Open mjherzog opened 1 year ago
@mjherzog If this one is free I am working on it.
@ambuj-1211 AlmaLinux uses OSV schema and we have a script to handle OSV you should use this script instead of writing the importer from scratch. https://github.com/nexB/vulnerablecode/blob/4a6734b1bbaa8df6fd816f3eb4fd843a88c1ecec/vulnerabilities/importers/osv.py
and try to have a look at similar importers : https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/github_osv.py https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/oss_fuzz.py
@ambuj-1211 AlmaLinux uses OSV schema and we have a script to handle OSV you should use this script instead of writing the importer from scratch. https://github.com/nexB/vulnerablecode/blob/4a6734b1bbaa8df6fd816f3eb4fd843a88c1ecec/vulnerabilities/importers/osv.py
and try to have a look at similar importers : https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/github_osv.py https://github.com/nexB/vulnerablecode/blob/main/vulnerabilities/importers/oss_fuzz.py
Okay @ziadhany
AlmaLinux (CentOS successor) has its own listing of applicable OSV advisories at: https://github.com/AlmaLinux/osv-database/tree/master/advisories. We may want to add these to VulnerableCode.