bump cc v0.0.24, update openapi (#1007)

this pr bumps claircore to v0.0.24 and updates the openapi spec with changes Signed-off-by: ldelossa <ldelossa@redhat.com>
quay · Jun 1, 2020 · 183edab · 183edab
1 parent 54c6a6d
commit 183edab
Show file tree

Hide file tree

Showing 4 changed files with 46 additions and 9 deletions.
diff --git a/go.mod b/go.mod
@@ -12,7 +12,7 @@ require (
 	github.com/mattn/go-sqlite3 v1.11.0 // indirect
 	github.com/prometheus/client_golang v0.9.4 // indirect
 	github.com/prometheus/procfs v0.0.8 // indirect
-	github.com/quay/claircore v0.0.22
+	github.com/quay/claircore v0.0.24
 	github.com/rs/zerolog v1.16.0
 	github.com/tomnomnom/linkheader v0.0.0-20180905144013-02ca5825eb80
 	github.com/urfave/cli/v2 v2.2.0

diff --git a/go.sum b/go.sum
@@ -281,8 +281,6 @@ github.com/klauspost/compress v1.9.4 h1:xhvAeUPQ2drNUhKtrGdTGNvV9nNafHMUkRyLkzxJ
 github.com/klauspost/compress v1.9.4/go.mod h1:RyIbtBH6LamlWaDj8nUwkbUhJ87Yi3uG0guNDohfE1A=
 github.com/klauspost/cpuid v0.0.0-20180405133222-e7e905edc00e/go.mod h1:Pj4uuM528wm8OyEC2QMXAi2YiTZ96dNQPGgoMS4s3ek=
 github.com/klauspost/cpuid v1.2.0/go.mod h1:Pj4uuM528wm8OyEC2QMXAi2YiTZ96dNQPGgoMS4s3ek=
-github.com/knqyf263/go-cpe v0.0.0-20180327054844-659663f6eca2 h1:9CYbtr3i56D/rD6u6jJ/Aocsic9G+MupyVu7gb+QHF4=
-github.com/knqyf263/go-cpe v0.0.0-20180327054844-659663f6eca2/go.mod h1:XM58Cg7dN+g0J9UPVmKjiXWlGi55lx+9IMs0IMoFWQo=
 github.com/knqyf263/go-deb-version v0.0.0-20190517075300-09fca494f03d h1:X4cedH4Kn3JPupAwwWuo4AzYp16P0OyLO9d7OnMZc/c=
 github.com/knqyf263/go-deb-version v0.0.0-20190517075300-09fca494f03d/go.mod h1:o8sgWoz3JADecfc/cTYD92/Et1yMqMy0utV1z+VaZao=
 github.com/knqyf263/go-rpm-version v0.0.0-20170716094938-74609b86c936 h1:HDjRqotkViMNcGMGicb7cgxklx8OwnjtCBmyWEqrRvM=
@@ -395,10 +393,10 @@ github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40T
 github.com/quasilyte/go-consistent v0.0.0-20190521200055-c6f3937de18c/go.mod h1:5STLWrekHfjyYwxBRVRXNOSewLJ3PWfDJd1VyTS21fI=
 github.com/quay/alas v1.0.1 h1:MuFpGGXyZlDD7+F/hrnMZmzhS8P2bjRzX9DyGmyLA+0=
 github.com/quay/alas v1.0.1/go.mod h1:pseepSrG9pwry1joG7RO/RNRFJaWqiqx9qeoomeYwEk=
-github.com/quay/claircore v0.0.22 h1:k0wvFySzX3YX3OpJMm/bYeFnb6wgKrAjCPGuYetLn1A=
-github.com/quay/claircore v0.0.22/go.mod h1:0FYQPc1EVt6N7OQCIC7o/MLNpku4EUNQ3MJhAJlXnms=
-github.com/quay/goval-parser v0.7.0 h1:QhJXufv2w5BUzfLJSfLz01yya9MS5SWGtyo8J/EAvkY=
-github.com/quay/goval-parser v0.7.0/go.mod h1:9mCSx+kqC0rq6bKyAWiplMUzTWLpr4HRlez+iuxEkhc=
+github.com/quay/claircore v0.0.24 h1:cpugf8Q/BpESDkO9sJkWnk5buxyQ1FSCGObsXi4wdZc=
+github.com/quay/claircore v0.0.24/go.mod h1:ysm67dybuIT07tJWhmSGgqeWk2sug2DnNjGcesqVQpI=
+github.com/quay/goval-parser v0.8.1 h1:n5z8gtWHKEADljlnC6ySDZ+U+3cjAwYgVv9sMmIcGDM=
+github.com/quay/goval-parser v0.8.1/go.mod h1:Y0NTNfPYOC7yxsYKzJOrscTWUPq1+QbtHw4XpPXWPMc=
 github.com/remind101/migrate v0.0.0-20170729031349-52c1edff7319 h1:ukjThsA2ou7AmovpwtMVkNQSuoN/v5U16+JomTz3c7o=
 github.com/remind101/migrate v0.0.0-20170729031349-52c1edff7319/go.mod h1:rhSvwcijY9wfmrBYrfCvapX8/xOTV46NAUjBRgUyJqc=
 github.com/remyoudompheng/bigfft v0.0.0-20170806203942-52369c62f446/go.mod h1:uYEyJGbgTkfkS4+E/PavXkNJcbFIpEtjt2B0KDQ5+9M=

diff --git a/httptransport/discoveryhandler_gen.go b/httptransport/discoveryhandler_gen.go
diff --git a/openapi.yaml b/openapi.yaml
@@ -224,6 +224,7 @@ components:
           name: "Ubuntu 18.04.3 LTS"
           key: ""
           uri: ""
+        issued: "2019-10-12T07:20:50.52Z"
         fixed_in_version: "2.28-0ubuntu1"
 
     Distribution:
@@ -244,8 +245,10 @@ components:
         name: "libapt-pkg5.0"
         version: "1.6.11"
         kind: "binary"
+        normalized_version: ""
         arch: "x86"
         module: ""
+        cpe: ""
         source:
           id: "9"
           name: "apt"
@@ -443,6 +446,20 @@ components:
             A well defined set of severity strings guaranteed to be present.
           type: string
           enum: [Unknown, Negligible, Low, Medium, High, Critical, Defcon1]
+        package:
+          $ref: '#/components/schemas/Package'
+        distribution:
+          $ref: '#/components/schemas/Distribution'
+        repository:
+          $ref: '#/components/schemas/Repository'
+        issued:
+          description: |
+            The timestamp in which the vulnerability was issued
+          type: string
+        range:
+          description: |
+            The range of package versions that are affected by this vulnerability
+          type: string
         fixed_in_version:
           description: "A unique ID representing this vulnerability."
           type: string
@@ -523,6 +540,9 @@ components:
           type: string
         module:
           type: string
+        cpe:
+          description: "A CPE identifying the package"
+          type: string
       required:
         - id
         - name
@@ -557,11 +577,30 @@ components:
         module:
           description: "A module further defining a namespace for a package"
           type: string
+        cpe:
+          description: "A CPE identifying the package"
+          type: string
       required:
         - id
         - name
         - version
 
+    Repository:
+      title: Repository
+      type: object
+      description: "A package repository"
+      properties:
+        id:
+          type: string
+        name:
+          type: string
+        key:
+          type: string
+        uri:
+          type: string
+        cpe:
+          type: string
+
     Version:
       title: Version
       type: string