search

aboutcode-org / vulnerablecode

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
https://public.vulnerablecode.io
Apache License 2.0
544 stars 200 forks source link

Use the SCIO Pipeline Mechanism for Importers/Improvers #1509

Open keshav-space opened 4 months ago

keshav-space commented 4 months ago

We should adopt/reuse the pipeline mechanism in SCIO for Importers and Improvers. With this, we would have a common programming model across tools, including ScanCode.io and PurlDB See also:

Migrate the improvers to aboutcode.pipeline:

Migrate the importers to aboutcode.pipeline:

pombredanne commented 3 months ago

@keshav-space do you have any commit for this yet?

keshav-space commented 3 months ago

@keshav-space do you have any commit for this yet?

@pombredanne here is WIP PR https://github.com/nexB/vulnerablecode/pull/1533/

tdruez commented 3 months ago

aboutcode.pipeline 0.1 published to PyPI at https://pypi.org/project/aboutcode.pipeline/