From 79c5772129dd4d78bc222105cbcd79014a190199 Mon Sep 17 00:00:00 2001
From: Jakub Domeracki <jakub@coder.com>
Date: Fri, 12 Dec 2025 17:53:13 +0100
Subject: [PATCH] chore: publish OpenVEX documents

---
 .vex/coder-CVE-2025-55183.vex.json | 22 ++++++++++++++++++++++
 .vex/coder-CVE-2025-55184.vex.json | 22 ++++++++++++++++++++++
 .vex/coder-CVE-2025-67779.vex.json | 22 ++++++++++++++++++++++
 3 files changed, 66 insertions(+)
 create mode 100644 .vex/coder-CVE-2025-55183.vex.json
 create mode 100644 .vex/coder-CVE-2025-55184.vex.json
 create mode 100644 .vex/coder-CVE-2025-67779.vex.json

diff --git a/.vex/coder-CVE-2025-55183.vex.json b/.vex/coder-CVE-2025-55183.vex.json
new file mode 100644
index 0000000000000..d26954e435565
--- /dev/null
+++ b/.vex/coder-CVE-2025-55183.vex.json
@@ -0,0 +1,22 @@
+{
+  "@context": "https://openvex.dev/ns/v0.2.0",
+  "@id": "https://openvex.dev/docs/public/vex-43839e83e53f40866cc8f89209a4501d40e6d3ed959c311a6f57dacaae8e68cb",
+  "author": "security@coder.com",
+  "version": 1,
+  "statements": [
+    {
+      "vulnerability": {
+        "name": "CVE-2025-55183"
+      },
+      "products": [
+        {
+          "@id": "pkg.go.dev/github.com/coder/coder/v2"
+        }
+      ],
+      "status": "not_affected",
+      "justification": "component_not_present",
+      "timestamp": "2025-12-12T16:51:35.795184Z"
+    }
+  ],
+  "timestamp": "2025-12-12T16:51:35Z"
+}
diff --git a/.vex/coder-CVE-2025-55184.vex.json b/.vex/coder-CVE-2025-55184.vex.json
new file mode 100644
index 0000000000000..bcab785b06c1c
--- /dev/null
+++ b/.vex/coder-CVE-2025-55184.vex.json
@@ -0,0 +1,22 @@
+{
+  "@context": "https://openvex.dev/ns/v0.2.0",
+  "@id": "https://openvex.dev/docs/public/vex-c489cb843230acfab4918412c2c76f196d1b1f4039dc30d55063989ae30cefe9",
+  "author": "security@coder.com",
+  "version": 1,
+  "statements": [
+    {
+      "vulnerability": {
+        "name": "CVE-2025-55184"
+      },
+      "products": [
+        {
+          "@id": "pkg.go.dev/github.com/coder/coder/v2"
+        }
+      ],
+      "status": "not_affected",
+      "justification": "component_not_present",
+      "timestamp": "2025-12-12T16:51:35.823457Z"
+    }
+  ],
+  "timestamp": "2025-12-12T16:51:35Z"
+}
diff --git a/.vex/coder-CVE-2025-67779.vex.json b/.vex/coder-CVE-2025-67779.vex.json
new file mode 100644
index 0000000000000..c01f3c676c8ee
--- /dev/null
+++ b/.vex/coder-CVE-2025-67779.vex.json
@@ -0,0 +1,22 @@
+{
+  "@context": "https://openvex.dev/ns/v0.2.0",
+  "@id": "https://openvex.dev/docs/public/vex-f68c1895144ea700bdbfaaac7cca34a4acf80933a1c4ecd984d04665a4ae6415",
+  "author": "security@coder.com",
+  "version": 1,
+  "statements": [
+    {
+      "vulnerability": {
+        "name": "CVE-2025-67779"
+      },
+      "products": [
+        {
+          "@id": "pkg.go.dev/github.com/coder/coder/v2"
+        }
+      ],
+      "status": "not_affected",
+      "justification": "component_not_present",
+      "timestamp": "2025-12-12T16:51:35.84893Z"
+    }
+  ],
+  "timestamp": "2025-12-12T16:51:35Z"
+}