vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Add Live Evaluation API endpoint and PyPa live pipeline importer

Open michaelehab opened this issue 5 months ago • 1 comments

Solves #1953 and #1902

  • Add PyPa live pipeline importer to fetch advisories affecting a single PURL
  • Add tests for PyPa live importer to test different scenarios and mock the GitHub API
  • Add a new API endpoint to run live evaluation importers
  • Add tests for the live evaluation API endpoint
image image

michaelehab avatar Jul 25 '25 12:07 michaelehab

@keshav-space @TG1999 I worked on modifying the Live Evaluation API based on recent discussions. Currently, the live evaluation API enqueues jobs to the "live" rq, when we have workers listening to it, the live evaluation becomes async. image I also added a LivePipelineRun model to help group live pipeline runs for a given live evaluation submission. We return the live run id in the live evaluation API and the user can use this live run id to check the current state of the given live evaluation request, seeing even details about which live importers ran and their current state. image

michaelehab avatar Aug 25 '25 19:08 michaelehab