check_cves
Match installed package versions against known CVEs using OSV.dev's ecosystem-aware version comparison for accurate vulnerability detection.
Instructions
Match installed package versions against known CVEs via OSV.dev.
`system` and `packages` are the objects returned by inventory_host (or a
filtered subset of `packages` if you only want to check specific ones).
Uses OSV's server-side ecosystem-aware version comparison rather than
name-only matching, so results reflect the exact installed version.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| system | Yes | ||
| packages | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||