Skip to content

[pull] main from guacsec:main#194

Merged
pull[bot] merged 4 commits into
trustification:mainfrom
guacsec:main
Jul 2, 2026
Merged

[pull] main from guacsec:main#194
pull[bot] merged 4 commits into
trustification:mainfrom
guacsec:main

Conversation

@pull

@pull pull Bot commented Jul 2, 2026

Copy link
Copy Markdown

See Commits and Changes for more details.


Created by pull[bot] (v2.0.0-alpha.4)

Can you help keep this open source service alive? 💖 Please sponsor : )

rh-jfuller and others added 4 commits July 2, 2026 10:23
…hooses optimal plan when searching for components
This also accounts for an initial gap, getting the read only
transaction.
Add `?advisories=true` query parameter to `GET /v3/sbom` that includes
per-SBOM vulnerability severity counts in the response. This eliminates
the N+1 request pattern where the UI makes separate `GET /sbom/{id}/advisory`
calls for each row to display severity badges.

The batch SQL query combines both PURL-based (via `purl_status` +
`version_matches()`) and CPE-based (via `product_status` + package name
matching) advisory matching into a single query across all listed SBOMs.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@pull pull Bot locked and limited conversation to collaborators Jul 2, 2026
@pull pull Bot added the ⤵️ pull label Jul 2, 2026
@pull pull Bot merged commit 7a07281 into trustification:main Jul 2, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants