You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When the MSRC API is used to get vulnerabilities for a given month, it will return vulnerabilities for which there is an MSRC publication, as well as some stray vulnerabilities for which there are no MSRC publications. I noticed this when tweaking the script to save a copy of the MSRC publications in Archivebox:
To fix this, patch-review.py should only consider vulnerabilities returned by the MSRC API that have titles. There might be a cleaner way to do this, but what I did was filter the all_vulns list with an additional line:
all_vulns = release_json.get('Vulnerability', [])
all_vulns = [vuln for vuln in all_vulns if vuln.get('Title', {'Value': 'Not Found'}).get('Value') is not None]
len_vuln = len(all_vulns)
For the July 2024 MSRC publication, this corrects the count from 247 to 152.
The text was updated successfully, but these errors were encountered:
When the MSRC API is used to get vulnerabilities for a given month, it will return vulnerabilities for which there is an MSRC publication, as well as some stray vulnerabilities for which there are no MSRC publications. I noticed this when tweaking the script to save a copy of the MSRC publications in Archivebox:
To fix this, patch-review.py should only consider vulnerabilities returned by the MSRC API that have titles. There might be a cleaner way to do this, but what I did was filter the
all_vulnslist with an additional line:For the July 2024 MSRC publication, this corrects the count from 247 to 152.
The text was updated successfully, but these errors were encountered: