What's Changed
🚀 Added
- Inactive Server Cleanup: A new option in the administration interface to identify and remove servers that have not sent data in the last 15 days. This operation cleans up all associated records (transactions, items, executions, and asset entries) in a single database transaction.
🛠️ Fixed
- Vulnerability Ecosystem Isolation: refined the mapping logic to ensure each distribution queries its own specific OSV ecosystem.
- AlmaLinux: queries only
ALSA-*advisories. - Rocky Linux: queries only
RLSA-*advisories. - Red Hat: queries only
RHSA-*advisories.
- AlmaLinux: queries only
- CentOS & Oracle Linux Support: these distributions are now correctly mapped to Red Hat advisories (
RHSA-*) instead of AlmaLinux. - Precise Red Hat CPE Channels: implemented logic to derive exact Red Hat CPE channels (
baseos,appstream,crb) from transaction metadata for highly precise OSV queries.
⚙️ Changed
- Improved Scoreboard Logic: updated calculations to support distribution-specific vulnerability matching using
LIKEpattern matching for Red Hat CPE ecosystems. - Updated Documentation: refined the OSV integration documentation to reflect the new per-distribution ecosystem isolation.
Important
Post-Upgrade Action Required: After upgrading, administrators should use the Admin panel to truncate the package_vulnerabilities table and re-run the vulnerability update job. This ensures that all historical data is repopulated with the new, correctly isolated advisory information.