Open pombredanne opened 3 years ago
Btw, I just found out that the graphql api also provides the references and those matchup wiht the data at web ui .
Btw, I just found out that the graphql api also provides the references and those matchup wiht the data at web ui .
Much better then!
The combo of the graphql API and the OSV-formatted git repo could make this moot.... or not. The https://github.com/github/advisory-database/blob/5b6aa08e4edaca41f91dbe18cf8c6fd65cefe528/advisories/github-reviewed/2023/01/GHSA-c653-6hhg-9x92/GHSA-c653-6hhg-9x92.json JSON does not contain the "credit" information from https://github.com/advisories/GHSA-c653-6hhg-9x92 and the data structure is different, in a likely lossy way.
The GitHub advisories are somewhat weird:
Therefore I think we should use either:
Some scraper exists at https://github.com/yusufsn/local-repo/blob/87054815200d3add63f201d9feb1e2bedd18d0d6/code/urls_crawlers.ipynb#L177