NAME¶

wolfictl-vex - Tools to generate VEX statements for Wolfi packages and images

SYNOPSIS¶

wolfictl vex [flags]

DESCRIPTION¶

wolfictl vex: Tools to generate VEX statements for Wolfi packages and images

The vex family of subcommands interacts with Wolfi data and configuration files to generate Vulnerability Exploitability eXchange (VEX) documents to inform downstream consumer how vulnerabilities impact Wolfi packages and images that use them.

wolfictl can generate VEX data by reading the melange configuration files of each package and additional information coming from external documents. There are currently two VEX subcommands:

wolfictl vex package: Generates VEX documents from a list of melange configs

wolfictl vex sbom: Generates a VEX document by reading an image SBOM

For more information please see the help sections if these subcommands. To know more about the VEX tooling powering wolfictl see: ⟨https://openvex.dev/⟩

OPTIONS¶

-h, --help[=false]
help for vex

OPTIONS INHERITED FROM PARENT COMMANDS¶

--log-level="WARN"
log level (e.g. debug, info, warn, error)

SEE ALSO¶

wolfictl(1), wolfictl-vex-package(1), wolfictl-vex-sbom(1)