vuln-list-update/.github/workflows/update.yml

name: Update vuln-list repo
on:
  schedule:
  - cron: "0 */6 * * *"
  workflow_dispatch:

jobs:
  update:
    name: Update repo vuln-list
    runs-on: ubuntu-latest
    env:
      GITHUB_TOKEN: ${{ secrets.ACCESS_TOKEN }}
    steps:
    - name: Set up Go
      uses: actions/setup-go@v2
      with:
        go-version: 1.17

    - name: Check out code into the Go module directory
      uses: actions/checkout@v2

    - name: Set Owner
      run: echo "VULNLIST_REPOSITORY_OWNER=$(echo ${GITHUB_REPOSITORY} | awk -F / '{print $1}' | sed -e 's/:refs//')" >> $GITHUB_ENV
      shell: bash

    - name: Setup github user email and name
      run: |
        git config --global user.email "action@github.com"
        git config --global user.name "GitHub Action"

    - name: Compile vuln-list-update
      run: go build -o vuln-list-update .

    - if: always()
      name: NVD
      run: ./vuln-list-update -target nvd

    - if: always()
      name: Alpine Issue Tracker
      run: ./vuln-list-update -target alpine

    - if: always()
      name: Alpine Unfixed Vulnerability Tracker
      run: ./vuln-list-update -target alpine-unfixed

    - if: always()
      name: Debian Security Bug Tracker
      run: ./vuln-list-update -target debian

    - if: always()
      name: Debian OVAL
      run: ./vuln-list-update -target debian-oval

    - if: always()
      name: Ubuntu CVE Tracker
      run: ./vuln-list-update -target ubuntu

    - if: always()
      name: Amazon Linux AMI Security Advisory
      run: ./vuln-list-update -target amazon

    - if: always()
      name: Oracle Linux OVAL
      run: ./vuln-list-update -target oracle-oval

    - if: always()
      name: Red Hat OVALv2
      run: ./vuln-list-update -target redhat-oval

    - if: always()
      name: Photon CVE Advisory
      run: ./vuln-list-update -target photon

    - if: always()
      name: GitHub Security Advisory
      run: ./vuln-list-update -target ghsa

    - if: always()
      name: CWE
      run: ./vuln-list-update -target cwe

    - if: always()
      name: SUSE CVRF
      run: ./vuln-list-update -target suse-cvrf

    - if: always()
      name: GitLab Advisory Database
      run: ./vuln-list-update -target glad

    - if: always()
      name: Arch Linux Security Advisory
      run: ./vuln-list-update -target arch-linux

    - if: always()
      name: AlmaLinux Security Advisory
      run: ./vuln-list-update -target alma

    # Red Hat Security Data API is unstable.
    # It should be split into small pieces to reduce the impact of failure.
    - if: always()
      name: Red Hat Security Data API 1996-2002
      run: ./vuln-list-update -target redhat -years 1996,1997,1998,1999,2000,2001,2002

    - if: always()
      name: Red Hat Security Data API 2003-2008
      run: ./vuln-list-update -target redhat -years 2003,2004,2005,2006,2007,2008

    - if: always()
      name: Red Hat Security Data API 2009-2011
      run: ./vuln-list-update -target redhat -years 2009,2010,2011

    - if: always()
      name: Red Hat Security Data API 2012
      run: ./vuln-list-update -target redhat -years 2012

    - if: always()
      name: Red Hat Security Data API 2013
      run: ./vuln-list-update -target redhat -years 2013

    - if: always()
      name: Red Hat Security Data API 2014
      run: ./vuln-list-update -target redhat -years 2014

    - if: always()
      name: Red Hat Security Data API 2015
      run: ./vuln-list-update -target redhat -years 2015

    - if: always()
      name: Red Hat Security Data API 2016
      run: ./vuln-list-update -target redhat -years 2016

    - if: always()
      name: Red Hat Security Data API 2017
      run: ./vuln-list-update -target redhat -years 2017

    - if: always()
      name: Red Hat Security Data API 2018
      run: ./vuln-list-update -target redhat -years 2018

    - if: always()
      name: Red Hat Security Data API 2019-2021
      run: ./vuln-list-update -target redhat -years 2019,2020,2021
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`name: Update vuln-list repo`
Update to use github cron workflow (#38) 2020-07-14 08:46:22 +03:00			`on:`
			`schedule:`
chore(ci): update advisories every 6 hours (#74) 2021-03-10 09:55:31 +03:00			`- cron: "0 /6 * *"`
Update update.yml (#66) add workflow_dispatch 2020-12-31 17:38:27 +03:00			`workflow_dispatch:`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00
			`jobs:`
			`update:`
			`name: Update repo vuln-list`
			`runs-on: ubuntu-latest`
			`env:`
			`GITHUB_TOKEN: ${{ secrets.ACCESS_TOKEN }}`
			`steps:`
chore(ci): bump up Go to 1.17 (#100) 2021-09-03 00:53:56 +03:00			`- name: Set up Go`
			`uses: actions/setup-go@v2`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`with:`
chore(ci): bump up Go to 1.17 (#100) 2021-09-03 00:53:56 +03:00			`go-version: 1.17`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00
			`- name: Check out code into the Go module directory`
			`uses: actions/checkout@v2`

