summaryrefslogtreecommitdiffstats
path: root/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* Drop powerpc from sid architecturesRaphaël Hertzog2018-07-081-1/+1
| | | | It's gone from the main mirror. It now resides on ports.debian.org.
* Merge branch 'jcristau/security-tracker-head'Salvatore Bonaccorso2018-07-071-2/+5
|\
| * lib: add support for the HEAD HTTP methodJulien Cristau2018-07-061-2/+5
| | | | | | | | Fixes security-tracker-team/security-tracker#3
* | Also set Content-Length for HTMLResultJulien Cristau2018-07-061-0/+1
|/
* Set Content-Length for BinaryResultJulien Cristau2018-07-061-0/+1
|
* lib: add "headers" attribute on Result objectsJulien Cristau2018-07-061-31/+26
| | | | Make it possible to set arbitrary headers when returning a Result.
* Reduce list of supported architectures for jessie under LTS supportSalvatore Bonaccorso2018-06-161-1/+1
|
* sources: add name and path infoEmilio Pozuelo Monfort2018-06-151-6/+9
| | | | This avoids having to guess the name from the path.
* Rename CVECUSTOMERFile to CVEExtendFileEmilio Pozuelo Monfort2018-06-081-1/+5
|
* Simplify Extends supportEmilio Pozuelo Monfort2018-06-081-44/+20
| | | | | | BugExtend.writeDB() is pretty similar to BugBase's, so update the latter to take extends into account when necessary to avoid unneeded duplicated code.
* Add support for CUSTOMER bugs and CVE extendsBastian Blank2018-06-081-1/+36
|
* Dynamically create announce queriesEmilio Pozuelo Monfort2018-06-081-2/+20
| | | | Based on the DSA-like files present in the config file.
* Move source list to a config fileEmilio Pozuelo Monfort2018-06-081-10/+11
|
* Merge DLAFile into DSAFileEmilio Pozuelo Monfort2018-06-082-10/+10
| | | | | The only difference is that the regular expressions look for DSA or DLA, but we can just guess that based on the path.
* Simplify DLAFileEmilio Pozuelo Monfort2018-06-081-36/+1
| | | | Subclass DSAFile rather than copying it.
* Generalize the code to fetch Packages/Sources updatesRaphaël Hertzog2018-05-311-0/+39
| | | | | | | | | | It's now easy to extend by adding a supplementary lib/foobar-releases.mk file. I verified that the set of downloaded files are identical with the exception of a bug that got fixed in the process: the update-backports-% rule used to download files for all sections (main, contrib, non-free) but saved them all under the name corresponding to the main section.
* Revert changes unrelated to the partclone no-dsa markingSalvatore Bonaccorso2018-05-052-45/+3
|
* partclone no-dsa on wheezyEmilio Pozuelo Monfort2018-05-052-3/+45
|
* Convert URLs from http to https where it seems safe to do soPaul Wise2018-01-171-1/+1
|
* Let the CVE parser know about postponed & ignored sub-statesSebastien Delafond2017-08-131-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54714 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Make sure comment is initializedSebastien Delafond2017-08-111-0/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54618 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Give /tracker/status/release/stable the ability to filter on "ignored" & ↵Sebastien Delafond2017-08-101-3/+7
| | | | | | "postponed" no-dsa substates git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54582 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Expose "ignored" & "postponed" no-dsa sub-states to the web UISebastien Delafond2017-08-101-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54581 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Introduce new "ignored" & "postponed" sub-states for no-dsaSebastien Delafond2017-08-102-7/+13
| | | | | | | They will be stored in the "reason" field from package_notes_nodsa table, that was unused so far. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54580 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Revert "s/sid/jessie/ for ../../data/packages/<dist>__main_Sources"Sebastien Delafond2017-08-041-1/+1
| | | | | | | | (this was meant to remain a local change only) This reverts commit cee737fcf614b926c36d0e612c896da296921f09. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54263 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix spelling issue in parsers.pySebastien Delafond2017-08-041-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54262 e39458fd-73e7-0310-bf30-c45bca0a0e42
* s/sid/jessie/ for ../../data/packages/<dist>__main_SourcesSebastien Delafond2017-08-041-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54257 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix parser for DLA/listSebastien Delafond2017-08-041-4/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54256 e39458fd-73e7-0310-bf30-c45bca0a0e42
* security_db: Update mappings after stretch stable releaseSalvatore Bonaccorso2017-06-171-16/+16
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52650 e39458fd-73e7-0310-bf30-c45bca0a0e42
* dist_config: Make sid dependent on own supported architecturesSalvatore Bonaccorso2017-06-171-1/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52649 e39458fd-73e7-0310-bf30-c45bca0a0e42
