Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

alpine: ingest alpine vulnerabilities as type SOURCE #615

Merged
merged 1 commit into from
May 19, 2022
Merged

alpine: ingest alpine vulnerabilities as type SOURCE #615

merged 1 commit into from
May 19, 2022

Conversation

crozzy
Copy link
Contributor

@crozzy crozzy commented May 18, 2022

Alpine's security feeds list vulnerabilites by source
package and not binary package, hence we are currently
missing all the vulnerabilites where the binary package
is named differently from the source package.

Signed-off-by: crozzy joseph.crosland@gmail.com

@crozzy crozzy requested a review from a team as a code owner May 18, 2022 22:47
@crozzy crozzy requested review from hdonnay and removed request for a team May 18, 2022 22:47
@crozzy
Copy link
Contributor Author

crozzy commented May 18, 2022

related to quay/clair#1540

@crozzy crozzy force-pushed the crozzy-alpine-vulns-as-source branch from accff21 to 6f04d98 Compare May 19, 2022 17:43
hdonnay
hdonnay previously approved these changes May 19, 2022
View reviewed changes
@crozzy crozzy force-pushed the crozzy-alpine-vulns-as-source branch from 6f04d98 to 2cc5308 Compare May 19, 2022 18:51
hdonnay
hdonnay previously approved these changes May 19, 2022
View reviewed changes
@crozzy
alpine: ingest alpine vulnerabilities as type SOURCE
8abbaa9 
Alpine's security feeds list vulnerabilites by source
package and not binary package, hence we are currently
missing all the vulnerabilites where the binary package
is named differently from the source package.

Signed-off-by: crozzy <joseph.crosland@gmail.com>
@crozzy crozzy force-pushed the crozzy-alpine-vulns-as-source branch from 2cc5308 to 8abbaa9 Compare May 19, 2022 20:20
@crozzy crozzy merged commit ece632e into quay:main May 19, 2022
@crozzy crozzy deleted the crozzy-alpine-vulns-as-source branch May 19, 2022 20:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hdonnay hdonnay hdonnay left review comments

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@crozzy @hdonnay