On 12 Jul 2022, at 12:21, akash hadke via lists.openembedded.org <[email protected]> wrote: > We can inherit cve-check by default in the configuration to export CVE > information like CVE_PRODUCT, CVE_VERSION and the newly added variable > CVE_PATCHED. And CVE_CHECK_WITH_DB variable will avoid scanning the CVEs from > DB > It will work like 2 operational mode for cve-check.bbclass
Looking more closely, that’s going to be a pretty horrible performance hit because you’re scanning the entire sources tree every time the recipe is parsed. If you have CVE_CHECK_WITH_DB, why do you need this variable at all? Ross
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#168237): https://lists.openembedded.org/g/openembedded-core/message/168237 Mute This Topic: https://lists.openembedded.org/mt/92329911/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
