Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | gen-D[LS]A: Replace use of which with command -v | Salvatore Bonaccorso | 2021-08-21 | 1 | -2/+2 |
| | | | | | | | As debianutils 5.3-1 deprecates the use of which and will be removed in a future update, switch to the command shell builtin. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | ||||
* | List packages from oldstable and stable for dsa-needed list | Salvatore Bonaccorso | 2021-08-12 | 1 | -1/+1 |
| | | | | | | | | Include in listing the oldstable distribution by enabling the boolean value "include_oldstable" to true and so enabling the including logic later on in the script. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | ||||
* | Not making any changes to a foo-needed.txt file may also indicate a ↵ | Chris Lamb | 2021-08-09 | 1 | -1/+1 |
| | | | | misspelled (or conflated) source package name. | ||||
* | dla: claim openexr | Sylvain Beucler | 2021-07-28 | 1 | -1/+1 |
| | |||||
* | bin/lts-needs-forward-port: fix lib path | Sylvain Beucler | 2021-07-24 | 1 | -1/+1 |
| | |||||
* | Fix report-vuln for Python 3 | Moritz Mühlenhoff | 2021-07-01 | 1 | -1/+1 |
| | |||||
* | embedded-cleanup: Switch to use coccia.d.o hardcoded | Salvatore Bonaccorso | 2021-06-02 | 1 | -2/+2 |
| | | | | | | | Alioth went away a long time ago, but the UDD database can be queried from the DD accessible coccia.debian.org. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | ||||
* | merge-cve-files: fix variable name in assertion message | Emilio Pozuelo Monfort | 2021-05-14 | 1 | -1/+1 |
| | | | | And slightly improve the message while at it. | ||||
* | tracker_service: also sort CVEs on stable-like pages | Emilio Pozuelo Monfort | 2021-04-30 | 1 | -2/+4 |
| | |||||
* | Sort CVEs as versions | Sylvain Beucler | 2021-04-30 | 1 | -4/+4 |
| | |||||
* | lts: take glib2.0 | Emilio Pozuelo Monfort | 2021-02-18 | 1 | -1/+18 |
| | |||||
* | lts-cve-triage.py: Setup paths early due to transitive imports in ↵ | Chris Lamb | 2021-02-15 | 1 | -1/+2 |
| | | | | tracker_data.py. | ||||
* | Fix CVE10k problem for CVE with more than 4 numbers | Carles Pina i Estany | 2021-02-15 | 2 | -22/+19 |
| | | | | | | | It had no consequences in security-tracker: the next-oldstable-point-update.txt file is empty and the next-point-update.txt CVEs are not used yet for what I can see via this code path. | ||||
* | merge-cve-files: support replacing main (sid) annotations | Emilio Pozuelo Monfort | 2021-02-03 | 1 | -9/+16 |
| | |||||
* | Add a script to merge two CVE files | Emilio Pozuelo Monfort | 2020-12-21 | 1 | -0/+73 |
| | | | | | It currently supports the necessary annotations to automatically merge the point release lists. | ||||
* | tracker_data.py: Use explicitly octal mode on mkdir call | Salvatore Bonaccorso | 2020-11-21 | 1 | -2/+2 |
| | | | | | | Although this is probably subject to personal preference, switch to octal representation directly instead of specifying the mode in decimal variant. Reading 0o700 makes it immediately clear what is meant. | ||||
* | LTS: Ensure ~/.cache exists before writing out tracker data cache | Roberto C. Sánchez | 2020-11-21 | 1 | -0/+5 |
| | | | | | | | | | | | | | | | If ~/.cache does not already exist, then this happens: $ ./bin/lts-cve-triage.py Updating ~/.cache/debian_security_tracker.json from https://security-tracker.debian.org/tracker/data/json ... Traceback (most recent call last): File "./bin/lts-cve-triage.py", line 94, in <module> tracker = TrackerData(update_cache=not args.skip_cache_update) File "/home/roberto/src/freexian/security-tracker.git/bin/tracker_data.py", line 40, in __init__ self.update_cache() File "/home/roberto/src/freexian/security-tracker.git/bin/tracker_data.py", line 77, in update_cache with open(self.cached_data_path, 'w') as cache_file: FileNotFoundError: [Errno 2] No such file or directory: '/home/roberto/.cache/debian_security_tracker.json' | ||||
* | gen-DSA: require DEBFULLNAME env variable | Emilio Pozuelo Monfort | 2020-08-31 | 1 | -0/+4 |
| | |||||
* | Update hashbang for remaining python2 scripts | Emilio Pozuelo Monfort | 2020-08-31 | 3 | -3/+3 |
| | | | | | | | | These are all currently unused, so it's a bit hard to test them when porting them to Python 3. So rather than doing that, let's explicitly mark them as being Python 2. Before porting them we may want to check if they are still useful or if they should be removed instead. | ||||
