[OSV users] Decoupling Alpine and Debian CVE trackers from main OSV CVE record
1 view
Skip to first unread message
Jess Lowe
Sep 15, 2025, 11:22:00 PM (13 days ago) Sep 15
to osv-d...@googlegroups.com
Hi all, on a similar but different tangent from our last email, we are letting you know that we will be decoupling the Debian and Alpine CVE trackers from the main CVE- prefixed records. They will now be at their own prefix: DEBIAN-/ALPINE- respectively, followed by the record they are referencing, e.g. DEBIAN-CVE-20XX-XXXX.
This will align with similar distro cases like UBUNTU-. The decoupled records will reference the tracked CVE/record in the 'upstream' field.
This will be rolling out in the next few weeks. Let us know if this will cause any issues by commenting on the tracked issues:
Debian: https://github.com/google/osv.dev/issues/3899
Alpine: https://github.com/google/osv.dev/issues/3900
Alpine: https://github.com/google/osv.dev/issues/3900
Thanks!
Reply all
Reply to author
Forward
0 new messages