[yocto] cve-checker tool

[Sona Sarmadi]

Hi guys,

I have some questions regarding cve-check tool. I don't find anything about this tool in Yocto 
2.2 release, dose documentation mention this tool and how to use it?

Is this tool planned to be integrated with daily build so the Yocto project can detect 
Not addressed CVEs automatically?

Mariano:
Does this tool look at CVE tag inside the recipe as well or only checks the package version?

Can this tool be used together with "meta-security-isafw" and get a fancy report?


Thanks
//Sona