Set up automatic processing of record linkage suggestions #221
Labels
No labels
automation
backend
bug
contributor experience
data
deployment
documentation
duplicate
good first issue
help wanted
nice to have
notifications
package maintainer
performance
skin
tech debt
user story
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: lix-community/nix-security-tracker#221
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
For security team members to be able to triage effectively, we need pre-computed suggestions for record linkage:
Open questions:
Matching a new derivation with untriaged CVE is touchy because our CVE database can go back to 1999. This deserves a bit more thought to do it properly and not dealing with it doesn't reduce the problem because the way we care the most is: we already have the derivation ingested and we have a new CVE.
It's pretty rare to introduce a new derivation for which we already have a CVE in (except for historical open CVEs, which can be dealt with a one-time matching).