arch-security-tracker
arch-security-tracker copied to clipboard
archlinux
Arch Linux Security Tracker
We need some two-factor components so lets implement TOTP.
We should sometimes run a timer to check for packages that may be vulnerable again because of epoch bump and pkgver downgrade. - Where do we display those, in the...
We should implement a revert functionality for all audit log entries. The challenge is to come up with a good idea how that should work or behave as the sqlalchemy_continuum...
stats: open group count does not match with visible vulnerable groups on index This occurs because we keep groups with removed packages from the repo as open in the database....
The status always falls back to "Unknown" even when we want to select it to "Affected". It should show "Removed" instead and keep the status properly set.
Simple button to merge 2, or more (preferably) AVGs
``` Updating package cache... -> Querying alpm database...done -> Latest package: ruby-msgpack 1.2.10-1 Tue Apr 23 14:28:52 2019 -> Updating database cache...Traceback (most recent call last): File "/usr/lib/python3.7/site-packages/sqlalchemy/engine/base.py", line 1244,...
When updating now, sometimes network issues arise and updating errors out. For monitoring it would be nicer not make this a fatal error and add a check in monitoring for...
When creating an AVG for libvorbis, warn that lib32-vorbis also exists in the repositories and most likely also needs an AVG (they have a different pkgbase). Test case * Create...
_This feature requires to have a working login and user accounts_ it should be possible to sign-off issues and groups (and later advisory drafts) with a logged in account. this...