diff --git a/cve-vulner-manager/conf/product_app.conf b/cve-vulner-manager/conf/product_app.conf index 801e5ae92f272e54bc219814cf7a8519d15a3061..e85b2cd8c5c2f42f88d57d886d1101043a43dd92 100644 --- a/cve-vulner-manager/conf/product_app.conf +++ b/cve-vulner-manager/conf/product_app.conf @@ -204,6 +204,7 @@ de_duplication_date = -100 yaml_config_table = "cve_open_euler_repo_origin:1,cve_open_guss_yaml:2,cve_mind_spore_yaml:3,cve_open_lookeng_yaml:4" bot_cu_account = "openeuler-ci-bot,opengauss-bot,mindspore-ci-bot,mindspore_ci,i-robot,CVE,I-am-a-robot,openMajun_admin" out_of_sync_branch = "openEuler1.0-base,openEuler1.0" +package_blacklist = "gstreamer,gstreamer-plugins-good,gstreamer-plugins-base,mozjs52,mozjs60,mozjs68,openjpeg,gamin,python2" user = "${UPLOAD_USERNAME||xxx}" pwd = "${UPLOAD_PASSWORD||xxx}" diff --git a/cve-vulner-manager/taskhandler/cve.go b/cve-vulner-manager/taskhandler/cve.go index a89451e55a86e0e2333ec2775c3ceb4cc25628f0..bbe06a7a7546dd118b0f7b6f7cf03e42424de73b 100644 --- a/cve-vulner-manager/taskhandler/cve.go +++ b/cve-vulner-manager/taskhandler/cve.go @@ -1077,6 +1077,14 @@ func AddOrSelectToCenter(packageName, cveRef, scopeType, value string, cveData m } } } else { + blacklist := beego.AppConfig.String("cve::package_blacklist") + split := strings.Split(blacklist, ",") + blackSets := sets.NewString(split...) + if blackSets.Has(packageName) { + logs.Error(packageName, " is in blacklist") + continue + } + openEulerVersion := pv.VerionList ok, dErr := AddOrDataToCenter(packageName, packageName, cveRef, scopeType, value, cveData, openEulerVersion, pkList, openeulerNum,