Add support for parsing Git commit messages #1992
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ziadhany
force-pushed
the
parsing-commit
branch
from
06e8b82 to
976c5ad
Compare
ziadhany
commented
Oct 13, 2025
|
|
||
| def clone(self): | ||
| """Clone the repository.""" | ||
| self.repo_url = "https://github.com/torvalds/linux" |
Collaborator
Author
There was a problem hiding this comment.
This part should not be static
4 tasks
keshav-space
requested changes
Oct 16, 2025
Member
keshav-space
left a comment
keshav-space
left a comment
There was a problem hiding this comment.
Thanks @ziadhany, see some suggestions.
vulnerabilities/pipelines/v2_importers/collect_repo_fix_commits.py
Outdated
Show resolved
Hide resolved
vulnerabilities/pipelines/v2_importers/collect_repo_fix_commits.py
Outdated
Show resolved
Hide resolved
vulnerabilities/pipelines/v2_importers/collect_repo_fix_commits.py
Outdated
Show resolved
Hide resolved
vulnerabilities/pipelines/v2_importers/collect_repo_fix_commits.py
Outdated
Show resolved
Hide resolved
ziadhany
force-pushed
the
parsing-commit
branch
from
5ffdf86 to
12dc381
Compare
Collaborator
Author
keshav-space
requested changes
Feb 5, 2026
Member
keshav-space
left a comment
keshav-space
left a comment
There was a problem hiding this comment.
@ziadhany thanks, see some feedback below.
ziadhany
commented
Feb 6, 2026
vulnerabilities/tests/pipelines/v2_importers/test_collect_fix_commit.py
Outdated
Show resolved
Hide resolved
keshav-space
reviewed
Feb 6, 2026
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Add a test for CollectRepoFixCommitPipeline Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
…ct fixed_by_commit_patches correctly. Signed-off-by: ziad hany <ziadhany2016@gmail.com>
… multiple repositories Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Remove CollectOpensslFixCommits Pipeline Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
ziadhany
force-pushed
the
parsing-commit
branch
from
0b414a9 to
81933a5
Compare
Signed-off-by: ziad hany <ziadhany2016@gmail.com>
keshav-space
approved these changes
Feb 12, 2026
Member
keshav-space
left a comment
keshav-space
left a comment
There was a problem hiding this comment.
Thanks @ziadhany, LGTM! Do we have an estimate of how long it takes to run CollectLinuxFixCommitsPipeline?
Collaborator
Author
The Linux kernel pipeline takes around 5 minutes if the network call is ignored. |
This was referenced Feb 12, 2026
3 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
I created an initial script to parse Git commit messages that can be easily integrated with our model. The script takes a Git repository as input, parses all commits, and returns the CVEs along with their corresponding fixed commits.
Issues:
results:
vulnerabilities_packagecommitpatch2.zip