[Git][security-tracker-team/security-tracker][master] 2 commits: tracker_service: make unimportant issues non-red

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Mon Mar 25 08:39:36 GMT 2024 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
05e8e523 by Emilio Pozuelo Monfort at 2024-03-21T11:21:59+01:00
tracker_service: make unimportant issues non-red

They were marked as red and 'vulnerable'. Since they are marked
as unimportant, we should show that to not raise alarms.

- - - - -
6331de58 by Emilio Pozuelo Monfort at 2024-03-25T08:39:28+00:00
Merge branch 'mark-unimportant-issues-non-red' into 'master'

tracker_service: make unimportant issues non-red

See merge request security-tracker-team/security-tracker!167
- - - - -


1 changed file:

- bin/tracker_service.py


Changes:

=====================================
bin/tracker_service.py
=====================================
@@ -439,6 +439,14 @@ data source.""")],
 
         page.append(make_table(gen_header()))
 
+        def is_unimportant(bug, package):
+            if bug.notes:
+                for note in bug.notes:
+                    if note.package == package and str(note.urgency) == 'unimportant':
+                        return True
+
+            return False
+
         if bug.notes:
 
             def gen_source():
@@ -453,8 +461,12 @@ data source.""")],
                             self.make_source_package_ref(url, package),
                             " (", self.make_pts_ref(url, package, 'PTS'), ")")
                     if vulnerable == 1:
-                        vuln = self.make_red('vulnerable')
-                        version = self.make_red(version)
+                        if is_unimportant(bug, old_pkg):
+                            vuln = self.make_yellow('vulnerable (unimportant)')
+                            version = self.make_yellow(version)
+                        else:
+                            vuln = self.make_red('vulnerable')
+                            version = self.make_red(version)
                     elif vulnerable == 2:
                         vuln = self.make_purple('undetermined')
                         version = self.make_purple(version)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5d55976a1e042c0466e5028e30db1e910a577c8b...6331de58722181077a1533dc934eef3c23719237

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5d55976a1e042c0466e5028e30db1e910a577c8b...6331de58722181077a1533dc934eef3c23719237
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240325/df6a107c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list