Alex Goodman
Alex Goodman
**What would you like to be added**: A labeling system that allows end users to select providers to run by capability or description. Something like: Select providers that have a...
**What would you like to be added**: Today there are hard coded references to URLs within providers. This is not ideal since they cannot be overridden via configuration values. **Why...
Today we have names like `rhel` where `el` stands for "enterprise linux", however we additionally have "oracle" which is short for "oracle linux". This is inconsistent and should be normalized...
Today we parse the CVE information for ubuntu distributions from `git://git.launchpad.net/ubuntu-cve-tracker` . This is probably correct for unsupported distro versions, but for supported distro versions we should be leveraging the...
Most of the parsers internally have a `_download` and `_process` (or similar) methods to organize the work, however, there is no strict separation of these processes when calling the `get`...
The RHEL parser uses the centos parser in order to download results. The centos parser has a `skip_if_exists` attribute that is leveraged by the centos provider based on the runtime...
When doing the initial port of all of the drivers, most of the drivers support a single entrypoint (`fetch` or `refresh`) which was rolled into the `provider.Provider` base class as...
Today the amazon provider ported from enterprise scrapes the posted HTML from https://alas.aws.amazon.com/ . However, this can be improved: ``` # get the release versions... $ curl -O https://al2022-repos-us-west-2-9761ab97.s3.dualstack.us-west-2.amazonaws.com/core/releasemd.xml #...
No CPE dictionary or CPE processing is needed in the NVD provider. This could lead to a substantial decrease in memory consumption.
_As these are implemented, please edit this field to include the PR that implements it within the wishlist below:_ - [x] ~Consider switching json column processing to bson or another...