What did I do this week?
I worked on new issues related to OSV and database handling.What is coming up next?
Next, I will be adding and integrating GitLab Advisory Database as a data source.
Did I get stuck anywhere?
No, I did not get stuck anywhere.
What did I do this week?
I fixed some issues related to LGTM quality reports, that's all.What is coming up next?
Next, I will be working on some new issues related to database and OSV.
Did I get stuck anywhere?
No, I did not get stuck anywhere.
What did I do this week?
After addition of OSV, I added tests and documentation for it. An update in a CVE broke a test, which I updated. Now OSV is finally added and integrated as a data source.What is coming up next?
Next, I will be looking at doing something other than working on a data source.
Did I get stuck anywhere?
No, I did not get stuck anywhere.
What did I do this week?
I implemented checking for duplicate CVEs, NVD is given priority, so any common CVEs from OSV are rejected.What is coming up next?
Next, I will be adding tests and documentation for OSV.
Did I get stuck anywhere?
No, I did not get stuck anywhere.
What did I do this week?
I implemented a mechanism to get vendor data from NVD data source and use it to update vendors for CVEs from OSV. By updating vendors, there was a good increase in the amount of CVEs that could be detected now.What is coming up next?
Next, I will be working on eliminating duplicate CVEs, as there are common CVEs procured from data sources.
Did I get stuck anywhere?
Yes, I came up with a number of solutions to update vendors for OSV but was stuck for quite a while before I thought of using NVD to get vendor data.