Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve export command #1571

Merged
merged 19 commits into from
Sep 12, 2024
Merged

Improve export command #1571

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
9cfb624
Extract new aboutcode.hashids package
pombredanne Aug 21, 2024
401539b
Rename Package.affecting_vulnerabilities
pombredanne Aug 26, 2024
670814b
Streamline packages/all code
pombredanne Aug 26, 2024
f245491
Add new Weakness.cwe property
pombredanne Aug 26, 2024
c4e617d
Improve model doc and apply minor refactoring
pombredanne Aug 26, 2024
ab31565
Refactor export command
pombredanne Aug 27, 2024
00e48cc
Give vulnrichment weakness a stable order
pombredanne Aug 27, 2024
066c8c5
Use list, not queryset for tests
pombredanne Aug 27, 2024
65230b5
Merge latest main branch
pombredanne Aug 27, 2024
43611f1
Remove unused imports
pombredanne Aug 27, 2024
c9b9617
Sort requirements
pombredanne Aug 29, 2024
48328f1
Do not use docker Python libraries
pombredanne Aug 29, 2024
65d0e17
Bump Django and DRF
pombredanne Aug 29, 2024
2a270ce
Generate correct VCIDs
pombredanne Sep 2, 2024
bb3c806
Add new serializers for future API extension
pombredanne Sep 11, 2024
9a5f070
Fix typo in VCID path generator
pombredanne Sep 11, 2024
7647c35
Build aboutcode.hashid as a package
pombredanne Sep 11, 2024
1375847
Merge branch 'main' into improved-export-command
pombredanne Sep 11, 2024
55ba9c2
Merge branch 'main' into improved-export-command
pombredanne Sep 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions CHANGELOG.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,8 @@ Version (next)
- Add Pipeline to flag ghost packages (#1533)
- Add logging configuration (#1533)
- Drop support for python 3.8 (#1533)
- Drop using docker-compose and use the built-in "docker compose" instead
- Upgrade core dependencies including Django and Rest Framework


Version v34.0.0
Expand Down
4 changes: 2 additions & 2 deletions Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -129,9 +129,9 @@ docs:

docker-images:
@echo "-> Build Docker services"
docker-compose build
docker compose build
@echo "-> Pull service images"
docker-compose pull
docker compose pull
@echo "-> Save the service images to a compressed tar archive in the dist/ directory"
@mkdir -p dist/
@docker save postgres vulnerablecode_vulnerablecode nginx | gzip > dist/vulnerablecode-images-`git describe --tags`.tar.gz
Expand Down
12 changes: 6 additions & 6 deletions README.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,18 +66,18 @@ Getting started
Run with Docker
^^^^^^^^^^^^^^^^

First install docker and docker-compose, then run::
First install docker, then run::

git clone https://github.com/nexB/vulnerablecode.git && cd vulnerablecode
make envfile
docker-compose build
docker-compose up -d
docker-compose run vulnerablecode ./manage.py import --list
docker compose build
docker compose up -d
docker compose run vulnerablecode ./manage.py import --list

Then run an importer for nginx advisories (which is small)::

docker-compose exec vulnerablecode ./manage.py import vulnerabilities.importers.nginx.NginxImporter
docker-compose exec vulnerablecode ./manage.py improve --all
docker compose exec vulnerablecode ./manage.py import vulnerabilities.importers.nginx.NginxImporter
docker compose exec vulnerablecode ./manage.py improve --all

At this point, the VulnerableCode app and API should be up and running with
some data at http://localhost
Expand Down
15 changes: 15 additions & 0 deletions aboutcode/hashid/README.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
aboutcode.hashid
==================

This is a library of utilities to compute ids and file paths for AboutCode using VCID and PURLs.

License
-------

Copyright (c) nexB Inc. and others. All rights reserved.

SPDX-License-Identifier: Apache-2.0

See https://github.com/aboutcode-org/vulnerablecode for support or download.

See https://aboutcode.org for more information about AboutCode OSS projects.
Loading
Loading