Accept vulnerability-draft component as valid flaw bug#3121
Conversation
The is_flaw_bug() method previously raised a ValueError when encountering Bugzilla bugs with the "vulnerability-draft" component. This change treats "vulnerability-draft" the same as "vulnerability", allowing these bugs to be processed normally in find-bugs and other CVE workflows. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here. DetailsNeeds approval from an approver in each of these files:Approvers can indicate their approval by writing |
|
No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: Repository: openshift-eng/coderabbit/.coderabbit.yaml Review profile: CHILL Plan: Enterprise Run ID: 📒 Files selected for processing (1)
WalkthroughThe ChangesFlaw Bug Detection
Estimated code review effort: 1 (Trivial) | ~3 minutes Important Pre-merge checks failedPlease resolve all errors before merging. Addressing warnings is optional. ❌ Failed checks (1 error, 1 warning)
✅ Passed checks (9 passed)
✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
|
/hold |
|
@joepvd: The following tests failed, say
Full PR test history. Your PR dashboard. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
Summary
is_flaw_bug()method inbzutil.pypreviously raised aValueErrorwhen encountering Bugzilla flaw bugs with thevulnerability-draftcomponent, requiring manual ProdSec consultationvulnerability-draftthe same asvulnerability, allowing these bugs to be processed in CVE workflows (e.g.find-bugs)Test plan
vulnerability-draftflaw bug that it is now accepted byfind-bugs🤖 Generated with Claude Code
Summary by CodeRabbit
vulnerability-draftcomponent are now treated the same as other flaw bugs.