sources/meta-arm/ci/cve.yml

# yaml-language-server: $schema=https://raw.githubusercontent.com/siemens/kas/master/kas/schema-kas.json

header:
  version: 14

local_conf_header:
  cve: |
    INHERIT += "cve-check"

    # Allow the runner environment to provide an API key
    NVDCVE_API_KEY = "${@d.getVar('BB_ORIGENV').getVar('NVDCVE_API_KEY') or ''}"

    # Just show the warnings for our layers
    CVE_CHECK_SHOW_WARNINGS = "0"
    CVE_CHECK_SHOW_WARNINGS:layer-arm-toolchain = "1"
    CVE_CHECK_SHOW_WARNINGS:layer-meta-arm = "1"
    CVE_CHECK_SHOW_WARNINGS:layer-meta-arm-bsp = "1"
    CVE_CHECK_SHOW_WARNINGS:layer-meta-arm-systemready = "1"

    # Ignore the kernel, we sometime carry kernels in meta-arm
    CVE_CHECK_SHOW_WARNINGS:pn-linux-yocto = "0"
Complete Yocto mirror with license table for TQMa6UL (2038-compliance) - 264 license table entries with exact download URLs (224/264 resolved) - Complete sources/ directory with all BitBake recipes - Build configuration: tqma6ul-multi-mba6ulx, spaetzle (musl) - Full traceability for Softwarefreigabeantrag - GCC 13.4.0, Linux 6.6.102, U-Boot 2023.04, musl 1.2.4 - License distribution: GPL-2.0 (24), MIT (23), GPL-2.0+ (18), BSD-3 (16) 2026-03-01 20:58:18 +00:00			`# yaml-language-server: $schema=https://raw.githubusercontent.com/siemens/kas/master/kas/schema-kas.json`

			`header:`
			`version: 14`

			`local_conf_header:`
			`cve: \|`
			`INHERIT += "cve-check"`

			`# Allow the runner environment to provide an API key`
			`NVDCVE_API_KEY = "${@d.getVar('BB_ORIGENV').getVar('NVDCVE_API_KEY') or ''}"`

			`# Just show the warnings for our layers`
			`CVE_CHECK_SHOW_WARNINGS = "0"`
			`CVE_CHECK_SHOW_WARNINGS:layer-arm-toolchain = "1"`
			`CVE_CHECK_SHOW_WARNINGS:layer-meta-arm = "1"`
			`CVE_CHECK_SHOW_WARNINGS:layer-meta-arm-bsp = "1"`
			`CVE_CHECK_SHOW_WARNINGS:layer-meta-arm-systemready = "1"`

			`# Ignore the kernel, we sometime carry kernels in meta-arm`
			`CVE_CHECK_SHOW_WARNINGS:pn-linux-yocto = "0"`