations of vulnerabilities needed for public mailing
> lists as per our security policy.
>
> But, one of the CVE automation working group m