* | tracker_service.py: Source: more: Link to vendor information via HTTPS | Salvatore Bonaccorso | 2020-08-24 | 1 | -1/+1 |
| | |||||
* | tracker_service: use setup_paths | Emilio Pozuelo Monfort | 2020-08-14 | 1 | -1/+1 |
| | |||||
* | tracker_service: reorder imports | Emilio Pozuelo Monfort | 2020-08-14 | 1 | -4/+5 |
| | |||||
* | Add missing imports | Emilio Pozuelo Monfort | 2020-08-14 | 2 | -0/+2 |
| | | | | | | The one for update-db was dropped in f815d203, whereas tracker_service has been getting the import from the web_support one. But let's better be explicit. | ||||
* | secmaster: add executable bit | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -0/+0 |
| | |||||
* | secmaster.py: move to bin/ | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -0/+60 |
| | |||||
* | De-duplicate setup_path | Emilio Pozuelo Monfort | 2020-08-13 | 9 | -89/+19 |
| | | | | | | | | | | All the scripts in bin/ can share the definition. Also setup_paths.py calls setup_path so one just has to import that module before importing those from lib/python/. Additionally this helps some scripts work better under Python 3, as one variant of setup_paths that we had called string.rfind, which is not present there. | ||||
* | update-nvd: don't chdir | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -2/+3 |
| | |||||
* | inject-embedded-code-copies: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -1/+1 |
| | |||||
* | lts-needs-forward-port: port to Python 3 | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -2/+1 |
| | |||||
* | support-ended: encode file as UTF-8 | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -2/+1 |
| | |||||
* | support-ended: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -1/+1 |
| | |||||
* | support-ended: add deb11 to the releases list | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -0/+1 |
| | | | | | The file exists in debian-security-support so we need to have it here too or we will crash. | ||||
* | show-debsecan: strip lines before printing them | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -1/+1 |
| | | | | To avoid double newlines. | ||||
* | show-debsecan: port to Python 3 | Emilio Pozuelo Monfort | 2020-08-13 | 1 | -3/+3 |
| | |||||
* | tracker_service: don't crash on /source-package/ | Emilio Pozuelo Monfort | 2020-08-11 | 1 | -0/+6 |
| | | | | If no source package is given, return a 404 error. | ||||
* | tracker_service: use with statement | Emilio Pozuelo Monfort | 2020-08-11 | 1 | -16/+12 |
| | |||||
* | Correct a typo in compare-nvd-cve | Felix Yan | 2020-08-08 | 1 | -1/+1 |
| | |||||
* | check-syntax: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | update-db: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | tracker_service: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | tracker_service: convert maps to lists for make_list | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -3/+3 |
| | | | | | | | | | Otherwise under python 3, make_list will fail with empty maps as the map object will evaluate to true even if it's empty. We could cast to a list in make_list before evaluating it, but then we would need to ensure that we're receiving a valid type. This is probably simpler. | ||||
* | apt-update-file: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | update-nvd: switch to Python 3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | update-nvd: convert values to a list | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | | | | | Otherwise we get a dict_values object under python3 which we can't sort. | ||||
* | bin/report-vuln: switch to python3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -8/+3 |
| | |||||
* | bin/report-vuln: decode the url data | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+1 |
| | | | | We get a bytes object under python 3. | ||||
* | bin/report-vuln: adapt urllib import for py3 | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -3/+7 |
| | |||||
* | bin/report-vuln: split imports | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -1/+4 |
| | |||||
* | bin/contact-maintainers: don't redefine get_maintainers | Emilio Pozuelo Monfort | 2020-08-06 | 1 | -6/+3 |
| | |||||
* | report-vuln: uses python2 still, make this clear | Salvatore Bonaccorso | 2020-08-05 | 1 | -1/+1 |
| |