https://community.nxp.com/t5/OSS-Security-Maintenance/Can-I-use-Vigiles-with-Layerscape-BSPs/m-p/1084819#M4 <HTML><HEAD></HEAD><BODY><P>Vigiles can be used to monitor vulnerabilities in the Layerscape BSP components. Currently there is no direct support to extract the manifest from “Layerscape SDK” flex-builder which is required for Vigiles to track vulnerabilities. However,&nbsp;one can manually create a CSV file and/or use the Vigiles UI to create a manifest&nbsp;listing all the NXP packages (including the Linux LTS kernel) and then upload it to Vigiles to generate a vulnerability report and tracking new vulnerabilities. If assistance is needed in creating the CSV file (<A href="https://linuxlink.timesys.com/docs/vigiles-vulnerability-monitoring-and-management-user-guide#Software-BOM-CSV">documentation</A>)&nbsp;please contact us and we can help with the same.</P><P></P><P>We are&nbsp;in the process of adding support for Layerscape SDK in&nbsp;an upcoming release of Vigiles to enable seamless integration and it will be available by end of Q3 2020.</P><P></P><P>Thanks,</P><P>Vigiles Security Team</P></BODY></HTML> Wed, 03 Jun 2020 18:34:03 GMT vigiles_securit 2020-06-03T18:34:03Z https://community.nxp.com/t5/OSS-Security-Maintenance/Can-I-use-Vigiles-with-Layerscape-BSPs/m-p/1084818#M3 <HTML><HEAD></HEAD><BODY><P><SPAN style="font-size: 10.5pt;">Currently, Vigiles for i.MX support has been integrated into the I.MX SDK as a YOCTO layer.&nbsp; It would be helpful to extend this tool's support for Layerscape, since currently both i.MX and LS are based on the same unified Linux LTS kernel.&nbsp; How can a user take advantage of this powerful tool on Layerscape BSP's? </SPAN></P></BODY></HTML> Mon, 27 Apr 2020 13:59:41 GMT https://community.nxp.com/t5/OSS-Security-Maintenance/Can-I-use-Vigiles-with-Layerscape-BSPs/m-p/1084818#M3 EdWhite 2020-04-27T13:59:41Z https://community.nxp.com/t5/OSS-Security-Maintenance/Can-I-use-Vigiles-with-Layerscape-BSPs/m-p/1084819#M4 <HTML><HEAD></HEAD><BODY><P>Vigiles can be used to monitor vulnerabilities in the Layerscape BSP components. Currently there is no direct support to extract the manifest from “Layerscape SDK” flex-builder which is required for Vigiles to track vulnerabilities. However,&nbsp;one can manually create a CSV file and/or use the Vigiles UI to create a manifest&nbsp;listing all the NXP packages (including the Linux LTS kernel) and then upload it to Vigiles to generate a vulnerability report and tracking new vulnerabilities. If assistance is needed in creating the CSV file (<A href="https://linuxlink.timesys.com/docs/vigiles-vulnerability-monitoring-and-management-user-guide#Software-BOM-CSV">documentation</A>)&nbsp;please contact us and we can help with the same.</P><P></P><P>We are&nbsp;in the process of adding support for Layerscape SDK in&nbsp;an upcoming release of Vigiles to enable seamless integration and it will be available by end of Q3 2020.</P><P></P><P>Thanks,</P><P>Vigiles Security Team</P></BODY></HTML> Wed, 03 Jun 2020 18:34:03 GMT https://community.nxp.com/t5/OSS-Security-Maintenance/Can-I-use-Vigiles-with-Layerscape-BSPs/m-p/1084819#M4 vigiles_securit 2020-06-03T18:34:03Z