Assign CVEs to All Known Security Vulnerabilities

Description

Ensure all known security vulnerabilities are issued a CVE

Dashboard Inclusion

We use the column has_assignCVEForKnownVulns_policy from the table projects to calculate the status, this column is populated using the bulk importer. More information

Details

• Default Category: coordinated vulnerability disclosure
• Default Priority Group: P7
• Implementation Details: It is manual (details).
• C-SCRM: true
• Sources: OpenSSF Best Practices Badge Passing Level (release_notes_vulns)