You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This isn't really an independent bug report - it is a recommendation to help avoid the root cause of bugs that occur when trying to operate on invalid CVE Records in the database.
This isn't really an independent bug report - it is a recommendation to help avoid the root cause of bugs that occur when trying to operate on invalid CVE Records in the database.
Within the https://github.com/CVEProject/cve-services/blob/b083cfe4633442d8ec377828956c9b173c930718/src/controller/cve.controller/cve.controller.js file, submitCna and updateCna call Cve.validateCveRecord to validate CVE Record data against the full CVE Record schema, before using cveRepo.updateByCveId to write CVE Record data to the database. However, rejectCVE and rejectExistingCve do not do this. This omission is arguably the root cause of bugs found in the past (such as the #552 issue) and also the root cause of #704 and #705 from today.
The text was updated successfully, but these errors were encountered: