Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Output changelog in report, TUI and JSON for Ubuntu/Debian/CentOS #356

Merged
merged 1 commit into from
Mar 2, 2017
Merged

Output changelog in report, TUI and JSON for Ubuntu/Debian/CentOS #356

merged 1 commit into from
Mar 2, 2017

Conversation

kotakanbe
Copy link
Member

@kotakanbe kotakanbe commented Feb 23, 2017
edited
Loading

What did you implement:

In case of updating vulnerable package, it is helpful to see a changelog information.
The output change log includes only the difference between the currently installed version and candidate version.

Closes #341

NOTE
Amazon/RHEL/FreeBSD will be implemented after abolition of prepare subcommand. #365

TODO

  • CentOS
  • Ubuntu/Raspbian
  • Debian
  • TUI
  • Email
  • Stdout
  • LocalFile
  • gzip
  • Output a detailed information to a TUI / Reporting / JSON package that does not have Changelog or failed version match in Changelog
  • README

How did you implement it:

How can we verify it:

Todos:

You don't have to satisfy all of the following.

  • Write tests
  • Write documentation
  • Check that there aren't other open pull requests for the same issue/feature
  • Format your source code by make fmt
  • Pass the test by make test
  • Provide verification config / commands
  • Enable "Allow edits from maintainers" for this PR
  • Update the messages below

Is this ready for review?: NO
Is it a breaking change?: YES
remove cache.db

@kotakanbe kotakanbe changed the title [WIP]Output changelog in report or JSON [WIP]Output changelog in report and JSON Feb 23, 2017
@kotakanbe kotakanbe changed the title [WIP]Output changelog in report and JSON [WIP]Output changelog in report, TUI and JSON Feb 23, 2017
@kotakanbe kotakanbe force-pushed the changelog branch 2 times, most recently from 533abc1 to a3a7175 Compare February 23, 2017 13:28
@kotakanbe kotakanbe modified the milestone: v0.3.0 Feb 28, 2017
@kotakanbe
Copy link
Member Author

kotakanbe commented Feb 28, 2017
edited
Loading

with -format-full-text

...snip...

CVE-2017-5336
-------------
Score           ?
NVD             https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5336
CVE Details     http://www.cvedetails.com/cve/CVE-2017-5336
Ubuntu-CVE      http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-5336
Package         libgnutls-openssl27-3.4.10-4ubuntu1.1 -> libgnutls-openssl27-3.4.10-4ubuntu1.2
                libgnutls30-3.4.10-4ubuntu1.1 -> libgnutls30-3.4.10-4ubuntu1.2
Confidence      95 / ChangelogExactMatch

CVE-2017-5337
-------------
Score           ?
NVD             https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5337
CVE Details     http://www.cvedetails.com/cve/CVE-2017-5337
Ubuntu-CVE      http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-5337
Package         libgnutls-openssl27-3.4.10-4ubuntu1.1 -> libgnutls-openssl27-3.4.10-4ubuntu1.2
                libgnutls30-3.4.10-4ubuntu1.1 -> libgnutls30-3.4.10-4ubuntu1.2
Confidence      95 / ChangelogExactMatch

....snip...

apt-1.2.6 -> apt-1.2.19
-----------------------
apt (1.2.19) xenial; urgency=medium

  * https: Quote path in URL before passing it to curl (LP: #1651923)

 -- Julian Andres Klode <juliank@ubuntu.com>  Tue, 17 Jan 2017 15:48:51 +0100

apt (1.2.18) xenial; urgency=high

  * SECURITY UPDATE: gpgv: Check for errors when splitting files (CVE-2016-1252)
    Thanks to Jann Horn, Google Project Zero for reporting the issue
    (LP: #1647467)
  * gpgv: Flush the files before checking for errors

 -- Julian Andres Klode <juliank@ubuntu.com>  Thu, 08 Dec 2016 15:28:08 +0100

...snip...

@kotakanbe kotakanbe force-pushed the changelog branch 3 times, most recently from b045b4c to 9a6f1ec Compare March 1, 2017 07:47
@kotakanbe kotakanbe changed the title [WIP]Output changelog in report, TUI and JSON [WIP]Output changelog in report, TUI and JSON for Ubuntu/Debian/CentOS Mar 2, 2017
@kotakanbe kotakanbe force-pushed the changelog branch 4 times, most recently from a95991f to ecb663c Compare March 2, 2017 13:13
@kotakanbe kotakanbe changed the title [WIP]Output changelog in report, TUI and JSON for Ubuntu/Debian/CentOS Output changelog in report, TUI and JSON for Ubuntu/Debian/CentOS Mar 2, 2017
@kotakanbe kotakanbe removed the Doing label Mar 2, 2017
This was referenced Mar 2, 2017
Closed
Closed
Closed
@kotakanbe kotakanbe merged commit b1b5c2c into master Mar 2, 2017
@kotakanbe kotakanbe deleted the changelog branch March 16, 2017 15:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Breaking Changes enhancement
Projects
None yet
Milestone
v0.3.0
Development

Successfully merging this pull request may close these issues.
1 participant
@kotakanbe