Re: [Rpm-maint] [rpm-software-management/rpm] How can I find details on the binary representation of the RPM DB? (Discussion #2211)
Thanks for the detailed discussion all! @DemiMarie is correct; I understand @pmatilai's concerns about intended use and security impact. For now, we parse the db files (as other open source scanners do) as creating a runtime is prohibitively expensive as pointed out above. Appreciate the notes! -- Reply to this email directly or view it on GitHub: https://github.com/rpm-software-management/rpm/discussions/2211#discussioncomment-7500519 You are receiving this because you are subscribed to this thread. Message ID: ___ Rpm-maint mailing list Rpm-maint@lists.rpm.org http://lists.rpm.org/mailman/listinfo/rpm-maint
Re: [Rpm-maint] [rpm-software-management/rpm] How can I find details on the binary representation of the RPM DB? (Discussion #2211)
This restricts our use case (container vulnerability scanning): is there a recommended way to see package information from the filesystem (like how Debian has `/var/lib/dpkg/info/[PACKAGE].list` files) -- Reply to this email directly or view it on GitHub: https://github.com/rpm-software-management/rpm/discussions/2211#discussioncomment-7482049 You are receiving this because you are subscribed to this thread. Message ID: ___ Rpm-maint mailing list Rpm-maint@lists.rpm.org http://lists.rpm.org/mailman/listinfo/rpm-maint