impact statement
Equates to a "vulnerability disclosure" as defined by ISO 29147:2018 "The term "vulnerability disclosure" is used to describe the overall activities associated with receiving vulnerability reports and providing remediation information. Examples include open-source formats CycloneDX, CSAF, VEX or SBOM VDR, or any other format that a software vendor chooses to communicate vulnerability information about a package (e.g. product) Thanks, Dick Brooks Never trust software, always verify and report! <https://reliableenergyanalytics.com/products> T http://www.reliableenergyanalytics.com <http://www.reliableenergyanalytics.com/> Email: [email protected] <mailto:[email protected]> Tel: +1 978-696-1788 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#4454): https://lists.spdx.org/g/Spdx-tech/message/4454 Mute This Topic: https://lists.spdx.org/mt/90338546/21656 Group Owner: [email protected] Unsubscribe: https://lists.spdx.org/g/Spdx-tech/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
