From 00dda240b9dfe3356ababe788f1c005b27b6eb0e Mon Sep 17 00:00:00 2001
From: Bernhard Reiter <bernhard@intevation.de>
Date: Mon, 25 Sep 2023 08:46:16 +0200
Subject: [PATCH 1/3] Change release action to use elder Ubuntu runner

  * use `ubuntu-20.04` so we get binaries that are more
    compatible with elder GNU/Linux distribution, because
    go binaries link to glibc (for some operating system operations
    like dns).

resolve #456
---
 .github/workflows/release.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 6b749342..739f45c1 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -7,7 +7,7 @@ on:
 jobs:
   releases-matrix:
     name: Release Go binaries
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
     steps:
       - name: Checkout
         uses: actions/checkout@v3

From dcd4a2947842a9d0812d38db7919f55776950aeb Mon Sep 17 00:00:00 2001
From: Bernhard Reiter <bernhard@intevation.de>
Date: Thu, 28 Sep 2023 16:51:31 +0200
Subject: [PATCH 2/3] docs: update main README

 * introduce more structure and put commands for users to the top.
 * improve description of the command for the 3.0 release.
---
 README.md | 34 +++++++++++++++++++---------------
 1 file changed, 19 insertions(+), 15 deletions(-)

diff --git a/README.md b/README.md
index 09aa3413..13c599d2 100644
--- a/README.md
+++ b/README.md
@@ -2,27 +2,31 @@
 
 An implementation of a [CSAF 2.0](https://docs.oasis-open.org/csaf/csaf/v2.0/csd02/csaf-v2.0-csd02.html) trusted provider, checker, aggregator and downloader. Includes an uploader command line tool for the trusted provider.
 
-## [csaf_provider](docs/csaf_provider.md)
-is an implementation of the role CSAF Trusted Provider, also offering
-a simple HTTPS based management service.
+## for users
+### [csaf_downloader](docs/csaf_downloader.md)
+is a tool for downloading advisories from a provider.
+Can be used for automated forwarding of CSAF documents.
 
-## [csaf_uploader](docs/csaf_uploader.md)
-is a command line tool that uploads CSAF documents to the `csaf_provider`.
+### [csaf_validator](docs/csaf_validator.md)
+is a tool to validate local advisories files against the JSON Schema and an optional remote validator.
 
-## [csaf_aggregator](docs/csaf_aggregator.md)
-is an implementation of the role CSAF Aggregator.
+## for advisory providers
 
-## [csaf_checker](docs/csaf_checker.md)
-is a tool for testing a CSAF Trusted Provider according to [Section 7 of the CSAF standard](https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.html#7-distributing-csaf-documents). Does check requirements without considering the indicated `role` yet.
+### [csaf_provider](docs/csaf_provider.md)
+is an implementation of the role CSAF Trusted Provider, also offering
+a simple HTTPS based management service.
 
-## [csaf_downloader](docs/csaf_downloader.md)
-is a tool for downloading advisories from a provider.
+### [csaf_uploader](docs/csaf_uploader.md)
+is a command line tool to upload CSAF documents to the `csaf_provider`.
 
-## [csaf_validator](docs/csaf_validator.md)
-is a tool to validate local advisories files against the JSON Schema and an optional remote validator.
+### [csaf_checker](docs/csaf_checker.md)
+is a tool for testing a CSAF Trusted Provider according to [Section 7 of the CSAF standard](https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.html#7-distributing-csaf-documents).
+
+### [csaf_aggregator](docs/csaf_aggregator.md)
+is a CSAF Aggregator, to list or mirror providers.
 
 ## Setup
-Note that binaries for the server side are only available and tested
+Binaries for the server side are only available and tested
 for GNU/Linux-Systems, e.g. Ubuntu LTS.
 They are likely to run on similar systems when build from sources.
 
@@ -63,7 +67,7 @@ Binaries will be placed in directories named like `bin-linux-amd64/` and `bin-wi
 
 ## License
 
-- csaf_distribution is licensed as Free Software under MIT License.
+- `csaf_distribution` is licensed as Free Software under MIT License.
 
 - See the specific source files
   for details, the license itself can be found in the directory `LICENSES/`.

From 5f54c30b990dcac15eb8f6a8330c7ef04925849b Mon Sep 17 00:00:00 2001
From: "Sascha L. Teichmann" <sascha.teichmann@intevation.de>
Date: Thu, 28 Sep 2023 22:43:50 +0200
Subject: [PATCH 3/3] Add 'Tools for ...' to make it more readable.

---
 README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 13c599d2..6003f702 100644
--- a/README.md
+++ b/README.md
@@ -2,7 +2,7 @@
 
 An implementation of a [CSAF 2.0](https://docs.oasis-open.org/csaf/csaf/v2.0/csd02/csaf-v2.0-csd02.html) trusted provider, checker, aggregator and downloader. Includes an uploader command line tool for the trusted provider.
 
-## for users
+## Tools for users
 ### [csaf_downloader](docs/csaf_downloader.md)
 is a tool for downloading advisories from a provider.
 Can be used for automated forwarding of CSAF documents.
@@ -10,7 +10,7 @@ Can be used for automated forwarding of CSAF documents.
 ### [csaf_validator](docs/csaf_validator.md)
 is a tool to validate local advisories files against the JSON Schema and an optional remote validator.
 
-## for advisory providers
+## Tools for advisory providers
 
 ### [csaf_provider](docs/csaf_provider.md)
 is an implementation of the role CSAF Trusted Provider, also offering