Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Affected dependents counts #88

Open
andrew opened this issue Apr 12, 2023 · 0 comments
Open

Affected dependents counts #88

andrew opened this issue Apr 12, 2023 · 0 comments
Labels
enhancement New feature or request

Comments

@andrew
Copy link
Member

andrew commented Apr 12, 2023
edited by polar-sh bot
Loading

Would be great to show a count of how many packages and repositories are potentially affected by an advisory.

This requires working out which versions of a package are affected, then counting all the packages/repos that list that package as a dependency within an affected version.

For packages this could inclucde ranges, for repositories it will mostly be looking for exact versions in lockfiles.

This will require new endpoints for both repos and packages services with filters on requirements.

Fund with Polar
@andrew andrew added the enhancement New feature or request label Apr 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@andrew