-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
libsqlite3-0 risk index should be 8 not 6 #1
Comments
Hello, Please note: we are not yet including Dependencies, Patches and ABRT crash statistics into the risk index. These are suggested but are not implemented yet [1]. CVEs are not being captured because all are recent (post-April 2015). I believe results.csv shows data from March-April. Rerunning the script will reflect latest CVEs and scores. And we are using [2] to source CVEs. [1] https://www.coreinfrastructure.org/programs/census-project |
I suggest closing this issue, partly because we've shown in the previous responses that we don't use ABRT etc., and partly from the resolution of issue #29 . In particular, the new version of the tool will show each portion of the calculated score, making it MUCH easier to see why scores ended up a certain way. |
thanks |
Manually calculating the score yields a score of 8:
12692883348, popcon inst: 130862)The text was updated successfully, but these errors were encountered: