Skip to content

Migrate Suse Scores importer to advisory V2#2101

Open
ziadhany wants to merge 5 commits intoaboutcode-org:mainfrom
ziadhany:suse-migrate
Open

Migrate Suse Scores importer to advisory V2#2101
ziadhany wants to merge 5 commits intoaboutcode-org:mainfrom
ziadhany:suse-migrate

Conversation

@ziadhany
Copy link
Collaborator

@ziadhany ziadhany commented Jan 2, 2026

@ziadhany
Copy link
Collaborator Author

ziadhany commented Jan 2, 2026
edited
Loading 

Importing data using suse_importer_v2
INFO 2026-01-02 18:14:51.627834 UTC Pipeline [SUSESeverityScoreImporterPipeline] starting
INFO 2026-01-02 18:14:51.627965 UTC Step [fetch_advisories] starting
INFO 2026-01-02 18:14:57.055676 UTC Step [fetch_advisories] completed in 5 seconds
INFO 2026-01-02 18:14:57.055831 UTC Step [collect_and_store_advisories] starting
INFO 2026-01-02 18:14:57.057833 UTC Collecting 25,736 advisories
INFO 2026-01-02 18:15:15.518451 UTC Progress: 10% (2574/25736) ETA: 166 seconds (2.8 minutes)
INFO 2026-01-02 18:15:34.700664 UTC Progress: 20% (5148/25736) ETA: 151 seconds (2.5 minutes)
INFO 2026-01-02 18:15:52.247506 UTC Progress: 30% (7721/25736) ETA: 129 seconds (2.1 minutes)
INFO 2026-01-02 18:16:10.067302 UTC Progress: 40% (10295/25736) ETA: 110 seconds (1.8 minutes)
INFO 2026-01-02 18:16:28.339920 UTC Progress: 50% (12868/25736) ETA: 91 seconds (1.5 minutes)
INFO 2026-01-02 18:16:46.313951 UTC Progress: 60% (15442/25736) ETA: 73 seconds (1.2 minutes)
INFO 2026-01-02 18:17:04.554662 UTC Progress: 70% (18016/25736) ETA: 55 seconds
INFO 2026-01-02 18:17:23.851496 UTC Progress: 80% (20589/25736) ETA: 37 seconds
INFO 2026-01-02 18:17:44.424970 UTC Progress: 90% (23163/25736) ETA: 19 seconds
INFO 2026-01-02 18:18:05.084409 UTC Progress: 100% (25736/25736)
INFO 2026-01-02 18:18:05.092544 UTC Successfully collected 25,736 advisories
INFO 2026-01-02 18:18:05.092633 UTC Step [collect_and_store_advisories] completed in 188 seconds (3.1 minutes)
INFO 2026-01-02 18:18:05.092688 UTC Pipeline completed in 193 seconds (3.2 minutes)

from vulnerabilities.models import AdvisoryV2
from django.db.models import Count
duplicates = (
    AdvisoryV2.objects
    .values('avid')
    .annotate(count=Count('id'))
    .filter(count__gt=1)
)
len(duplicates)
Out[2]: 0
AdvisoryV2.objects.count()
Out[3]: 25817

ziadhany
ziadhany commented Jan 2, 2026
View reviewed changes
vulnerabilities/pipelines/v2_importers/suse_score_importer.py Outdated
aliases=[],
summary="",
severities=severities,
references_v2=[ReferenceV2(reference_id=cve_id, url=self.url)],
Copy link
Collaborator Author

@ziadhany ziadhany Jan 2, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@TG1999 We can’t create an advisory without a summary, affected_packages, or references, so we should at least include a reference.

Copy link
Contributor

@TG1999 TG1999 Jan 2, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@ziadhany we should change this logic then, severities are also a good data point to capture, so if an advisory have a severity we should be able to create it.

Copy link
Collaborator Author

@ziadhany ziadhany Jan 2, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Okay, I will create an issue for that.

@ziadhany ziadhany requested a review from TG1999 January 2, 2026 18:57
ziadhany
ziadhany commented Jan 6, 2026
View reviewed changes
vulnerabilities/utils.py

elif isinstance(advisory_data, AdvisoryData):
if advisory_data.references_v2:
if advisory_data.references_v2 or advisory_data.severities or advisory_data.patches:
Copy link
Collaborator Author

@ziadhany ziadhany Jan 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@TG1999 @keshav-space The problem in this issue

@ziadhany
Migrate Suse Score importer v2
9208ea3 
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
@ziadhany
Add a reference URL to ensure the advisory is created
880ca4b 
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
@ziadhany
Remove invalid reference in suse score pipeline
4cb2579 
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
@ziadhany
Update compute_content_id to ensure it works correctly and creates an…
f3a65cb 
… advisory when it has severities, patches, references_v2, and an advisory_id

Signed-off-by: ziad hany <ziadhany2016@gmail.com>
@ziadhany
Remove invalid logger import
c5c3b04 
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@TG1999 TG1999 Awaiting requested review from TG1999

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ziadhany @TG1999