On Thu, 19 May 2022 17:02:43 -0400 Nixon Chan <nixon.chan@dejero.com> wrote: > Hello, > > I was wondering if there exists a schema for the information stored > in the json security tracker. The Debian Security Tracker data relates to how Debian handles packages. Any usage other than within Debian will need adjustments to how the data is handled. (The JSON is just a dump, not a data interchange format.) Any nesting is to cover a single source package name across multiple Debian releases to provide support for more than one release. > I'm working in python right now, > parsing through the security tracker. Since there are many nested > dictionaries, the code is not really maintainable in this form. Is > there a schema that I can use to form classes from this json file? The JSON is a dump of a database used by the Debian Security Tracker. That database is always secondary to the text files. (data/CVE/list) The database is only an implementation tool, and is not used for maintaining the data. Currently, the schema for the database is not fully documented. The classes are part of the Debian Security Tracker: https://salsa.debian.org/security-tracker-team/security-tracker/-/blob/master/lib/python/security_db.py The code takes the text files as input and builds a new SQLite3 database which is used by the tracker frontend. -- Neil Williams ============= https://linux.codehelp.co.uk/
Attachment:
pgpbTTAu1miuW.pgp
Description: OpenPGP digital signature