CVE JSON 5.0 records now include Vendor and Product data.
Updates records to reflect this change in data/cve/v5.
Change-Id: I67937c0f6eec8d528fbc2f33c8eff51d3fb38832
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/446217
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
Reviewed-by: Jonathan Amsterdam <jba@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Previously, if a record did not have any versions associated with it, the default status would be marked as "unaffected" when it should be "affected". This change reflects that.
Additionally, a link to the record's go advisory is now stored in the references section of the CVE 5.0 JSON.
Change-Id: I55be77062638d34ba273b0c32799639f982cc266
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/444876
Run-TryBot: Maceo Thompson <maceothompson@google.com>
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Tests now enforce that a CVE JSON 5.0 record is stored in data/cve/v5 for each YAML report that sets cve_metadata.
The now-required files for all existing reports are added.
Fixesgolang/go#56302
Change-Id: I0731792cd80e672d5be7e753370d6f97e450562d
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/444576
Reviewed-by: Maceo Thompson <maceothompson@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Maceo Thompson <maceothompson@google.com>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Tatiana Bradley
Maceo Thompson