From d5e7585e26861bf5e1c178c5181f9b35e5b35d7e Mon Sep 17 00:00:00 2001
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Fri, 28 Apr 2023 13:41:40 +0200
Subject: process-cve-records: fix detection of empty CVEs

If a CVE has a PackageAnnotation, it shouldn't get a TODO: check
note.
---
 bin/process-cve-records | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'bin')

diff --git a/bin/process-cve-records b/bin/process-cve-records
index 39b7ca3f25..2ab2c2f47f 100755
--- a/bin/process-cve-records
+++ b/bin/process-cve-records
@@ -72,7 +72,8 @@ def parse_record(record, cve):
         cve.header.description = f"({desc})"
 
     if not is_reserved(record) and not is_rejected(record) \
-      and not get_annotation(cve.annotations, parsers.StringAnnotation):
+      and not get_annotation(cve.annotations, parsers.StringAnnotation) \
+      and not get_annotation(cve.annotations, parsers.PackageAnnotation):
         ann = parsers.StringAnnotation(0, 'TODO', 'check')
         cve.annotations.append(ann)
 
-- 
cgit v1.2.3