From ca7780742835cf973126717377d65c5b6faa5aba Mon Sep 17 00:00:00 2001
From: yangwei999 <348134071@qq.com>
Date: Mon, 17 Feb 2025 15:09:26 +0800
Subject: [PATCH] add package blacklist

---
 cve-vulner-manager/conf/product_app.conf | 1 +
 cve-vulner-manager/taskhandler/cve.go    | 8 ++++++++
 2 files changed, 9 insertions(+)

diff --git a/cve-vulner-manager/conf/product_app.conf b/cve-vulner-manager/conf/product_app.conf
index 801e5ae..e85b2cd 100644
--- a/cve-vulner-manager/conf/product_app.conf
+++ b/cve-vulner-manager/conf/product_app.conf
@@ -204,6 +204,7 @@ de_duplication_date = -100
 yaml_config_table = "cve_open_euler_repo_origin:1,cve_open_guss_yaml:2,cve_mind_spore_yaml:3,cve_open_lookeng_yaml:4"
 bot_cu_account = "openeuler-ci-bot,opengauss-bot,mindspore-ci-bot,mindspore_ci,i-robot,CVE,I-am-a-robot,openMajun_admin"
 out_of_sync_branch = "openEuler1.0-base,openEuler1.0"
+package_blacklist = "gstreamer,gstreamer-plugins-good,gstreamer-plugins-base,mozjs52,mozjs60,mozjs68,openjpeg,gamin,python2"
 
 user = "${UPLOAD_USERNAME||xxx}"
 pwd = "${UPLOAD_PASSWORD||xxx}"
diff --git a/cve-vulner-manager/taskhandler/cve.go b/cve-vulner-manager/taskhandler/cve.go
index a89451e..bbe06a7 100644
--- a/cve-vulner-manager/taskhandler/cve.go
+++ b/cve-vulner-manager/taskhandler/cve.go
@@ -1077,6 +1077,14 @@ func AddOrSelectToCenter(packageName, cveRef, scopeType, value string, cveData m
 				}
 			}
 		} else {
+			blacklist := beego.AppConfig.String("cve::package_blacklist")
+			split := strings.Split(blacklist, ",")
+			blackSets := sets.NewString(split...)
+			if blackSets.Has(packageName) {
+				logs.Error(packageName, " is in blacklist")
+				continue
+			}
+
 			openEulerVersion := pv.VerionList
 			ok, dErr := AddOrDataToCenter(packageName, packageName, cveRef, scopeType, value, cveData,
 				openEulerVersion, pkList, openeulerNum,
-- 
Gitee