* dist_config: Add support for buster release and add initial list of ↵Salvatore Bonaccorso2017-06-171-0/+5
| | | | | | supported architectures git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52648 e39458fd-73e7-0310-bf30-c45bca0a0e42
* debian_support: Add buster to supported release nameSalvatore Bonaccorso2017-06-171-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52647 e39458fd-73e7-0310-bf30-c45bca0a0e42
* List stretch archs without previous dependency to jessie archs listSalvatore Bonaccorso2016-11-081-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@46063 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Reduce list of architectures for wheezySalvatore Bonaccorso2016-05-011-1/+1
| | | | | | | The tracker otherwise still would try to fetch lists for security.d.o for the now removed architectures and fail to update the tracker. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41339 e39458fd-73e7-0310-bf30-c45bca0a0e42
* only hardcode the security-master hostname oncePaul Wise2015-11-091-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@37623 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix another occurence of old hostnameSalvatore Bonaccorso2015-11-091-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@37622 e39458fd-73e7-0310-bf30-c45bca0a0e42
* secmaster.py: Update hostname for new security-masterSalvatore Bonaccorso2015-11-091-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@37621 e39458fd-73e7-0310-bf30-c45bca0a0e42
* /data/json: Work around performance issue due to SQLite planner changeFlorian Weimer2015-05-281-3/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@34565 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Overhaul the source-package pageFlorian Weimer2015-05-251-37/+116
| | | | | | | | | | | | | | | | | | | This commit addresses a long-standing bug where resolved bugs disappear completely. In addition, lts/security archives are no longer shown separately, and no-dsa is marked explicitly. The package vulnerability state is taken from the database, so it is hopefully quite accurate. Remove security_db.DB.getBugsForSourcePackage() and replace it with a global function security_db.getBugsForSourcePackage(). Add additional named tuples BugForSourcePackage, BugForSourcePackageRelease, BugsForSourcePackage_internal. Add yellow CSS style. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@34502 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Introduce named tuples BugsForSourcePackage, DSAsForSourcePackageFlorian Weimer2015-05-241-7/+27
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@34474 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Missing renames for jessie -> stretch in temporary view for testing statusSalvatore Bonaccorso2015-05-051-3/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@34073 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Adjust some places where jessie -> stretch as testing release was missingSalvatore Bonaccorso2015-05-051-3/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@34072 e39458fd-73e7-0310-bf30-c45bca0a0e42
* add support for oldoldstable and stretch and make jessie the new stable releaseHolger Levsen2015-04-263-11/+17
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@33868 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Dump data as .yaml via /tracker/data/yaml (Closes: #761859)Holger Levsen2015-02-261-0/+8
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@32509 e39458fd-73e7-0310-bf30-c45bca0a0e42
* security_db.Db.getUnreportedVulnerabilities(): New methodFlorian Weimer2015-01-181-0/+29
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31490 e39458fd-73e7-0310-bf30-c45bca0a0e42
* security_db.DB._parseFile(): Only treat "Extra-Source-Only: yes" as skip-worthyFlorian Weimer2015-01-171-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31472 e39458fd-73e7-0310-bf30-c45bca0a0e42
* security_db.DB._parseFile(): Skip entries with Extra-Source-OnlyFlorian Weimer2015-01-171-0/+7
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31468 e39458fd-73e7-0310-bf30-c45bca0a0e42
* security_db.DB.getUnknownPackages(): Filter out [experimental]Florian Weimer2015-01-171-0/+1
| | | | | | | | We currently do not load package lists from the experimental source, so we cannot perform the typo check there. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31461 e39458fd-73e7-0310-bf30-c45bca0a0e42
* debian_support.Release: Add "experimental" as a pseudo-releaseFlorian Weimer2015-01-171-1/+2
| | | | | | | At the start, to avoid issues with code assuming "sid" being last. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31458 e39458fd-73e7-0310-bf30-c45bca0a0e42
* embedd all notes in <span> tagsHolger Levsen2014-12-011-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@30469 e39458fd-73e7-0310-bf30-c45bca0a0e42

© 2014-2024 Faster IT GmbH | imprint | privacy policy