After discussion in all parallel threads we proposed following variant which covers both expressed requirements to have very small number of different cve statuses and also very large number of them at the same time. This is a compromise version which maybe is not ideal but deals with conflicting responses we got.
This patches version is missing commit for CVE_CHECK_IGNORE to CVE_STATUS conversion as it is large effort and current implementation is still in discussion. Once the concept is agreed, that commit will be added in next patchset version. Documentation is not updated too while current implementation is still in discussion. meta/classes/cve-check.bbclass | 86 ++++++++++++++++--- meta/lib/oe/cve_check.py | 25 ++++++ meta/lib/oeqa/selftest/cases/cve_check.py | 26 ++++-- .../logrotate/logrotate_3.21.0.bb | 5 +- 4 files changed, 122 insertions(+), 20 deletions(-) -- 2.41.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#183139): https://lists.openembedded.org/g/openembedded-core/message/183139 Mute This Topic: https://lists.openembedded.org/mt/99644853/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
