feat: wip! wip! wip!

Signed-off-by: Raito Bezarius <[email protected]>

Author: RaitoBezarius

src/website/shared/channels.py

@@ -1,6 +1,6 @@
 from dataclasses import dataclass
 
-from pgpubsub.channel import TriggerChannel
+from pgpubsub.channel import TriggerChannel, Channel
 
 from shared.models import NixDerivation
 from shared.models.cve import Container
@@ -46,3 +46,11 @@ class CVEDerivationClusterProposalChannel(TriggerChannel):
     # We don't need to lock notifications.
     # If we are caching twice the same proposal, we will just replace it.
     lock_notifications = False
+
+@dataclass
+class NixEvaluationCompleteChannel(Channel):
+    evaluation_id: int
+    # We do not want to want to perform twice attribute path tracking.
+    # It's expensive and the second time it's the identity mapping we are constructing.
+    # We may revisit this if needed.
+    lock_notifications = True

src/website/shared/listeners/nix_evaluation.py

@@ -13,13 +13,14 @@
 from django.conf import settings
 from django.db.models import Avg
 
-from shared.channels import NixEvaluationChannel
+from shared.channels import NixEvaluationChannel, NixEvaluationCompleteChannel
 from shared.evaluation import (
     SyncBatchAttributeIngester,
     parse_evaluation_result,
 )
 from shared.git import GitRepo
 from shared.models import NixDerivation, NixEvaluation
+from shared.models.linkage import DerivationClusterProposalLink
 
 logger = logging.getLogger(__name__)
 
@@ -240,6 +241,14 @@ async def evaluation_entrypoint(
                         state=NixEvaluation.EvaluationState.COMPLETED,
                         elapsed=elapsed,
                     )
+
+                    # Notify that we have a new evaluation ready and
+                    # any listeners should now proceed to an global update of old derivations
+                    # via attribute path.
+                    pgpubsub.notify(
+                        'shared.channels.NixEvaluationCompleteChannel',
+                        model_id=evaluation.pk,
+                    )
     except Exception as e:
         elapsed = time.time() - start
         logger.exception(
@@ -279,3 +288,29 @@ def run_evaluation_job(old: NixEvaluation, new: NixEvaluation) -> None:
             new,
         )
     )
+
+def swap_derivations_based_on_attrpath(derivation_ids: list[int]):
+    new_derivation_id_subquery = """
+    SELECT new_derivation.id
+        FROM shared_nixderivation AS old_derivation
+        JOIN shared_nixderivation AS new_derivation
+          ON old_derivation.attribute = new_derivation.attribute
+    WHERE 
+        DerivationClusterProposalLink.derivation_id = old_derivation.id
+        AND new_derivation.parent_evaluation_id = %s
+    """
+
+
+@pgpubsub.listener(NixEvaluationCompleteChannel)
+def run_attribute_tracking_job(evaluation_id: int) -> None:
+    # Our objective is to update:
+    # - pending suggestions
+    # - accepted suggestions
+    # TODO: in the future, we should not update "mitigated" issues so we can easily revisit _which_ derivation was the last one.
+
+    for proposal in CVEDerivationClusterProposal.objects.filter(status__in=(CVEDerivationClusterProposal.Status.PENDING, CVEDerivationClusterProposal.ACCEPTED)).iterator():
+        # Update all proposal
+        swap_derivations_based_on_attrpath()
+
+    # TODO: Update all cached variants as well.
+