gcloud artifacts vulnerabilities load-vex - load VEX data from a CSAF file into Artifact Analysis

gcloud artifacts vulnerabilities load-vex--source=SOURCE--uri=URI[--location=LOCATION][--project=PROJECT][GCLOUD_WIDE_FLAG …]

gcloudartifactsvulnerabilitiesload-vex--uri=us-east1-docker.pkg.dev/project123/repository123/someimage@sha256:49765698074d6d7baa82f--source=/path/to/vex/file

To load a CSAF security advisory file given an artifact with a tag and a file ondisk, run:

gcloudartifactsvulnerabilitiesload-vex--uri=us-east1-docker.pkg.dev/project123/repository123/someimage:latest--source=/path/to/vex/file

--source=SOURCE

The path of the VEX file.

--uri=URI

The path of the artifact in Artifact Registry. A 'gcr.io' image can also be usedif redirection is enabled in Artifact Registry. Make sure'artifactregistry.projectsettings.get' permission is granted to the currentgcloud user to verify the redirection status.

--location=LOCATION

If specified, all requests to Artifact Analysis for occurrences will go tolocation specified

--project=PROJECT

The parent project to load security advisory into.

Run$gcloud help for details.