summaryrefslogtreecommitdiffstats
path: root/bin
Commit message (Collapse)AuthorAgeFilesLines
* check-new-issues: Cover upcoming decades for regular expression for issuesSalvatore Bonaccorso2020-01-041-2/+2
| | | | Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* Fix references to DLA regression updates on websiteBrian May2019-12-041-4/+8
| | | | | | | | | The first revision on the website doesn't have a postfix. The second revision has a postfix of -2. I was going to do something similar for DSA too, but found regression update advisories are not available on the website for DSAs.
* Revert "Fix references to DLA regression updates on website"Brian May2019-12-041-8/+4
| | | | | | This reverts commit 7177c0e348acbd70b76de7fc36116d02201bc9bf. I accidentally pushed this to the wrong branch.
* Fix references to DLA regression updates on websiteBrian May2019-12-041-4/+8
| | | | | | | | | The first revision on the website doesn't have a postfix. The second revision has a postfix of -2. I was going to do something similar for DSA too, but found regression update advisories are not available on the website for DSAs.
* Revert "gen-DLA: reminder for package short description / context"Sylvain Beucler2019-10-031-1/+1
| | | | | | This reverts commit c878209005bc1bb46345eb3f5cb6357135841131. This affects gen-* and carnil expressed it was unnecessary. I'll try to find another way to remember to add a short package description in security announcements.
* gen-DLA: reminder for package short description / contextSylvain Beucler2019-10-031-1/+1
|
* Allow again removal of package/{old,}stable entries from *-needed listSalvatore Bonaccorso2019-09-281-1/+1
| | | | | | | | | | | | | | Since the regular expression was tightened to fix a bug and not remove e.g. spice ans spice-gtk from a *-needed.list removal of specific entries of packages/stable or packages/oldstable got broken (wich is used by the Debian security team to mark entries which only need an update in one of the supported suites). Retain the desired fixed behaviour but try to allow to properly remove package/{old,}stable entries again. Fixes: b3070631dfbb ("bin/gen-DSA: Fix package removal from the needed_file. Don't remove packages starting with the same string as the to be removed package.") Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* bin/contact-maintainers: fix Python 2 code leftoverSylvain Beucler2019-09-201-1/+1
|
* Switch all bugzilla.novell.com URLs to bugzilla.suse.comPaul Wise2019-09-181-1/+1
| | | | | | | The novell.com address is historical and deprecated. Requested-by: Alexandros Toptsoglou <atoptsoglou@suse.com> Requested-in: <a3bc5c9f-d52d-a79d-e1da-6a6484cee9ea@suse.com>
* Port bin/maintainers to Python 3.x.Chris Lamb2019-09-071-61/+83
|
* bin/contact-maintainers: Provide mail template for LTS updates of minor issues.Mike Gabriel2019-08-301-1/+4
| | | | | | | | | | As the LTS team also sometimes works on packages with only <no-dsa> issues open, it might be good to also inform package maintainers about this. This adds an ltsp-update-planned-minor.txt mail template plus a command line option (--minor) that LTS front desk people can use if they choose to add a package to dla-needed.txt with <no-dsa> issues only.
* bin/lts-cve-triage.py: Correct undefined reference to `colored` when stdout ↵Chris Lamb2019-08-051-3/+7
| | | | is not a TTY
* bin/lts-cve-triage.py: Fix flake8 (3.7.8-3) warningsChris Lamb2019-08-051-20/+27
|
* bin/lts-cve-triage.py: Print notice to standard error, not stdoutChris Lamb2019-08-051-1/+2
|
* bin/lts-cve-triage.py: Drop unnecessary "pass" statementChris Lamb2019-08-051-1/+0
|
* bin/lts-cve-triage.py: Move to Python 3Chris Lamb2019-08-051-2/+2
|
* tracker_service: Update release -> codename mappings for stretch releaseSalvatore Bonaccorso2019-07-061-8/+8
| | | | | | | | | | | Update references for backports suites for buster-backports, stretch-backports and jessie-backports for status overview pages. For testing migration canidates (which is helpful during freeze periods to determine which fixes from usntable need to go to testing yet), make bullseye the new testing distribution. Updates lists of releases to sid, bullseye, buster, stretch and jessie.
* tracker_data.py: Update mapping release -> codenamesSalvatore Bonaccorso2019-07-061-4/+4
| | | | | | | Shift mappins for oldstable to stretch, stable to buster and new testing to bullsyeye. Make LTS suite jessie oldoldstable distribution.
* support-ended.py: Add release mapping for busterSalvatore Bonaccorso2019-07-061-0/+1
| | | | | | | Add release mapping for Debian 10 (buster) for EOL in all either security team or LTS team supported suites. There is no EOL (= LTS supported EOL) set yet for buster.
* List packages from oldstable and stable for dsa-needed listSalvatore Bonaccorso2019-07-061-1/+1
| | | | | Include in listing the oldstable distribution by enable the boolean value include_oldstable to true and enable the including logic.
