Merge pull request #779 from TG1999/api_changes_temp

TG1999 · web-flow · commit 9b07950b7324 · 2022-06-22T12:50:35.000+05:30
Add backward compatibility for url and unresolved_vulnerabilities
diff --git a/CHANGELOG.rst b/CHANGELOG.rst
@@ -39,6 +39,8 @@ Version v30.0.0
     - Rename  `resolved_vulnerabilities` to `fixing_vulnerabilities`
     - Rename `url` to `reference_url` in the reference list
 
+- We have provided backward compatibility for `url` and `unresolved_vulnerabilities` for now
+
 - There is a new experimental cpe/ API endpoint to lookup for vulnerabilities by CPE and 
   another aliases/ endpoint to lookup for vulnerabilities by aliases. These two endpoints will be
   replaced by query parameters on the main vulnerabilities/ endpoint when stabilized.
diff --git a/vulnerabilities/api.py b/vulnerabilities/api.py
@@ -35,7 +35,7 @@ class VulnerabilityReferenceSerializer(serializers.ModelSerializer):
 
     class Meta:
         model = VulnerabilityReference
-        fields = ["reference_url", "reference_id", "scores"]
+        fields = ["reference_url", "reference_id", "scores", "url"]
 
 
 class MinimalPackageSerializer(serializers.HyperlinkedModelSerializer):
@@ -94,6 +94,10 @@ class Meta:
 
 
 class PackageSerializer(serializers.HyperlinkedModelSerializer):
+    def to_representation(self, instance):
+        data = super().to_representation(instance)
+        data["unresolved_vulnerabilities"] = data["affected_by_vulnerabilities"]
+        return data
 
     purl = serializers.CharField(source="package_url")
     affected_by_vulnerabilities = MinimalVulnerabilitySerializer(
diff --git a/vulnerabilities/tests/test_fix_api.py b/vulnerabilities/tests/test_fix_api.py
@@ -88,6 +88,7 @@ def test_api_with_single_vulnerability(self):
             "namespace": "nginx",
             "name": "test-vulnDB",
             "version": "1.0",
+            "unresolved_vulnerabilities": [],
             "qualifiers": {},
             "subpath": "",
             "affected_by_vulnerabilities": [],
