362d2aa36d
With the LP page of the CVE issue is 'Fix Released' status, the
CVE won't be reported in the cves_to_fix_lp list. we create a
new cves_to_track_lp_fixed list to check if there is a newer fixer
is provided under the same CVE for the 'stx' versioned pacakge,
So that we can recognize when a fixed LP is actually not fixed.
Monthly we need to double check the cves_to_track_lp_fixed list
if it's not empty in the report.
TestPlan:
Pass: python3 cve_policy_filter.py localhost.json test cvssv3
Report the fixed LP of CVE issue in cves_to_fix_lp list.
Story: 2010387
Task: 46683
Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Change-Id: If910a4e58a2a6e2f575c4bad67cd6d19f23ad3f1
|
||
|---|---|---|
| .. | ||
| cve_policy_filter.py | ||
| lp.py | ||
| template_v3.txt | ||
| template.txt | ||