v2.61.6

v2.61.6 (2024-06-18)

Fix

• fix(csaf): download only files from csv

RHINENG-10605 (423c7a5)

v2.61.5

v2.61.5 (2024-06-18)

Fix

• fix(reposcan): exclude under investigation CVEs from OVAL

RHINENG-9878 (0aa518a)

Unknown

• Adding Security-Scan Script to Enable Jenkins Security Scan Job (5a56460)

v2.61.4

v2.61.4 (2024-06-13)

Chore

• chore(reposcan): add OVAL_SYNC_ALL_FILES flag (484a105)

Fix

• fix(csaf): syntax error with IN query

vmaas-reposcan | vmaas-reposcan 2024-06-03 17:50:17,781:ERROR:vmaas.reposcan.database.object_store:Failed to import csaf file to DB: 'Traceback (most recent call last):\n File "/vmaas/vmaas/reposcan/database/csaf_store.py", line 75, in _save_csaf_files\n cur.execute("select id, name from csaf_file where name in %s", (tuple(files),))\npsycopg2.errors.SyntaxError: syntax error at or near ")"\nLINE 1: select id, name from csaf_file where name in ()\n ^\n'|

RHINENG-10604 (37b1e31)

v2.61.3

v2.61.3 (2024-06-07)

Fix

• fix(build): update it-root-ca

RHINENG-10539 (c1d7cca)

v2.61.2

v2.61.2 (2024-06-06)

Fix

• fix: store package_name_id for fixed csaf_product

RHINENG-10310 (bd09fe2)

v2.61.1

v2.61.1 (2024-06-06)

Chore

• chore: waive CVE-2019-8341 jinja2 (old CVE, we're using latest version, false positive?) (d66c1f2)

• chore: Centos 8 Stream was removed, install postgresql and rpm-devel from COPR (dd006c6)

Fix

• fix: include levelname in CW logs from python code

RHINENG-8336 (eca466c)

v2.61.0

v2.61.0 (2024-05-31)

Chore

• chore(csaf): log warning if there are multiple errata

RHINENG-10310 (7df7880)

• chore(csaf): raise NotImplementedError for unsupported status_id

RHINENG-10310 (555b28d)

• chore: update go version and dependencies

RHINENG-9601 (42162e2)

Feature

• feat(csaf): dump erratum

RHINENG-10310 (90443d3)

• feat(csaf): save errata to db

RHINENG-10310 (5450b60)

• feat(csaf): add errata to db schema

RHINENG-10310 (f6a5a12)

• feat(csaf): parse fixed csaf vex products

RHINENG-10310 (6f2580d)

Fix

• fix(csaf): start processing fixed product status

RHINENG-10310 (c0a97e9)

Test

• test(csaf): extend test with errata parsing

RHINENG-10310 (572cc41)

v2.60.4

v2.60.4 (2024-05-28)

Fix

• fix(csaf): cves for source packages

RHINENG-9890 (6b7c3dc)

v2.60.3

v2.60.3 (2024-05-16)

Fix

• fix(csaf): remove products if they become fixed/unaffected

RHINENG-10039 (f6b4702)

v2.60.2

v2.60.2 (2024-05-16)

Chore

• chore(csaf_test): fix input for test_csaf_store

use correct CsafData content to call store function, this commit is not fixing the test itself which does not seem to have any asserts, test just runs the code (99d29c2)

• chore: update dependencies

RHINENG-10048 (79be3aa)

Fix

• fix(csaf): update file timestamp for skipped cve

RHINENG-9586 (ca43ccc)