-
Notifications
You must be signed in to change notification settings - Fork 86
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
EPSS enricher #1439
EPSS enricher #1439
Conversation
e876194
to
32941b1
Compare
enricher/epss/epss.go
Outdated
|
||
const ( | ||
// Type is the type of data returned from the Enricher's Enrich method. | ||
Type = `message/vnd.clair.map.vulnerability; enricher=clair.epss schema=https://csrc.nist.gov/schema/nvd/feed/1.1/cvss-v3.x.json` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
converting CSV file to json, not sure what the Type
should look like.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yeah, we need to point to an actual schema here
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do you have any suggestions? Do we need to define a schema in the enrichment package?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm not sure if there is an equivalent for EPSS. @crozzy what do you suggest to do here?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It should be the JSON schema of the EPSSItem when it is marshaled but I'm not entirely sure where would be a good place for it, any ideas @hdonnay ?
f5058ef
to
7fbe5d3
Compare
34f4e08
to
5f69717
Compare
183e018
to
1f7633c
Compare
As of Nov 20th, we decide to include model version and score date in the enrichment data |
5712f01
to
843f8f6
Compare
9525df0
to
6bdb39d
Compare
enricher/epss/epss.go
Outdated
|
||
const ( | ||
// Type is the type of data returned from the Enricher's Enrich method. | ||
Type = `message/vnd.clair.map.vulnerability; enricher=clair.epss schema=https://csrc.nist.gov/schema/nvd/feed/1.1/cvss-v3.x.json` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yeah, we need to point to an actual schema here
Most everything I brought up seems to be addressed (apart from the new comments) |
enricher/epss/epss.go
Outdated
|
||
const ( | ||
// Type is the type of data returned from the Enricher's Enrich method. | ||
Type = `message/vnd.clair.map.vulnerability; enricher=clair.epss schema=https://csrc.nist.gov/schema/nvd/feed/1.1/cvss-v3.x.json` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm not sure if there is an equivalent for EPSS. @crozzy what do you suggest to do here?
b41b7b1
to
9fa70d3
Compare
576d4d9
to
9f12ac0
Compare
Int("count", len(ret)). | ||
Msg("decoded enrichments") | ||
|
||
if !errors.Is(err, io.EOF) { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
just confirming, we expect an EOF once we exhaust all records?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, I think so.
e7cf505
to
f93b034
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A couple of small things
fd434d8
to
88e317d
Compare
Signed-off-by: daynewlee <[email protected]>
Signed-off-by: Yi Li <[email protected]>
Signed-off-by: Yi Li <[email protected]>
Signed-off-by: daynewlee <[email protected]>
Signed-off-by: daynewlee <[email protected]>
88e317d
to
c5d4b9a
Compare
Epss enricher should be able to update, parse EPSS data and enrich vulnerability report with the data