launchpad-reviewers team mailing list archive

Thread
Date

Re: [Merge] ~enriqueesanchz/launchpad:add-import-export-endpoints into launchpad:master

To: mp+491804@xxxxxxxxxxxxxxxxxx
From: Enrique Sánchez <mp+491804@xxxxxxxxxxxxxxxxxx>
Date: Wed, 03 Sep 2025 10:45:14 -0000
In-reply-to: <175689501983.3170630.2944719775876255701.codereview@juju-98d295-prod-launchpad-4>
Reply-to: mp+491804@xxxxxxxxxxxxxxxxxx
Sender: noreply@xxxxxxxxxxxxx

> What I mean is that is there a way to format it so that if someone else does
> use it not as part of a job, it also works? i.e. take the removeSecurityProxy
> calls outside of that class?

I think we can't now as the `createBug` and `vulnerability_set.new` return security proxied bugs/vulnerabilities. After creating them we need to use them again in `SOSSImport` (and remove the security proxy) so I don't see a proper way of doing it afaik while still running the job as None user.

It seems legit to remove the security proxy of something you just created.

For the `_find_existing` methods, we can translate that logic to the job.
-- 
https://code.launchpad.net/~enriqueesanchz/launchpad/+git/launchpad/+merge/491804
Your team Launchpad code reviewers is requested to review the proposed merge of ~enriqueesanchz/launchpad:add-import-export-endpoints into launchpad:master.

References

Re: [Merge] ~enriqueesanchz/launchpad:add-import-export-endpoints into launchpad:master
From: Yuliy Schwartzburg, 2025-09-03