diff options
| author | sterni <sternenseemann@systemli.org> | 2022-02-03T13·53+0100 |
|---|---|---|
| committer | clbot <clbot@tvl.fyi> | 2022-02-04T11·22+0000 |
| commit | 487dd4189e055766fa98220bcf4b043c1dfd70f2 (patch) | |
| tree | 1b6c40a1a7cfc157e83aacc3581605e1dfa1eeb8 /tools/rust-crates-advisory/format-audit-result.jq | |
| parent | 66055161fba70df2a79429a40978a589e94c7ac6 (diff) | |
fix(format-audit-results.jq): use advisories over vulnerabilities r/3764
Many of the vulnerabilities (in the respective crates) reported are not actually exploitable vulnerabilties of the packages we report them for. Consequently it is more accurate to state that they are advisories. Change-Id: I02932125b77fc9c71e583ae49e822fd3438dce05 Reviewed-on: https://cl.tvl.fyi/c/depot/+/5202 Reviewed-by: sterni <sternenseemann@systemli.org> Autosubmit: sterni <sternenseemann@systemli.org> Tested-by: BuildkiteCI
Diffstat (limited to '')
| -rw-r--r-- | tools/rust-crates-advisory/format-audit-result.jq | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/tools/rust-crates-advisory/format-audit-result.jq b/tools/rust-crates-advisory/format-audit-result.jq index 7c9e3cbac7..d42ff6e55c 100644 --- a/tools/rust-crates-advisory/format-audit-result.jq +++ b/tools/rust-crates-advisory/format-audit-result.jq @@ -67,7 +67,7 @@ else ([ "-", if $checklist then " [ ] " else " " end , "`", $attr, "`: " , (.vulnerabilities.count | tostring) - , " vulnerabilities in Cargo.lock" + , " advisories for Cargo.lock" , if $maintainers != "" then " (cc " + $maintainers + ")" else "" end , "\n" ] + (.vulnerabilities.list | map(format_vulnerability)) |