From c82f0089cce1f5f26f7ccc88c9638c0811b7baed Mon Sep 17 00:00:00 2001 From: Hilko Bengen Date: Wed, 5 Jan 2022 00:51:54 +0100 Subject: [PATCH] Improve -ignore-vulns description --- README.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 2da2fd4..31f1690 100644 --- a/README.md +++ b/README.md @@ -43,7 +43,10 @@ The `--quiet` flag will supress output except for indicators of a known vulnerab The `--ignore-v1` flag will _exclude_ checks for log4j 1.x vulnerabilities. -The `--ignore-vulns` flag allows _excluding_ checks for specific vulnerabilities. +The `--ignore-vulns` flag allows _excluding_ checks for specific +vulnerabilities. e.g. `-ignore-vulns=CVE-2021-45046,CVE-2021-44832`. +To check for all known vulnerabilities, pass an empty list like so: +`-ignore-vulns=` The `--log` flag allows everythig to be written to a log file instead of stdout/stderr.