ct-cve

CT-CVE Overview

Vulnerability intelligence, feed sync, package matching, and signed CT-Ops integration.

CT-CVE is the standalone CarrTech vulnerability service. It owns vulnerability feed sync, advisory catalog storage, package matching, enrichment, and the integration boundary back to CT-Ops.

Sources

CT-CVE can sync NVD, CISA KEV, Ubuntu OSV, and Red Hat Security Data feeds. Feed status and recent source activity are exposed through the operational status surface.

CT-Ops pairing

CT-Ops pairs with CT-CVE using an authenticated setup flow. Inventory snapshots are signed, matched by CT-CVE, and finding batches are delivered back to CT-Ops.