config.json: metrics: Switch to daily CVE DB full-download

By using CVE_DB_INCR_UPDATE_AGE_THRES = CVE_DB_INCR_UPDATE_AGE_THRES = 6h, cve-check will do a NVD database full download if the database is older than 6h or reuse it un-updated if its younger than 6h. Since the metrics builder is scheduled every day, that will result in a daily full-download. That will workaround NVD API limitations were some updates may be missed and the incrementaly updated database is not equivalent to a freshly downloaded database. Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2025-10-22 23:02:21 +02:00 · 2024-03-13 20:54:24 +01:00 · 2024-03-13 20:54:24 +01:00 · 7a71f86c51
commit 7a71f86c51
parent 4b9fe2cd8c
1 changed files with 1 additions and 0 deletions
--- a/config.json
+++ b/config.json
@ -1307,6 +1307,7 @@
                "CVE_CHECK_FORMAT_JSON = '1'",
                "CVE_CHECK_SHOW_WARNINGS = '0'",
                "CVE_DB_UPDATE_INTERVAL = '21600'",
+                "CVE_DB_INCR_UPDATE_AGE_THRES = '21600'",
                "BB_SERVER_TIMEOUT = '0'"
            ],
            "step1" : {