vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Collect advisories for AlmaLinux

Open mjherzog opened this issue 2 years ago • 3 comments

AlmaLinux (CentOS successor) has its own listing of applicable OSV advisories at: https://github.com/AlmaLinux/osv-database/tree/master/advisories. We may want to add these to VulnerableCode.

mjherzog avatar May 23 '23 00:05 mjherzog

@mjherzog If this one is free I am working on it.

ambuj-1211 avatar Mar 18 '24 11:03 ambuj-1211

@ambuj-1211 AlmaLinux uses OSV schema and we have a script to handle OSV you should use this script instead of writing the importer from scratch. https://github.com/nexB/vulnerablecode/blob/4a6734b1bbaa8df6fd816f3eb4fd843a88c1ecec/vulnerabilities/importers/osv.py

and try to have a look at similar importers : https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/github_osv.py https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/oss_fuzz.py

ziadhany avatar May 11 '24 16:05 ziadhany

@ambuj-1211 AlmaLinux uses OSV schema and we have a script to handle OSV you should use this script instead of writing the importer from scratch. https://github.com/nexB/vulnerablecode/blob/4a6734b1bbaa8df6fd816f3eb4fd843a88c1ecec/vulnerabilities/importers/osv.py

and try to have a look at similar importers : https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/github_osv.py https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/oss_fuzz.py

Okay @ziadhany

ambuj-1211 avatar May 11 '24 16:05 ambuj-1211