Skip to content

fabric8-analytics/graph-cve-sync

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

129 Commits

.github/workflows

.github/workflows

 
 

data

data

 
 

openshift

openshift

 
 

tests

tests

 
 

.coveragerc

.coveragerc

 
 

.gitignore

.gitignore

 
 

Dockerfile

Dockerfile

 
 

Dockerfile.rhel

Dockerfile.rhel

 
 

MAINTAINERS

MAINTAINERS

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

build_deploy.sh

build_deploy.sh

 
 

check-bashscripts.sh

check-bashscripts.sh

 
 

check-docstyle.sh

check-docstyle.sh

 
 

cico_build_deploy.sh

cico_build_deploy.sh

 
 

cico_run_pydoc.sh

cico_run_pydoc.sh

 
 

cico_run_pylint.sh

cico_run_pylint.sh

 
 

cico_run_tests.sh

cico_run_tests.sh

 
 

cico_setup.sh

cico_setup.sh

 
 

detect-common-errors.sh

detect-common-errors.sh

 
 

detect-dead-code.sh

detect-dead-code.sh

 
 

feed_sample_v1.json

feed_sample_v1.json

 
 

git-modified-since.sh

git-modified-since.sh

 
 

graph_cve_sync.py

graph_cve_sync.py

 
 

graph_snyk_cve_sync.py

graph_snyk_cve_sync.py

 
 

helper.py

helper.py

 
 

list-todo.sh

list-todo.sh

 
 

measure-cyclomatic-complexity.sh

measure-cyclomatic-complexity.sh

 
 

measure-maintainability-index.sh

measure-maintainability-index.sh

 
 

requirements.in

requirements.in

 
 

requirements.txt

requirements.txt

 
 

run-linter.sh

run-linter.sh

 
 

runtests.sh

runtests.sh

 
 

setup.cfg

setup.cfg

 
 

snyk_feed.py

snyk_feed.py

 
 

status_check.py

status_check.py

 
 

vulnerability_metadata.py

vulnerability_metadata.py

 
 

Repository files navigation

graph-cve-sync

OpenShift cron job which keeps fabric8-analytics graph database up-to-date.

Configuration

Following environment variables can be used to control behaviour of the cron job:

SYNC_MODE - can be "full" or "diff". The former forces full sync while latter synchronizes only the changes since last successful run. Default is "diff".

BAYESIAN_DATA_IMPORTER_SERVICE_HOST - data-importer service hostname

BAYESIAN_DATA_IMPORTER_SERVICE_PORT - data-importer service port

DRY_RUN - don't write anything to graph

Snyk Vulnerability Data

The cron job is now extended to populate the Snyk vulnerabilities into our graph. For determining the affected versions, we use a combination of python's in built libraries and our own custom "fabric8-analytics-version-comparator". This is needed because unlike npm (node), which follows the semantic versions, maven and python do not.

About

OpenShift cron job which keeps f8a graph database up-to-date

Topics

sync graph gremlin cronjob cve

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

6 watching

Forks

18 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 10

Languages