Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>

Developed a Python tool which will allow to automatically
update an Oniro-based distribution or product tree to a
target version, create a backup or restore a previously
created backup. The tool was initially created
by Davide Gardenal <davide.gardenal@huawei.com>.

Signed-off-by: Ghassane Ben El Aattar <ghassaneb.aattar@huawei.com>

It was proposed and approved in #824 to relicense the Yocto/OE files in
this repository to MIT. This will make collaboration with the upstream
easier.

Fixes: eclipse/oniro-core/oniro#824



Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>

Make the report generation more customizable. Apart from the CSV report,
add also a summary report including the number of CVEs in each package.

Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com>

Marta Rybczynska authored 2 years ago and Pavel Zhukov committed 2 years ago

cve-diff analyses JSON CVE outputs of two builds and shows
the difference between the two. The initial version handles:
added/removed packages and CVEs.

Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com>

Add scripts for post-processing the JSON CVE data:
- cve-json-to-csv.py allows to convert the JSON file to CSV
- recipes-with-no-cves.py lists CVE status of all recipes

Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com>