			`- name: Set Owner`
chore(actions): deprecate set-env (#60) 2020-11-19 14:09:28 +03:00			`run: echo "VULNLIST_REPOSITORY_OWNER=$(echo ${GITHUB_REPOSITORY} \| awk -F / '{print $1}' \| sed -e 's/:refs//')" >> $GITHUB_ENV`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`shell: bash`

			`- name: Setup github user email and name`
			`run: \|`
			`git config --global user.email "action@github.com"`
			`git config --global user.name "GitHub Action"`

			`- name: Compile vuln-list-update`
			`run: go build -o vuln-list-update .`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: NVD`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target nvd`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Alpine Issue Tracker`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target alpine`

chore(cron): add alpine-unfixed (#110) * fix(alpine-unfixed): update in cron yaml * updated the format 2021-09-30 14:21:58 +03:00			`- if: always()`
			`name: Alpine Unfixed Vulnerability Tracker`
			`run: ./vuln-list-update -target alpine-unfixed`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Debian Security Bug Tracker`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target debian`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Debian OVAL`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target debian-oval`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Ubuntu CVE Tracker`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target ubuntu`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Amazon Linux AMI Security Advisory`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target amazon`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Oracle Linux OVAL`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target oracle-oval`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat OVALv2`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat-oval`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Photon CVE Advisory`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target photon`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: GitHub Security Advisory`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target ghsa`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: CWE`
cwe: Add initial logic to download and save CWE files (#40) * cwe: Add initial logic to download and save CWE files Signed-off-by: Simarpreet Singh <simar@linux.com> * cwe: Add logic to parse and save XML data as file Signed-off-by: Simarpreet Singh <simar@linux.com> * cwe: Dont save XML file as output Signed-off-by: Simarpreet Singh <simar@linux.com> * cwe: Save each CWE-ID as a JSON document Signed-off-by: Simarpreet Singh <simar@linux.com> * cwe: Address nits Signed-off-by: Simarpreet Singh <simar@linux.com> 2020-08-05 00:01:18 +03:00			`run: ./vuln-list-update -target cwe`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: SUSE CVRF`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target suse-cvrf`

chore(ci): add GitLab Advisory Database (#85) 2021-04-28 03:47:05 +03:00			`- if: always()`
			`name: GitLab Advisory Database`
			`run: ./vuln-list-update -target glad`

Arch linux folder name change (#90) 2021-06-15 15:43:31 +03:00			`- if: always()`
chore(cron): fix a broken yaml (#91) 2021-06-15 15:49:37 +03:00			`name: Arch Linux Security Advisory`
			`run: ./vuln-list-update -target arch-linux`
Arch linux folder name change (#90) 2021-06-15 15:43:31 +03:00
feat(alma): support AlmaLinux (#98) * feat(alma): support AlmaLinux Errata * style(alma): change var name * fix(alma): fix test case * chore: fix typo * chore: use pb/v3 * chore: change by review * style: rename var * fix(alma): change location of the module field * feat(alma): more detailed by year * refactor(alma): do not loop twice * refactor(alma): use IssuedDate * refactor(alma): remove magic number * refactor(alma): use time.UnixMilli 2021-09-03 01:02:09 +03:00			`- if: always()`
			`name: AlmaLinux Security Advisory`
			`run: ./vuln-list-update -target alma`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`# Red Hat Security Data API is unstable.`
			`# It should be split into small pieces to reduce the impact of failure.`
			`- if: always()`
			`name: Red Hat Security Data API 1996-2002`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 1996,1997,1998,1999,2000,2001,2002`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2003-2008`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2003,2004,2005,2006,2007,2008`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2009-2011`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2009,2010,2011`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2012`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2012`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2013`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2013`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2014`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2014`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2015`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2015`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2016`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2016`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2017`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2017`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
			`name: Red Hat Security Data API 2018`
Removed travis file and added github workflow (#37) * Removed travis file and added github workflow * Updated action name 2020-07-13 20:20:47 +03:00			`run: ./vuln-list-update -target redhat -years 2018`

chore(actions): run steps always (#70) 2021-01-17 07:32:27 +03:00			`- if: always()`
chore(actions): add 2021 for Red Hat Security Data API (#72) 2021-01-20 10:08:54 +03:00			`name: Red Hat Security Data API 2019-2021`
			`run: ./vuln-list-update -target redhat -years 2019,2020,2021`