Skip to content

Commit

Permalink
rhel: deprecate updater in favor of VEX updater
Browse files Browse the repository at this point in the history
We can extract vulnerability information about containers from the
VEX data. This negates the need to look for it in the cvemap.xml file.
This change modifies the VEX updater to allow for ingesting
vulnerabilities in a way that can be matched my the RHCC matcher.

Signed-off-by: crozzy <[email protected]>
  • Loading branch information
crozzy committed Sep 12, 2024
1 parent 85a0988 commit 407a742
Show file tree
Hide file tree
Showing 18 changed files with 3,850 additions and 917 deletions.
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
-- The rhel-vex updater will now be responsible for RHCC advisories so we have
-- to delete the existing RHCC vulnerabilities.
DELETE FROM update_operation WHERE updater = 'rhel-container-updater';
DELETE FROM vuln where updater = 'rhel-container-updater';
4 changes: 4 additions & 0 deletions datastore/postgres/migrations/migrations.go
Original file line number Diff line number Diff line change
Expand Up @@ -112,4 +112,8 @@ var MatcherMigrations = []migrate.Migration{
ID: 13,
Up: runFile("matcher/13-delete-rhel-oval.sql"),
},
{
ID: 14,
Up: runFile("matcher/14-delete-rhcc-vulns.sql"),
},
}
51 changes: 0 additions & 51 deletions rhel/rhcc/fetcher_test.go

This file was deleted.

274 changes: 0 additions & 274 deletions rhel/rhcc/parser_test.go

This file was deleted.

Loading

0 comments on commit 407a742

Please sign in to comment.