Tushar Goel
Tushar Goel
@ziadhany can this be merged ?
@janniclas thanks for this PR, if you can add some tests to highlight the issues which are fixed by this PR it would be really helpful.
@janniclas sorry for late reply, please resolve the merge conflicts : )
@NucleonGodX thanks for your contributions, can you please use pipeline structure. https://github.com/aboutcode-org/vulnerablecode/blob/main/vulnerabilities/pipelines/nvd_importer.py check this for example
@Rishi-source please use assertive statements while writing commits : ) https://www.freecodecamp.org/news/how-to-write-better-git-commit-messages/
See related: - https://github.com/aboutcode-org/vulnerablecode/pull/1863
@pombredanne in the current situation when we don't have any aliases, and everytime improver runs it creates different VCIDs for same vulnerability ( we use aliases for merging as of...
@DennisClark https://github.com/advisories/GHSA-r8f7-9pfq-mjmv and https://nvd.nist.gov/vuln/detail/CVE-2020-24025 , GHSA identifies `>= 2.0.0, < 7.0.0` as affected versions, whereas NVD identifies `>=2.0.0 ,
We are planning to use these respective aliases for these importers for advisory IDs for the advisories generated by these importers Apache HTTPD - CVE Apache Kafka - CVE Apache...
- [x] Add V2Advisory Model. - [x] V2Advisory Model should have relationships between other models like aliases, affected packages, references, severities and weaknesses. - [x] V2AdvisoyModel will have advisory ID....