Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prompt when the vulnerability database needs updating #5

Open
popey opened this issue Nov 11, 2024 · 0 comments
Open

Prompt when the vulnerability database needs updating #5

popey opened this issue Nov 11, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@popey
Copy link
Owner

popey commented Nov 11, 2024

Similar to #4 - the grype vulnerability database gets published every day. If grype hasn't been executed for more than 12-24 hours, it's likely using an outdated copy. When the user first runs grype manually, by default, it will update the database. This also happens in grummage (when run for the first time, or for the first time in a while) which results in a long delay when opening the first SBOM.

It would be better if, on launch, grummage could detect that grype's vulnerability database is outdated, and tell the user (perhaps in the status bar at the bottom) inform the user. They could perhaps have a key mapped to 'update vuln db' manually.

Alternatively a popup could appear, in which the user is informed 'grype vuln database being updated' while grype db update is run in the background.
@popey popey added the enhancement New feature or request label Nov 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@popey