'CVE' stands for Common Vulnerabilities and Exposure, and is a prefix for the identifier of vulnerabilities listed in the National Institutes of Standards and Technology (NIST) National Vulnerability Database (NVD).
'GHSA' stands for GitHub Security Advisory, and is a prefix for the identifier of vulnerabilities listed in the GitHub Advisories database.
'ALAS' represents Amazon Linux Security Advisories, and is prefix for the identifier of vulnerabilities listed in the Amazon Linux Security Center.
'GO' is a prefix for the identifier of vulnerabilities found on the GO Vulnerability Database.,
Many GHSA, GO, and ALAS vulnerabilities have corresponding CVE identifiers. When applicable, SOOS will provide links to all corresponding vulnerability databases in our SOOS Research pages, as seen below.
SOOS includes information for each of the above vulnerability types in all VEX documentation generated in the app.