Open
Description
For example ruby importer/improver: #799
https://github.com/rubysec/ruby-advisory-db/blob/master/rubies/ruby/CVE-2022-28738.yml
patched_versions = record.get("patched_versions", []) # [ ~> 3.0.4 , >= 3.1.2 ]
fixed_version_ranges = [GemVersionRange.from_native(v) for v in patched_versions] # type: List[VersionRange]
unaffected_versions = record.get("unaffected_versions", []) # [ ~> 2.6.0 , ~> 2.7.0]
unaffected_versions_ranges = [GemVersionRange.from_native(v) for v in unaffected_versions]# type: List[VersionRange]
affected_packages = AffectedPackage(purl,affected_version_range= ,fixed_version=) # How can we fill this?
AffectedPackage type should be :
affected_version_range: VersionRange | None
fixed_version: Version | None
To pass affected_version_range and/or fixed_version as a argument for AffectedPackage
it is required to use RubyVersionAPI() but we should use RubyVersionAPI() only at improver