Sida Chen
f61675355e
database: Update feature model
...
Remove source name/version fields
Add Type field to indicate if it's binary package or source package
2019-02-19 16:48:42 -05:00
Sida Chen
0e0d8b38bb
featurefmt: Extract source packages and binary packages
...
The featurefmt now extracts both binary packages and source packages
from the package manager infos.
2019-02-19 16:48:42 -05:00
Sida Chen
7dd989c0f2
database: Rename affected Type to feature type
2019-02-19 16:48:42 -05:00
Sida Chen
00eed77b45
database: Add feature_type database model
2019-02-19 16:48:42 -05:00
Sida Chen
c6c8fce39a
pgsql: Add feature_type to initial schema
...
feature_type is for differentiating the binary packages and source
packages.
2019-02-19 16:43:35 -05:00
Jimmy Zelinskie
aa8682947e
Merge pull request #701 from dustinspecker/patch-1
...
docs: fix typo in running-clair
2019-01-30 10:33:15 -05:00
Jimmy Zelinskie
11b26b3857
Merge pull request #700 from traum-ferienwohnungen/master
...
Make nodePort configurable with helm
2019-01-30 10:32:51 -05:00
Dustin Specker
49b5621d73
docs: fix typo in running-clair
2019-01-29 16:35:16 -06:00
Jelto Wodstrcil
4505fcea32
make nodePort configurable with helm
2019-01-29 09:58:23 +01:00
Jimmy Zelinskie
cc8d1152c4
Merge pull request #680 from Allda/slices
...
Replace arrays with slices
2019-01-22 17:01:49 -05:00
Ales Raszka
015a79fd5a
Layer: replace arrays with slices
...
The current code is much cleaner because it doesn't use indexes + it
should be more memory efficient.
2019-01-16 09:12:34 +01:00
Ales Raszka
90f5592095
Feature: replace arrays with slices
...
The current code is much cleaner because it doesn't use indexes + it
should be more memory efficient.
2019-01-16 09:12:33 +01:00
Jimmy Zelinskie
97b4b1ac33
Merge pull request #687 from jzelinskie/suse-config
...
config: enable suse updater
2019-01-14 14:49:44 -05:00
Jimmy Zelinskie
162e8cdafc
config: enable suse updater
2019-01-14 14:39:46 -05:00
Jimmy Zelinskie
bafe45db2d
Merge pull request #686 from jzelinskie/fix-presentations
...
documentation: fix links to presentations
2019-01-14 13:51:03 -05:00
Jimmy Zelinskie
3e6896c6a4
documentation: fix links to presentations
...
Closes #661 .
Closes #665 .
Closes #560 .
2019-01-10 14:22:24 -05:00
Jimmy Zelinskie
effe1552fb
Merge pull request #679 from kubeshield/master
...
Fix cert and key file mix up
2019-01-08 19:06:41 -05:00
Jimmy Zelinskie
b08ad9b8e6
Merge pull request #506 from openSUSE/reintroduce-suse-opensuse
...
Reintroduce image scanning for openSUSE and SLE
2019-01-07 13:21:57 -05:00
Flavio Castelli
1105102b84
Update documentation: talk about SUSE support
...
Expand the documentation about the available data sources to mention
openSUSE and SLE.
Signed-off-by: Flavio Castelli <fcastelli@suse.com>
2019-01-07 18:48:55 +01:00
Flavio Castelli
5a4d4913c1
Reintroduce image scanning for openSUSE and SLE
...
Handle scanning of openSUSE and SUSE Linux Enterprise images.
Signed-off-by: Flavio Castelli <fcastelli@suse.com>
2019-01-07 18:48:55 +01:00
Jimmy Zelinskie
5cd6a8cc92
Merge pull request #681 from Allda/rhel_severity
...
Vulnsrc rhel: handle "none" CVE impact
2019-01-02 15:58:23 -05:00
Tamal Saha
0ed4126240
Fix cert and key file mix up
...
Signed-off-by: Tamal Saha <tamal@appscode.com>
2019-01-02 12:31:58 -08:00
Ales Raszka
bd7102d963
Vulnsrc rhel: handle "none" CVE impact
...
Some RHEL CVEs [1] contains "none" string in impact field. This is throwing
warning message when fetching vulnerabilities. The new code handles this
case and it uses advisory severity instead.
[1] https://www.redhat.com/security/data/oval/com.redhat.rhsa-20080038.xml
2019-01-02 14:27:08 +01:00
Jimmy Zelinskie
3947073b9e
Merge pull request #667 from travelaudience/helm-tolerations
...
