You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Some security issues only affect certain platform (as in operating systems, Linux distributions, etc.) The data model should include this information and allow querying for it to avoid false positives. The natural way to include this on the query side is with a platform qualifier on the package URL.
@sbs2001 I had completely forgotten about that plan. In some of the importers I merged as part of #123 I already included qualifiers. I'm not sure what implications that has for querying. I think we should still switch to a JSONField.
Coincidently, I was trying to do exactly that today, had the debian importer running for awhile ,which didn't finish due to powercut :( . I will try that once again.
Some security issues only affect certain platform (as in operating systems, Linux distributions, etc.) The data model should include this information and allow querying for it to avoid false positives. The natural way to include this on the query side is with a platform qualifier on the package URL.
Here is an example of a vulnerability in a Rust crate that only affects Windows: https://github.com/RustSec/advisory-db/blob/master/crates/hyper/RUSTSEC-2016-0002.toml
The text was updated successfully, but these errors were encountered: