mgaadvisories/lib/MGA, branch 0.34 Scripts to Help with Update Advisories Show a hint if an SRPM can't be found in non-core 2025-04-03T05:01:39+00:00 Dan Fandrich danf@mageia.org 2025-04-03T04:56:38+00:00 6a09d339c82c627f060ed7fa11ca12a7d04bf61a If the RPM name is missing a .nonfree or .tainted suffix, warn the user that this might be the reason. 
If the RPM name is missing a .nonfree or .tainted suffix, warn the user
that this might be the reason.
Don't always reset a "modified" value in the status file 2025-02-24T21:49:53+00:00 Dan Fandrich danf@mageia.org 2025-02-24T21:48:36+00:00 56d1db2a23d49a58c62c16065d3436b75fe763b3 The modified value starts off from SVN, but if a more recent value is found in the status file, use that instead. 
The modified value starts off from SVN, but if a more recent value is
found in the status file, use that instead.
Read advisories from disk in parallel 2024-12-06T22:38:00+00:00 Dan Fandrich danf@mageia.org 2024-12-06T21:17:09+00:00 964cc477e0aa49a7e1ce55e984da1dedef60cc8b The parsing overhead is now spread over multiple cores when available, dramatically reducing the time to read them all. mgaadv list is twice as fast now on one test machine, for example. 
The parsing overhead is now spread over multiple cores when available,
dramatically reducing the time to read them all. mgaadv list is twice as
fast now on one test machine, for example.
Ensure the .adv file ends with newline when publishing 2024-04-17T02:45:20+00:00 Dan Fandrich danf@mageia.org 2024-04-17T02:37:08+00:00 6fb12d2bfe8a7360103f07e18197ba5d280989b1 Lacking a newline corrupts the file when the ID is appended. Return an error if this case is detected. 
Lacking a newline corrupts the file when the ID is appended. Return an
error if this case is detected.
Get the last modified date of advisories from SVN 2024-04-16T17:58:32+00:00 Dan Fandrich danf@mageia.org 2024-04-16T06:26:06+00:00 7b864281523a0bf15ecea235f463c27bb77dec53 The modification date helps track if an advisory was changed after initial publication. This is especially important for OSV users who need the modification date in the vulns.json index to determine whether an existing advisory was updated so they can download the update. Also, keep "ref" (pointing to bug number) in all advisories, not just the TODO ones. 
The modification date helps track if an advisory was changed after
initial publication. This is especially important for OSV users who need
the modification date in the vulns.json index to determine whether an
existing advisory was updated so they can download the update.  Also,
keep "ref" (pointing to bug number) in all advisories, not just the TODO
ones.
Try to fix publish-all 2024-04-16T07:21:04+00:00 Dan Fandrich danf@mageia.org 2024-04-16T05:44:38+00:00 63160c8456f5fc561ce86a373d027d8acd630d4e An argument to output_pages() was missing. This command probably never worked. 
An argument to output_pages() was missing. This command probably never
worked.
Exit if any of the parallel processes return an error 2024-03-22T04:00:12+00:00 Dan Fandrich danf@mageia.org 2024-03-22T04:00:12+00:00 82bfec6e44209b4e1bce115e4adca62d0fffb279 






Cross-check that at least one SRPM is listed in the advisory
2024-03-21T23:28:15+00:00

Dan Fandrich
danf@mageia.org

2024-03-21T23:27:50+00:00

b9846fe26e87285ceab8ae5cd9c212325bd15f51

An advisory must come with at least one fixed package.





An advisory must come with at least one fixed package.







Use multiprocessing in mksite for improved speed
2024-03-20T03:01:16+00:00

Dan Fandrich
danf@mageia.org

2024-03-15T01:50:26+00:00

fe405b428456decd6fed841fd6de6b8e09e73e55

This generates templated files using some parallelism, reducing the
total mksite time to less than half in my tests. Increasing parallelism
even further is possible, but would make the code harder to understand.
The obvious technique of generating each templated file in its own
process is actually far slower because the overhead of process creation
dwarfs the time spent processing the template, which is on average very
small and quick.





This generates templated files using some parallelism, reducing the
total mksite time to less than half in my tests. Increasing parallelism
even further is possible, but would make the code harder to understand.
The obvious technique of generating each templated file in its own
process is actually far slower because the overhead of process creation
dwarfs the time spent processing the template, which is on average very
small and quick.







Write JSON index files for advisories
2024-03-14T22:21:41+00:00

Dan Fandrich
danf@mageia.org

2024-03-14T22:18:20+00:00

c9c5444f4f27f0a7375088a1cc0b4594742d8fe8

The JSON schema is simple and compatible with the one published in the
Go Vulnerability Database. Security advisories and bugfix advisories
each have their own index.





The JSON schema is simple and compatible with the one published in the
Go Vulnerability Database. Security advisories and bugfix advisories
each have their own index.