Raphaël Vinot

Notes for CSAF importer: * csaf_downloader work fine for domains that have a `provider-metadata.json` * there is no obvious way to tell the downloader "only get new stuff since last...

https://cert-portal.siemens.com/productcert/csaf/provider-metadata.json

Thank you for the work! It probably makes sense to use the redis (or more probably valkey) and kvrocks docker images instead of building from scratch in the docker. And...

we were waiting for valkey to be stable before switching to it. It seems to be the case now. The reason the default install guide tells you to install kvrocks...

This repository is not clear on what it contains. * `gsd` seems to contain a subset of reports * `cve` seems to contain the CVE entry *and* a .mbox file...

The main reason I don't use docker by default is that it is an absolute pain when I write code on the project (and it makes debugging a nightmare). Moving...

The main question for this project is if there are more contextual information to attach automatically to a kernel vuln when someone search for it on vulnerability lookup. And I'm...

Alright, I'm reopening this one and will figure out how I can get the email content as a contextual information for the CVE

Can you document how to upgrade the bundled-in vulnogram code? It will make maintenance long term a lot easier I think. (and sorry if it's already there and I missed...

Regarding storage, I don't mind a SQL database (as long as I'm not the one developing it :laughing: ), but it really needs to be an optional feature. We must...