mirror of
https://github.com/espressif/esp-idf
synced 2025-03-06 22:59:09 -05:00
e9cfa83983
esp-idf-sbom offers two ways to perform vulnerability scanning. The primary method, which is the default, uses the NVD REST API. The alternative method uses the esp-nvd-mirror repository. If there are issues with accessing the NVD REST API, it can be useful to switch to the esp-nvd-mirror easily. Allow to set the SBOM_CHECK_LOCAL_DB github repository variable to switch to esp-nvd-mirror. Signed-off-by: Frantisek Hrbata <frantisek.hrbata@espressif.com>