Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Restructure SCIO Resource status field #1525

Open
mjherzog opened this issue Jan 9, 2025 · 0 comments
Open

Restructure SCIO Resource status field #1525

mjherzog opened this issue Jan 9, 2025 · 0 comments
Assignees
@tdruez @DennisClark
Labels
design-needed medium priority

Comments

@mjherzog
Copy link
Member

mjherzog commented Jan 9, 2025

The current usage of Resources status field is confusing because it seems to conflate several types of status:

Scanning status

  • scanned
  • scanned-with-error

File ignored

  • ignored-empty-file
  • ignored-whiteout
  • ignored-not-interesting

Package type for container images

  • application-package
  • system-package

License scanning status

  • no-licenses
  • unknown-licenses

It is not clear where the status values are exclusive or where SCIO picks the best one for a file. Using a field like this for multiple dimensions of status makes it harder to filter and search the Resources data.

I think that we should have separate status fields such as:

  • scanning_status
  • license_detection_status
  • container_package_type:
  • file_scan_status

There are two related issues for the "ignored-not-interesting" status values:
#405
#409

We should replace the current code for ignoring files when we have a file-cat addon pipeline for SCIO.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tdruez tdruez

@DennisClark DennisClark

Labels
design-needed medium priority
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@tdruez @mjherzog @DennisClark