No files checked for current year

gocsaf / csaf

Tools to download or provide CSAF (Common Security Advisory Framework) documents.

https://csaf.io

41 stars 24 forks source link

No files checked for current year #471

Closed tschmidtb51 closed 1 year ago

tschmidtb51 commented 1 year ago

It looks like no files are checked if the csaf_checker should investigate the current year only.

Steps to reproduce: Use the csaf_checker on a valid CSAF trusted provider with the option -t 2023. If the -v option is used, it should result in listing the CSAF files retrieved. However, no files were retrieved and also no signatures/hashes checked.

Tested with 3.0.0-beta1-g1

s-l-teichmann commented 1 year ago

The problem arises from the folder of year check and the constructed time interval by the -t flag.

-t 2023 creates a time interval from the beginning of the year and now. 2023 is not over now.

The folder year check tests if the last second of the year is in that interval. This is not the case so the advisory gets skipped.

The test has to be changed in a way to check if the whole years interval has an overlap with the time interval.

s-l-teichmann commented 1 year ago

PR #472 should fix this