Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security vulnerabilities #57

Merged
merged 5 commits into from
Dec 6, 2023
Merged

Security vulnerabilities #57

merged 5 commits into from
Dec 6, 2023

Conversation

lucyb
Copy link
Collaborator

@lucyb lucyb commented Nov 28, 2023
edited
Loading

This counts the number of vulnerability alerts that were either open or closed
for any given date and any repo. Alerts are never deleted, they are either
fixed or dismissed.

These counts are then written to a db table. For some reason, the db table
needs to have a column called "value". I'm not sure why and it's not being used
at the moment.

There is no paging on requests to the graphql api at the moment, so some repos
in the ebmdatalab org will be getting missed. In future, we will miss some
vulnerabilities too if we don't page the results.

@lucyb lucyb force-pushed the security-vulnerabilities branch 2 times, most recently from 1761f1f to a92a942 Compare November 29, 2023 17:53
@lucyb lucyb marked this pull request as ready for review November 29, 2023 18:06
@lucyb lucyb changed the title WIP: Security vulnerabilities Security vulnerabilities Nov 29, 2023
@lucyb lucyb mentioned this pull request Dec 5, 2023
Closed
@lucyb lucyb force-pushed the security-vulnerabilities branch 2 times, most recently from 3f81b5c to a6b9a69 Compare December 6, 2023 12:45
lucyb added 5 commits December 6, 2023 12:49
@lucyb
Get all vulnerabilities open or closed
006e88a 
This counts the number of vulnerability alerts that were either open or closed
for any given date and any repo. Alerts are never deleted, they are either
fixed or dismissed.

These counts are then written to a db table. For some reason, the db table
needs to have a column called "value". I'm not sure why and it's not being used
at the moment.

There is no paging on requests to the graphql api at the moment, so some repos
in the ebmdatalab org will be getting missed. In future, we will miss some
vulnerabilities too if we don't page the results.

Archived repos are being included in the responses at the moment and should be
removed.
@lucyb
Exclude archived repos
e9110e0
@lucyb
Enable github.security to be run standalone
a8e7d92 
This moves the entrypoint to the self-contained security.py module, which is
then called directly from the dokku cron job.
@lucyb
Use shared date utility functions
c50fc4d
@lucyb
Increase coverage
a76d0dd
@lucyb lucyb force-pushed the security-vulnerabilities branch from a6b9a69 to a76d0dd Compare December 6, 2023 12:49
@lucyb lucyb merged commit 6165860 into main Dec 6, 2023
7 checks passed
@lucyb lucyb deleted the security-vulnerabilities branch December 6, 2023 15:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ghickman ghickman ghickman approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lucyb @ghickman