Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: RedHat Modules & PURLs #469

Merged
merged 2 commits into from
Feb 26, 2023
Merged

feat: RedHat Modules & PURLs #469

merged 2 commits into from
Feb 26, 2023

Conversation

tommyknows
Copy link
Contributor

  • Ready for review
  • Follows CONTRIBUTING rules
  • Reviewed by Snyk internal team

What does this PR do?

todo

Where should the reviewer start?

How should this be manually tested?

Any background context you want to provide?

What are the relevant tickets?

Screenshots

Additional questions

@tommyknows tommyknows requested a review from a team December 14, 2022 13:45
@tommyknows tommyknows force-pushed the feat/rpm-modules-and-repos branch 3 times, most recently from 94a28fa to aac2ecd Compare December 14, 2022 16:31
@tommyknows tommyknows marked this pull request as draft December 14, 2022 16:35
@tommyknows tommyknows force-pushed the feat/rpm-modules-and-repos branch 5 times, most recently from 503beda to 110adb0 Compare January 11, 2023 12:18
@tommyknows
refactor: remove RedHatRepositories fact
c710cd2 
BREAKING CHANGE: This commit removes the RedHatRepositories fact from
the returned envelope. It should be unused, so it is not expected that
this breaking change would actually break something.

This is in preparation for the RedHat support, where the repositories
will be added to the package's `purl` fields instead.
@tommyknows tommyknows marked this pull request as ready for review February 10, 2023 11:04
@tommyknows tommyknows requested a review from a team as a code owner February 10, 2023 11:04
@tommyknows tommyknows force-pushed the feat/rpm-modules-and-repos branch 5 times, most recently from ab047ac to e5f6a51 Compare February 10, 2023 14:55
shlomiSnyk
shlomiSnyk requested changes Feb 23, 2023
View reviewed changes
Copy link
Contributor

@shlomiSnyk shlomiSnyk left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Update rpm-parser with the correct version.

@tommyknows @shlomiSnyk
feat: redhat module & repository support
ccd9c06 
This commit makes use of the added PURL-support in DepGraph to include
the RPM package modules as the "namespace", and the repositories as part
of the qualifiers in the PURL.

With this, Vuln can filter down vulnerabilities based on the
repository-to-cpe mapping and also query packages by module. Support for
this has been added through [Vuln #708](snyk/vuln#708).
@github-actions
Copy link

github-actions bot commented Feb 23, 2023
edited by shlomiSnyk
Loading

Expected release notes (by @shlomiSnyk)

features:
redhat module & repository support (ccd9c06)

others (will not be included in Semantic-Release notes):
remove RedHatRepositories fact (c710cd2)

  • I hereby acknowledge these release notes are 🥙 AWESOME 🥙

@shlomiSnyk shlomiSnyk merged commit 30268bf into main Feb 26, 2023
@shlomiSnyk shlomiSnyk deleted the feat/rpm-modules-and-repos branch February 26, 2023 07:15
@snyksec
Copy link

snyksec commented Feb 26, 2023

🎉 This PR is included in version 6.0.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@snyk-internal-pr-bot snyk-internal-pr-bot mentioned this pull request Apr 16, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shlomiSnyk shlomiSnyk shlomiSnyk approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@tommyknows @snyksec @shlomiSnyk