sbom-cve-check: set PV from upstream tags and ensure version checks are correct

author Alexander Kanavin <alex@linutronix.de>

Tue, 12 May 2026 10:10:02 +0000 (12:10 +0200)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Thu, 14 May 2026 11:20:04 +0000 (12:20 +0100)
author Alexander Kanavin <alex@linutronix.de>
Tue, 12 May 2026 10:10:02 +0000 (12:10 +0200)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Thu, 14 May 2026 11:20:04 +0000 (12:20 +0100)
diff --git a/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native.bb b/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native_2026-05-07.bb

similarity index 88%

rename from meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native.bb

rename to meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native_2026-05-07.bb

index 3763e7f21f7a672550b70944346d49c604905bef..7670172c40bba4940f3c9d9089c3284929eed695 100644 (file)
--- a/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native.bb
+++ b/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native_2026-05-07.bb
@@ -6,7 +6,7 @@ HOMEPAGE = "https://github.com/CVEProject/cvelistV5"
  SRC_URI = "git://github.com/CVEProject/cvelistV5.git;branch=main;protocol=https;destsuffix="
  SBOM_CVE_CHECK_DB_NAME = "cvelist"
  
-# cve_2026-05-07_1300Z
  SRCREV = "dd0e93c75034d0167498174c886a56729edc44de"
+UPSTREAM_CHECK_GITTAGREGEX = "(?P<pver>.+)_baseline"
  
  require sbom-cve-check-update-db.inc
diff --git a/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native.bb b/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native_2026.05.07-000006.bb

similarity index 90%

rename from meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native.bb

rename to meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native_2026.05.07-000006.bb

index 26a14e6eb169d58475b8a7a6434a872de0c7b1fc..02446e30ceeaf0daa6503572de7c502ccd066b33 100644 (file)
--- a/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native.bb
+++ b/meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native_2026.05.07-000006.bb
@@ -6,7 +6,7 @@ HOMEPAGE = "https://github.com/fkie-cad/nvd-json-data-feeds"
  SRC_URI = "git://github.com/fkie-cad/nvd-json-data-feeds.git;branch=main;protocol=https;destsuffix="
  SBOM_CVE_CHECK_DB_NAME = "nvd-fkie"
  
-# v2026.05.07-000006
  SRCREV = "72d8841c8ad9083ebf6723063f275444ea0d76f9"
+UPSTREAM_CHECK_GITTAGREGEX = "v(?P<pver>.+)"
  
  require sbom-cve-check-update-db.inc
author	Alexander Kanavin <alex@linutronix.de>
	Tue, 12 May 2026 10:10:02 +0000 (12:10 +0200)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 14 May 2026 11:20:04 +0000 (12:20 +0100)
meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native_2026-05-07.bb	[moved from meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-cvelist-native.bb with 88% similarity]	patch \| blob \| blame \| history
meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native_2026.05.07-000006.bb	[moved from meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-nvd-native.bb with 90% similarity]	patch \| blob \| blame \| history