* gen-{DSA,DLA}: Update mappings release and codenamesSalvatore Bonaccorso2019-07-061-4/+4
|
* lts-cve-triage: fix formatting with no-colors outputSylvain Beucler2019-07-021-1/+6
|
* lts-cve-triage: hint that color output is availableSylvain Beucler2019-07-021-0/+1
|
* lts-cve-triage: display lts' nodsa sub-stateSylvain Beucler2019-07-021-1/+1
|
* lts-cve-triage: use jessie's (not wheezy's) unsupported packages listSylvain Beucler2019-07-021-1/+1
|
* tracker_data.py: classify undetermined issues triaged '<ignored>' as 'no-dsa'Sylvain Beucler2019-07-011-0/+3
| | | | | | | | ('<ignored>' precedence over '<undetermined>') e.g. in lts-cve-triage.py, don't classify undermined 2017 jasperreports issues specifically marked '<ignored>' in the 'undetermined' report section (no more triage work needed in that case) (alternate fix would be rewritting history and reclassify those as <end-of-life>)
* tracker_data.py: string form for IssueStatusSylvain Beucler2019-07-011-0/+3
|
* Relax extraction for CVE description from allitems.txt fileSalvatore Bonaccorso2019-06-211-1/+1
| | | | | | | | | | | | | | | MITRE recently did changes on the infrastructure to submit CVE entries and slightly changed as well format of produced files. Recent entries do not seem to contain anymore a strict \n\n\n separation between the CVE description further from other notes attached to the entry. Slightly relax the regular expression but still try to catch correctly the description only in the description() subroutine by still anchoring to two \n\n, and two following \n\n to seperate the description. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* check-new-issues: Adapt path to actually used one on soriano.d.oSalvatore Bonaccorso2019-06-071-2/+2
|
* bin/support-ended.py: Update comment for stretch EOL in LTSSalvatore Bonaccorso2019-04-281-1/+1
|
* Update support end date for jessie in LTSSalvatore Bonaccorso2019-04-281-2/+1
| | | | Update time mapping according to https://wiki.debian.org/LTS/ overview.
* Drop lts-alt-cve-triage.sh scriptSalvatore Bonaccorso2019-04-221-38/+0
| | | | | | | | | | | The script was added as workaround for a security-tracker problem which was tracked as https://bugs.debian.org/919977 where the security-tracker behind CDN returned stale data for the json export. After some changes on the infrastructure done by DSA the problem seem to have gone. As such we do not need two scripts for the same thing as the alternative script really was only added as workaround to keep LTS folks having a working CVE triage script.
* Merge branch 'carnil/security-tracker-report-vuln-wrap-CVE-description'Salvatore Bonaccorso2019-03-241-1/+4
|\
| * Wrap long CVE descrptions for the vulnerability report templateSalvatore Bonaccorso2019-03-221-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | MITRE changed the layout of the html pages for the CVE entries resulting in long lines for the CVE descpritons not wrapped anymore directly already in the fetched HTML. Switch to use texwrap module to wrap the text in the description lines and to be prefixed with a marker if the description is too long to be hold in one line. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* | also parse CVE's enclosed in square bracketsThijs Kinkhorst2019-03-231-1/+1
|/
* Truncate length of description text added to listsSalvatore Bonaccorso2019-03-181-0/+2
| | | | | | | | | | | This is not optimal at this point as it might truncate word in between which in the old schema full words were left because MITRE did not provide the description in one long line and the updatelist was just adding the first line. This still is enough as the tracker will add full description for the webpage and the truncated description was just to keep a "short description" in the CVE list file itself.
* Adapt parsing of MITRE master list according to new layout in htmlSalvatore Bonaccorso2019-03-181-1/+1
|
* Replace file() with open() for Python 3 compatabilityBrian May2019-03-044-4/+4
|
* tracker-service: don't repeat the package linkEmilio Pozuelo Monfort2019-03-011-0/+4
| | | | | ...for non-main packages. For those, emptying pkg_name is not enough, we also need to set title to None.
* Adapt URL to DLA advisories in a https://www.debian.org/security/lts/Salvatore Bonaccorso2019-02-121-1/+1
| | | | | | | | | | | As discussed in https://bugs.debian.org/859122 DLAs and DSAs will be separated in different supages. This needs adaption for the URL referenced in the source fields of the security-tracker for DLAs. v2: Correct URL to actually match the final location under /lts/security. Cf. https://bugs.debian.org/859122#82 Thanks: Laura Arjona Reina, Holger Levsen and Antoine Beaupré
* An alternative triage script that works if the json sync is not working.Ola Lundqvist2019-02-101-0/+38
|
* lts; do not unclaim packages matching prefix, but complete package nameAntoine Beaupré2018-11-261-1/+1
|
* add flag to exclude package from reviewAntoine Beaupré2018-11-231-2/+5
|
* look at the latest between update and claimed datesAntoine Beaupré2018-11-221-1/+4
| | | | | | | Previous implementation wouldn't detect updates to the file and only looked at the claimed dates. This was an oversight: the goal was to take into account normal edits to the claimed block as well, so that users can "ping" the claim to extend their claim.
* clarify closing comment: we are editing the fileAntoine Beaupré2018-11-221-1/+1
| | | | | | Previous wording seemed to indicate the user had to make a change by hand, but the --unclaim paramater forcibly makes changes to the file directly.
* inline explanation for why a package is unclaimedAntoine Beaupré2018-11-221-0/+1
| | | | | | | | A little more verbose explanation will help in diagnosing why a specific package was unclaimed. It also shows the exact diff that was used for comparison and the requested delay. Requested-by: Holger Levsen <holger@layer-acht.org>
* do not crash if --unclaim is not specifiedAntoine Beaupré2018-11-191-4/+5
|
* Remove bin/split-by-year as its printfs mangle data (\chars) and safe ↵Daniel Lange2018-11-141-47/+0
| | | | scripts are available in BTS #908678
* add default value for unclaim parameterAntoine Beaupré2018-11-091-2/+4
|
* allow for human-friendly date ranges as wellAntoine Beaupré2018-11-091-3/+15
|

© 2014-2024 Faster IT GmbH | imprint | privacy policy