-
-
Notifications
You must be signed in to change notification settings - Fork 97
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CSAF Generation #141
Merged
Merged
CSAF Generation #141
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Caroline Russell <caroline@appthreat.dev> Improvements to tracking, handling of revisions, formatting, downloading default csaf.toml Signed-off-by: Caroline Russell <caroline@appthreat.dev> Improved handling of references, dates, and cwes, creation of csaf.toml if not found. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Added docstrings to csaf.py, refined cvss_v3 for csaf Signed-off-by: Caroline Russell <caroline@appthreat.dev> Enhanced csaf, adding: reference summaries, logic for release dates, product tree import, removal of fields with no data Signed-off-by: Caroline Russell <caroline@appthreat.dev> Created csaf metadata and settings file, configured import and parsing, resolved validation issues Signed-off-by: Caroline Russell <caroline@appthreat.dev> Added more data to CSAF, created toml for user settings and metadata Signed-off-by: Caroline Russell <caroline@appthreat.dev>
Signed-off-by: Caroline Russell <caroline@appthreat.dev> Fix Python compatibility issue by replacing match with if statements. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Test fix Signed-off-by: Caroline Russell <caroline@appthreat.dev> Write csaf.toml back out to update tracking. Signed-off-by: Caroline Russell <caroline@appthreat.dev>
Modify tests due to change in csaf.toml Signed-off-by: Caroline Russell <caroline@appthreat.dev> Fix regex errors Signed-off-by: Caroline Russell <caroline@appthreat.dev> CSAF Tests Signed-off-by: Caroline Russell <caroline@appthreat.dev>
prabhu
approved these changes
Oct 13, 2023
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Wow! I am speechless! This looks so cool!
prabhu
reviewed
Oct 13, 2023
prabhu
reviewed
Oct 13, 2023
prabhu
reviewed
Oct 13, 2023
prabhu
reviewed
Oct 13, 2023
prabhu
reviewed
Oct 14, 2023
prabhu
reviewed
Oct 14, 2023
Signed-off-by: Caroline Russell <caroline@appthreat.dev>
cerrussell
force-pushed
the
feature/csaf
branch
5 times, most recently
from
October 15, 2023 13:35
e3f41ef
to
ea1d418
Compare
prabhu
reviewed
Oct 15, 2023
prabhu
reviewed
Oct 15, 2023
prabhu
reviewed
Oct 15, 2023
prabhu
approved these changes
Oct 15, 2023
cerrussell
force-pushed
the
feature/csaf
branch
from
October 15, 2023 20:26
ea1d418
to
71b7e1e
Compare
Minor fixes and date improvements. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Simplifications and improvements: reduced toml nesting, only reset IDs we generate, remove tomli and requests as dependencies Signed-off-by: Caroline Russell <caroline@appthreat.dev> Modify revisions per csaf spec, store csaf.toml string in csaf.py Signed-off-by: Caroline Russell <caroline@appthreat.dev> Add depscan version tracking to toml to enable backwards compatibility should toml options change, reformat documentation. Signed-off-by: Caroline Russell <caroline@appthreat.dev>
cerrussell
force-pushed
the
feature/csaf
branch
from
October 15, 2023 20:46
71b7e1e
to
bfe79bd
Compare
saketjajoo
pushed a commit
that referenced
this pull request
Oct 16, 2023
Feat: CSAF Generation * Preliminary CSAF generation Signed-off-by: Caroline Russell <caroline@appthreat.dev> Improvements to tracking, handling of revisions, formatting, downloading default csaf.toml Signed-off-by: Caroline Russell <caroline@appthreat.dev> Improved handling of references, dates, and cwes, creation of csaf.toml if not found. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Added docstrings to csaf.py, refined cvss_v3 for csaf Signed-off-by: Caroline Russell <caroline@appthreat.dev> Enhanced csaf, adding: reference summaries, logic for release dates, product tree import, removal of fields with no data Signed-off-by: Caroline Russell <caroline@appthreat.dev> Created csaf metadata and settings file, configured import and parsing, resolved validation issues Signed-off-by: Caroline Russell <caroline@appthreat.dev> Added more data to CSAF, created toml for user settings and metadata Signed-off-by: Caroline Russell <caroline@appthreat.dev> * CSAF improvements, accuracy, error handling Signed-off-by: Caroline Russell <caroline@appthreat.dev> Fix Python compatibility issue by replacing match with if statements. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Test fix Signed-off-by: Caroline Russell <caroline@appthreat.dev> Write csaf.toml back out to update tracking. Signed-off-by: Caroline Russell <caroline@appthreat.dev> * CSAF Tests Modify tests due to change in csaf.toml Signed-off-by: Caroline Russell <caroline@appthreat.dev> Fix regex errors Signed-off-by: Caroline Russell <caroline@appthreat.dev> CSAF Tests Signed-off-by: Caroline Russell <caroline@appthreat.dev> * Created CSAF Readme Signed-off-by: Caroline Russell <caroline@appthreat.dev> * Toml, dates, revisions improvements Minor fixes and date improvements. Signed-off-by: Caroline Russell <caroline@appthreat.dev> Simplifications and improvements: reduced toml nesting, only reset IDs we generate, remove tomli and requests as dependencies Signed-off-by: Caroline Russell <caroline@appthreat.dev> Modify revisions per csaf spec, store csaf.toml string in csaf.py Signed-off-by: Caroline Russell <caroline@appthreat.dev> Add depscan version tracking to toml to enable backwards compatibility should toml options change, reformat documentation. Signed-off-by: Caroline Russell <caroline@appthreat.dev> --------- Signed-off-by: Caroline Russell <caroline@appthreat.dev>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
New feature - CSAF generation