Skip to content

feat(ci): add mitre-attack, mitre-capec, mitre-cwe#141

Draft
MaineK00n wants to merge 1 commit into
mainfrom
MaineK00n/cti
Draft

feat(ci): add mitre-attack, mitre-capec, mitre-cwe#141
MaineK00n wants to merge 1 commit into
mainfrom
MaineK00n/cti

Conversation

@MaineK00n
Copy link
Copy Markdown
Contributor

@MaineK00n MaineK00n commented Apr 27, 2026

Enable extract / backup / gc / truncate / restore for the three new extracted MITRE datasources, and add them to db-main / db-nightly so the assembled vuls2 DB now carries ATT&CK / CAPEC / CWE alongside mitre-v5.

@MaineK00n @claude
feat(ci): add mitre-attack, mitre-capec, mitre-cwe
dd66834 
Enable extract / backup / gc / truncate / restore for the three new
extracted MITRE datasources, and add them to db-main / db-nightly so
the assembled vuls2 DB now carries ATT&CK / CAPEC / CWE alongside
mitre-v5.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@MaineK00n MaineK00n self-assigned this Apr 27, 2026
Copilot AI review requested due to automatic review settings April 27, 2026 07:20
Copilot AI reviewed Apr 27, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR expands the CI orchestration so three new extracted MITRE datasources (ATT&CK, CAPEC, CWE) are treated as first-class extracted images across the lifecycle (extract, backup, gc, truncate, restore) and are included in the DB assembly inputs.

Changes:

  • Add vuls-data-extracted-mitre-{attack,capec,cwe} to the db-main.mk / db-nightly.mk build inputs.
  • Enable extract pipelines for mitre-{attack,capec,cwe} in extract-main.yml and extract-all.yml.
  • Extend operational maintenance workflows (backup/gc/truncate/restore matrices and allowlists) to include the three new extracted tags.

Reviewed changes

Copilot reviewed 12 out of 12 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
db-nightly.mk Adds the new extracted MITRE tags to the nightly DB build inputs.
db-main.mk Adds the new extracted MITRE tags to the main DB build inputs.
.github/workflows/truncate.yml Adds new extracted tags to the workflow_dispatch tag options list.
.github/workflows/truncate-extracted.yml Adds new MITRE targets to the truncation matrix that runs after Extract All.
.github/workflows/restore-all.yml Adds new extracted tags to the restore-all matrix.
.github/workflows/gc.yml Adds new extracted tags to the workflow_dispatch tag options list.
.github/workflows/gc-extracted.yml Adds new extracted tags to the GC Extracted matrix include list.
.github/workflows/extract-main.yml Enables mitre-attack, mitre-capec, and mitre-cwe as selectable extract targets.
.github/workflows/extract-all.yml Enables the three MITRE targets in both main and nightly extract matrices.
.github/workflows/backup-weekly.yml Adds new extracted tags to the weekly backup matrix.
.github/workflows/backup-monthly.yml Adds new extracted tags to the monthly backup matrix.
.github/workflows/backup-daily.yml Adds new extracted tags to the daily backup matrix.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread db-main.mk
Comment on lines +24 to +26
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-attack BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-capec BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-cwe BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
Copy link

Copilot AI Apr 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

PR description says the assembled vuls2 DB will carry ATT&CK/CAPEC/CWE alongside mitre-v5, but db-build here only adds the three new MITRE datasources and still does not add vuls-data-extracted-mitre-v5. If mitre-v5 is intended to be part of the assembled DB, add it to this list; otherwise, please adjust the PR description to avoid the mismatch.

Copilot uses AI. Check for mistakes.
Comment thread db-nightly.mk
Comment on lines +24 to +26
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-attack BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-capec BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
$(MAKE) -f ${MAKEFILE} db-add REPO=vuls-data-extracted-mitre-cwe BRANCH=${BRANCH} DBTYPE=${DBTYPE} DBPATH=${DBPATH}
Copy link

Copilot AI Apr 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

PR description mentions the assembled vuls2 DB includes these new MITRE datasources alongside mitre-v5, but db-build here does not add vuls-data-extracted-mitre-v5 (only attack/capec/cwe). If mitre-v5 should be included in the nightly assembled DB, add it to this list; otherwise update the PR description to match what is actually built.

Copilot uses AI. Check for mistakes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

At least 1 approving review is required to merge this pull request.

Assignees

@MaineK00n MaineK00n

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MaineK00n