Fixes incorrect grypedb namespace record query

anchore / anchore-engine

A service that analyzes docker images and scans for vulnerabilities

Apache License 2.0

1.58k stars 271 forks source link

Fixes incorrect grypedb namespace record query #1257

Closed zhill closed 3 years ago

zhill commented 3 years ago

Uses the metadata table instead of the constraint table to ensure the counts are per vulnerability, not per package constraint.

Vijay-P commented 3 years ago

FYI before merge, this will conflict with changes in https://github.com/anchore/anchore-engine/pull/1258, so if this PR is merged before that PR then @zburstein will need to update #1258. Otherwise, f92607144b700ee4e76bd2f961e861c323a2b70a will need to be dropped from this branch.