Skip to content

fix(proto): add database_specific to affected ranges#4160

Merged
another-rex merged 4 commits into
google:masterfrom
cuixq:proto
Oct 16, 2025
Merged

fix(proto): add database_specific to affected ranges#4160
another-rex merged 4 commits into
google:masterfrom
cuixq:proto

Conversation

@cuixq
Copy link
Copy Markdown
Contributor

@cuixq cuixq commented Oct 14, 2025
edited
Loading

This was introduced to the schema in ossf/osv-schema#37.
This PR also patches a few typo fixes in https://github.com/ossf/osv-schema/blob/main/proto/vulnerability.proto.

Also updates grpc libraries to version 1.75.0 that aligns with GRPC_GENERATED_VERSION.

@cuixq cuixq marked this pull request as ready for review October 14, 2025 05:34
another-rex
another-rex previously approved these changes Oct 14, 2025
View reviewed changes
@another-rex
Copy link
Copy Markdown
Contributor

another-rex commented Oct 14, 2025

Hmm... time to update our grpc library? I thought dependabot should already be updating to the latest version.

@another-rex another-rex merged commit d30c436 into google:master Oct 16, 2025
20 checks passed
@cuixq cuixq mentioned this pull request Oct 21, 2025
Merged
cuixq added a commit that referenced this pull request Oct 21, 2025
@cuixq
feat(models): add database_specific to AffectedRange2 (#4201)
bdd266f 
#4160 adds a `database_specific`
field to the affected ranges in proto. This PR aligns the NDB model for
this change.

This ensures that any database-specific metadata provided in a
vulnerability's affected range is correctly persisted in the datastore
and included in the API output.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@another-rex another-rex another-rex approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cuixq @another-rex