OSV ingest should use snapshots via http rather than gcloud APIs

Question

OSV ingest should use snapshots via http rather than gcloud APIs

Closed this issue a year ago · 1 comments

Ingesting snapshots in the container context will require fewer moving parts to authenticate to gcloud if we just use the HTTP interface to the storage bucket directly. Ecosystem snaps can be retrieved directly from:

https://osv-vulnerabilities.storage.googleapis.com/<ecosystem>/all.zip

Answer 1 · 2023-11-16T15:32:46.000Z

Implemented in dd20131