about summary refs log tree commit diff
diff options
context:
space:
mode:
authorsterni <sternenseemann@systemli.org>2022-02-03T13·53+0100
committerclbot <clbot@tvl.fyi>2022-02-04T11·22+0000
commit487dd4189e055766fa98220bcf4b043c1dfd70f2 (patch)
tree1b6c40a1a7cfc157e83aacc3581605e1dfa1eeb8
parent66055161fba70df2a79429a40978a589e94c7ac6 (diff)
fix(format-audit-results.jq): use advisories over vulnerabilities r/3764
Many of the vulnerabilities (in the respective crates) reported are not
actually exploitable vulnerabilties of the packages we report them for.
Consequently it is more accurate to state that they are advisories.

Change-Id: I02932125b77fc9c71e583ae49e822fd3438dce05
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5202
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
-rw-r--r--tools/rust-crates-advisory/format-audit-result.jq2
1 files changed, 1 insertions, 1 deletions
diff --git a/tools/rust-crates-advisory/format-audit-result.jq b/tools/rust-crates-advisory/format-audit-result.jq
index 7c9e3cbac71b..d42ff6e55c79 100644
--- a/tools/rust-crates-advisory/format-audit-result.jq
+++ b/tools/rust-crates-advisory/format-audit-result.jq
@@ -67,7 +67,7 @@ else
   ([ "-", if $checklist then " [ ] " else " " end
    , "`", $attr, "`: "
    , (.vulnerabilities.count | tostring)
-   , " vulnerabilities in Cargo.lock"
+   , " advisories for Cargo.lock"
    , if $maintainers != "" then " (cc " + $maintainers + ")" else "" end
    , "\n"
    ] + (.vulnerabilities.list | map(format_vulnerability))