Skip to content

Commit c5048ac

Browse files
jahzielvjahzielv
authored
Pull goval data for rhel (#25)
1 parent d84fcc3 commit c5048ac

File tree

1 file changed

+16
-6
lines changed

1 file changed

+16
-6
lines changed

.github/workflows/generate-cve.yml

Lines changed: 16 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -5,13 +5,13 @@ on:
55
branches:
66
- main
77
schedule:
8-
- cron: '*/30 * * * *'
8+
- cron: "*/30 * * * *"
99
workflow_dispatch:
1010
inputs:
1111
clean:
1212
description: 'Download fresh feeds from NVD. Any value other than "false" will trigger a clean download.'
1313
required: true
14-
default: 'false'
14+
default: "false"
1515

1616
permissions:
1717
contents: write
@@ -22,7 +22,7 @@ env:
2222
VULNERABILITIES_CLEAN: ${{ github.event.inputs.clean || 'false' }}
2323

2424
jobs:
25-
build:
25+
build:
2626
runs-on: ubuntu-latest
2727
timeout-minutes: 180
2828

@@ -65,7 +65,7 @@ jobs:
6565
uses: actions/[email protected]
6666
with:
6767
cache: false
68-
go-version: '^1.24.2'
68+
go-version: "^1.24.2"
6969

7070
- name: Generate NVD Feeds
7171
run: |
@@ -87,6 +87,16 @@ jobs:
8787
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch amazon 2022 --dbpath ./fleet/cvefeed/amzn_2022.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
8888
- name: Pull Amazon Linux 2023 vulnerabilities
8989
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch amazon 2023 --dbpath ./fleet/cvefeed/amzn_2023.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
90+
- name: Pull RHEL 5 vulnerabilities
91+
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch redhat 5 --dbpath ./fleet/cvefeed/rhel_05.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
92+
- name: Pull RHEL 6 vulnerabilities
93+
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch redhat 6 --dbpath ./fleet/cvefeed/rhel_06.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
94+
- name: Pull RHEL 7 vulnerabilities
95+
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch redhat 7 --dbpath ./fleet/cvefeed/rhel_07.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
96+
- name: Pull RHEL 8 vulnerabilities
97+
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch redhat 8 --dbpath ./fleet/cvefeed/rhel_08.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
98+
- name: Pull RHEL 9 vulnerabilities
99+
run: for i in {1..3}; do goval-dictionary/goval-dictionary fetch amazon 2023 --dbpath ./fleet/cvefeed/rhel_09.sqlite3 && s=0 && break || s=$? && sleep 2; done; (exit $s)
90100

91101
- name: Validate NVD Feeds
92102
run: |
@@ -95,7 +105,7 @@ jobs:
95105
96106
- name: Compress Amazon Linux vulnerability sqlite files
97107
run: xz ./fleet/cvefeed/*.sqlite3
98-
108+
99109
- name: Current date
100110
id: date
101111
run: |
@@ -105,7 +115,7 @@ jobs:
105115
run: |
106116
git tag -a cve-${{ steps.date.outputs.date }} -m "release ${{ steps.date.outputs.date }}"
107117
git push origin cve-${{ steps.date.outputs.date }}
108-
118+
109119
- name: Release
110120
uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844 # v0.1.15
111121
with:

0 commit comments

Comments
 (0)