Home
FAQs
What does "disputed" mean in the vulnerability details?

What does "disputed" mean in the vulnerability details?

SOOS identified a vulnerability that is tagged as **DISPUTED**.

Updated on July 13, 2022

In the case of a **DISPUTED** note, a vulnerability has been reported for the given package, but the maintainers of that package have disputed the vulnerability and made the claim that the vulnerability is not related to the package itself.

Disputed flags will be seen on the Vulnerability Detail page for vulnerabilities meeting this description.

In the example shown below, the 'NOTE' indicates that the vendors believe it is the developer's responsibility to ensure that their code is not impacted by the identified vulnerability.

Tags: Vulnerability Vulnerabilities

Thank you for leaving a rating!

Did you find this article helpful?

0 out of 0 people found this article helpful so far

Viewing Your Issues View issues being identified in your SOOS projects How often is SOOS updating open source vulnerability data? Details on how often SOOS is providing new vulnerability data. How often does SOOS rescan the NVD (National Vulnerability Database)? Does SOOS keep up with vulnerability current events? How often does SOOS rescan GitHub Advisory Database? How current are my scans? Vulnerability Detail Page Learn more about the Vulnerabilities in your projects

Thanks for your message!

What does "disputed" mean in the vulnerability details?

Related articles