HELM: add tolerations
2018-12-19 13:49:22 -05:00
Jeff Knurek
81430ffbb2
HELM: also add option for nodeSelector
2018-12-10 11:42:48 +01:00
Jeff Knurek
6a94d8ccd2
HELM: add option for tolerations
2018-12-10 11:42:16 +01:00
Jimmy Zelinskie
504f0f3af3
Merge pull request #656 from glb/elsa_CVEID
...
vulnsrc_oracle: one vulnerability per CVE
2018-11-07 16:07:46 -05:00
Geoff Baskwill
3503ddb96f
vulnsrc_oracle: one vulnerability per CVE
...
Get one vulnerability per CVE for Oracle instead of one per ELSA so we
can have NVD metadata added to the vulnerabilities.
Related: #495 , #499 .
2018-11-02 19:36:43 -04:00
Jimmy Zelinskie
93e7a4cfa8
Merge pull request #650 from Katee/add-ubuntu-cosmic
...
Add database mapping for Ubuntu Cosmic (18.10)
2018-10-31 11:05:47 -04:00
Jimmy Zelinskie
4c08c8f959
Merge pull request #653 from brosander/helm-dep
...
Pinning helm postgres dep to the working 1.0.0
2018-10-31 11:05:28 -04:00
Bryan Rosander
00db964497
Pinning helm postgres dep to the working 1.0.0
2018-10-31 10:56:17 -04:00
Kate Murphy
6c682da3e1
database: add mapping for Ubuntu Cosmic (18.10)
2018-10-29 13:42:44 -04:00
Jimmy Zelinskie
c123c95590
Merge pull request #648 from HaraldNordgren/go_versions
...
Bump Go versions and use '.x' to always get latest patch versions
2018-10-28 12:01:47 -04:00
Harald Nordgren
be24096183
Bump Go versions and use '.x' to always get latest patch versions
2018-10-28 13:44:21 +01:00
Sida Chen
05cbf328aa
Merge pull request #647 from KeyboardNerd/spkg/cvrf
...
vulnsrc: Refactor debian and alpine sources
2018-10-23 09:30:01 -04:00
Sida Chen
4106322107
vendor: Update gopkg.in/yaml.v2 package
...
* Update gopkg.in/yaml.v2 package and glide setting
* Update other packages
2018-10-22 23:00:58 -04:00
Sida Chen
72674ca871
vulnsrc: Refactor vulnerability sources to use utility functions
2018-10-22 23:00:58 -04:00
Sida Chen
a3f7387ff1
database: Add FindKeyValue function wrapper
2018-10-22 23:00:57 -04:00
Sida Chen
c3904c9696
pkg: Add fsutil to contian file system utility functions
2018-10-22 23:00:57 -04:00
Sida Chen
1ee1b95afc
Merge pull request #644 from KeyboardNerd/bug/git
...
gitutil: Fix git pull on non-git repository directory
2018-10-22 14:45:30 -04:00
Jimmy Zelinskie
0c2e5e73c2
Merge pull request #645 from Katee/include-cvssv3
...
Switch to NVD JSON feed and include CVSSv3
2018-10-22 13:03:42 -04:00
Kate Murphy
081ae34af1
ext: remove duplicate vectorValuesToLetters definition
2018-10-19 15:00:00 -04:00
Kate Murphy
4f0da12b12
ext: pass through CVSSv3 impact and exploitability score
2018-10-19 10:44:23 -04:00
Jimmy Zelinskie
8efc3e4038
ext: remove unneeded use of init()
2018-10-18 18:48:07 -04:00
Jimmy Zelinskie
699d1143e5
ext: fixup incorrect copyright year
2018-10-18 18:47:37 -04:00
Sida Chen
335cb65917
Merge pull request #646 from KeyboardNerd/spkg/model
2018-10-18 16:44:48 -04:00
Sida Chen
2236b0a5c9
updater: Add vulnsrc affected feature type
...
Each vulnerability source has a specific type of feature that it affects
We assume the following:
* Alpine: Binary Package
* Debian: Source Package
* Ubuntu: Source Package
* Oracle OVAL: Binary Package
* RHEL OVAL: Binary Package
2018-10-18 15:06:41 -04:00
Sida Chen
00fadfc3e3
database: Add affected feature type
...
Affected feature type is for determining either the source feature or
the binary feature that an vulnerability affects.
2018-10-18 15:06:41 -04:00
Sida Chen
11b67e612c
gitutil: Fix git pull on non-git repository directory
...
* Add conditional check: if the git repo directory is newly created, we
clone.
* Add tests
Fixes #641
2018-10-17 10:43:52 -04:00
Kate Murphy
b81e4454fb
ext: Parse CVSSv3 data from JSON NVD feed
2018-10-16 19:08:17 -04:00