40 lines
1.4 KiB
Python
40 lines
1.4 KiB
Python
#!/usr/bin/env python3
|
|
|
|
import sys
|
|
|
|
|
|
import security_scanner
|
|
from security_scanner.debian_tracker import DebianTracker
|
|
from security_scanner.dpkg_list import DpkgList
|
|
from security_scanner.gitlab import GitLab
|
|
|
|
from pprint import pprint
|
|
|
|
def stripArch(package):
|
|
return package.split(":", 2)[0]
|
|
|
|
def checkDebianDistro(distro):
|
|
result = 0
|
|
pkglist = DpkgList(distro)
|
|
packages = pkglist.parseFile()
|
|
tracker = DebianTracker(distro)
|
|
|
|
for package in packages:
|
|
state = tracker.checkPackage(stripArch(package), packages[package]['version'])
|
|
if 'comparison' in state and state['comparison'] is not None and state['comparison'] < 0:
|
|
print("Package: {}, current: {}, latest: {}, comparison: {}".format(package,state['current'], state['latest'], state['comparison']))
|
|
result = 1
|
|
print("checked {} packages; result: {}".format(len(packages), result))
|
|
|
|
return result
|
|
|
|
def main(argv):
|
|
gitlab = GitLab()
|
|
for distro in argv[1:]:
|
|
job = gitlab.getLastSuccessfulJob('master', 'squashfs_master')
|
|
gitlab.downloadArtifact(job, 'images/debian-' + distro + '.dpkg-list', 'debian-' + distro + '.dpkg-list')
|
|
if checkDebianDistro(distro) > 0:
|
|
ref = job.attributes['ref']
|
|
print("creating pipeline for reference {}".format(ref))
|
|
pprint(job.attributes)
|
|
gitlab.createPipeline(ref)
|