[Git][security-tracker-team/security-tracker][master] lts-cve-triage: filter out packages already in dla-needed.txt

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Tue Jul 15 12:34:43 BST 2025 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3fe8c981 by Sylvain Beucler at 2025-07-15T13:34:37+02:00
lts-cve-triage: filter out packages already in dla-needed.txt

These don't need immediate FD attention.

Now that we point at the Freexian tracker URLs, LTS contributors
should also have a clearer view of what's inconsistent with prev/next releases.

This is also consistent with the rest of the output.

- - - - -


1 changed file:

- bin/lts-cve-triage.py


Changes:

=====================================
bin/lts-cve-triage.py
=====================================
@@ -123,10 +123,10 @@ for pkg in tracker.iterate_packages():
         status_in_next_lts = issue.get_status(RELEASES['next_lts'])
 
         if ((status_in_lts.status == 'resolved' and status_in_lts.reason != 'fixed in 0' and status_in_lts.urgency != 'unimportant')
-                and (status_in_next_lts.status not in ('resolved', 'not-affected')
-                    and (status_in_next_lts.status != 'ignored' or issue.data['releases'].get(RELEASES['next_lts'], {}).get('nodsa_reason', 'ignored') != 'ignored')
-                )
-                and issue.name not in pu_expected):
+            and (status_in_next_lts.status not in ('resolved', 'not-affected')
+                 and (status_in_next_lts.status != 'ignored' or issue.data['releases'].get(RELEASES['next_lts'], {}).get('nodsa_reason', 'ignored') != 'ignored'))
+            and issue.name not in pu_expected
+            and pkg not in tracker.dla_needed):
             add_to_list('to_forward', pkg, issue)
 
         if status_in_lts.status in ('not-affected', 'resolved'):
@@ -201,7 +201,8 @@ for pkg in tracker_elts.iterate_packages():
         if (status_in_elts.status == 'resolved' and status_in_elts.reason != 'fixed in 0'
             and status_in_next_lts.status == 'resolved'
             and status_in_lts.status not in ('resolved', 'not-affected')
-            and status_in_lts.urgency != 'unimportant'):
+            and status_in_lts.urgency != 'unimportant'
+            and pkg not in tracker.dla_needed):
             add_to_list('from_elts', pkg, issue)
 
 



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fe8c9810bb4bf05d7158480558ba64869f189be

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fe8c9810bb4bf05d7158480558ba64869f189be
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/d807cdcd/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list