safedep/vet
1
0
Fork 0
mirror of https://github.com/safedep/vet.git synced 2025-12-10 13:43:01 -06:00
Code Issues Packages Projects Releases 68 Wiki Activity

add IsSuspicious value for reporting suspicious packages too (#567)

Browse Source
This commit is contained in:
Sahil Bansal 2025-08-18 17:56:24 +05:30 committed by GitHub
parent d8b83e2bc2
commit 52aa033fe4
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pkg/reporter/sync.go
View File

@ -569,7 +569,7 @@ func (s *syncReporter) syncPackage(pkg *models.Package) error {
if mar := pkg.GetMalwareAnalysisResult(); mar != nil { if mar := pkg.GetMalwareAnalysisResult(); mar != nil {
req.MaliciousPackageInsight = &controltowerv1.PublishPackageInsightRequest_MaliciousPackageInsight{ req.MaliciousPackageInsight = &controltowerv1.PublishPackageInsightRequest_MaliciousPackageInsight{
AnalysisId: mar.AnalysisId, AnalysisId: mar.AnalysisId,
IsMalware: mar.IsMalware, IsMalware: mar.IsMalware || mar.IsSuspicious,
IsVerified: mar.VerificationRecord != nil, IsVerified: mar.VerificationRecord != nil,
} }
@ -580,7 +580,7 @@ func (s *syncReporter) syncPackage(pkg *models.Package) error {
logger.Debugf("Report Sync: Added malware analysis for package: %s/%s/%s (malware: %t, verified: %t)", logger.Debugf("Report Sync: Added malware analysis for package: %s/%s/%s (malware: %t, verified: %t)",
pkg.GetControlTowerSpecEcosystem(), pkg.GetName(), pkg.GetVersion(), pkg.GetControlTowerSpecEcosystem(), pkg.GetName(), pkg.GetVersion(),
mar.IsMalware, req.MaliciousPackageInsight.IsVerified) mar.IsMalware || mar.IsSuspicious, req.MaliciousPackageInsight.IsVerified)
} }
// OpenSSF // OpenSSF