aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* 0.31HEAD0.31masterDan Fandrich2024-10-252-2/+2
|
* Show how to get the OSV format advisories on the infos pageDan Fandrich2024-04-162-1/+12
|
* Add the modified field to the JSON bugs indexDan Fandrich2024-04-161-1/+2
| | | | This brings it in line with the vulnerabilities index.
* Ensure the .adv file ends with newline when publishingDan Fandrich2024-04-162-0/+15
| | | | | Lacking a newline corrupts the file when the ID is appended. Return an error if this case is detected.
* 0.300.30Dan Fandrich2024-04-162-2/+2
|
* Get the last modified date of advisories from SVNDan Fandrich2024-04-165-2/+34
| | | | | | | | | The modification date helps track if an advisory was changed after initial publication. This is especially important for OSV users who need the modification date in the vulns.json index to determine whether an existing advisory was updated so they can download the update. Also, keep "ref" (pointing to bug number) in all advisories, not just the TODO ones.
* Try to fix publish-allDan Fandrich2024-04-162-1/+5
| | | | | An argument to output_pages() was missing. This command probably never worked.
* 0.290.29Dan Fandrich2024-04-052-1/+5
|
* Install the new *.json templatesDan Fandrich2024-04-051-1/+1
|
* 0.280.28Dan Fandrich2024-04-052-2/+2
|
* Fix make tar to compress the fileDan Fandrich2024-04-052-1/+2
|
* Exit if any of the parallel processes return an errorDan Fandrich2024-03-211-1/+10
|
* Cross-check that at least one SRPM is listed in the advisoryDan Fandrich2024-03-212-0/+5
| | | | An advisory must come with at least one fixed package.
* Use multiprocessing in mksite for improved speedDan Fandrich2024-03-192-20/+69
| | | | | | | | | | This generates templated files using some parallelism, reducing the total mksite time to less than half in my tests. Increasing parallelism even further is possible, but would make the code harder to understand. The obvious technique of generating each templated file in its own process is actually far slower because the overhead of process creation dwarfs the time spent processing the template, which is on average very small and quick.
* Write JSON index files for advisoriesDan Fandrich2024-03-143-0/+22
| | | | | | The JSON schema is simple and compatible with the one published in the Go Vulnerability Database. Security advisories and bugfix advisories each have their own index.
* Write JSON output files in mksiteDan Fandrich2024-03-082-0/+3
|
* Add 'showjson' command to output an advisory in OSV JSONDan Fandrich2024-03-084-0/+135
| | | | | | Open Source Vulnerability format is a standard for publishing vulnerabilities in Open Source projects and is defined at https://ossf.github.io/osv-schema/
* Fix indentation in the new advisory templateDan Fandrich2024-02-141-4/+4
| | | | | While the old indentation works, the new one passes yamllint, making it easier to automatically check for problems.
* template: change default CVE year to 2024Dan Fandrich2024-01-202-1/+6
|
* Use https: links where possibleDan Fandrich2024-01-204-6/+6
|
* 0.270.27Thomas Backlund2023-07-022-1/+3
|
* template: change default CVE year to 2023Thomas Backlund2023-07-022-1/+2
|
* template: change default dist and dist-suffix for Mageia 9Thomas Backlund2023-07-022-2/+4
|
* 0.260.26Thomas Backlund2021-01-142-1/+3
|
* add missing NEWS entryThomas Backlund2021-01-141-0/+1
|
* - template: change default dist and dist-suffix for Mageia 8Thomas Backlund2021-01-142-3/+6
| | | | - template: change default CVE year to 2021
* Report the broken file rather than exploding when an advisory is invalidPascal Terjan2020-11-081-1/+9
|
* fix typoThomas Backlund2019-05-201-1/+1
|
* 0.250.25Thomas Backlund2019-05-202-1/+3
|
* - template: change default dist and dist-suffix for MageiaThomas Backlund2019-05-202-3/+6
| | | | - template: change default CVE year to 2019
* Rename 'make tar' tarball to match gitweb snapshot nameRémi Verschelde2017-09-201-2/+2
|
* 0.240.24Rémi Verschelde2017-09-202-1/+3
|
* template: change default dist and dist-suffix for Mageia 6Rémi Verschelde2017-09-202-3/+5
|
* Reset 'advisory' keyword instead of 'validated_update' for invalid advisoriesRémi Verschelde2017-09-202-2/+5
| | | | | This is now possible since 'advisory' was made a keyword, while it used to be written in the Whiteboard field.
* its 2016 nowThomas Backlund2016-04-081-1/+1
|
* use https in links to advisoriesThomas Backlund2016-04-082-3/+3
|
* use https in mitre cve linksThomas Backlund2016-04-084-4/+4
|
* Add URL to descriptionsPascal Terjan2016-02-291-0/+1
|
* Version 0.230.23Rémi Verschelde2015-09-272-1/+3
|
* template: also change dist-suffix from mga4 to mga5Rémi Verschelde2015-09-272-1/+3
|
* Update NEWS for previous commit by pterjanRémi Verschelde2015-09-271-0/+1
|
* Version 0.220.22Rémi Verschelde2015-09-272-1/+3
|
* template: change default release to Mageia 5 now that Mageia 4 is EOL (+ ↵Rémi Verschelde2015-09-272-3/+7
| | | | plural in title)
* Add missing 'the' articleShlomi Fish2015-04-241-1/+1
|
* Add functions useful to generate update descriptionsPascal Terjan2015-03-151-0/+27
|
* Version 0.210.21Rémi Verschelde2014-11-301-0/+2
|
* Add [name] argument to mgaadv to prefill the templateRémi Verschelde2014-11-304-11/+14
|
* Drop mga3 templateRémi Verschelde2014-11-301-3/+0
|
* Pre-fill subject for security advRémi Verschelde2014-11-301-3/+4
|
* Version 0.200.20Colin Guthrie2014-11-252-1/+3
|