Introduce a new commit diff field

Fix a typo in the importer

Signed-off-by: ziad hany <ziadhany2016@gmail.com>

Author: ziadhany

vulnerabilities/importer.py

@@ -202,6 +202,7 @@ class CodeCommitData:
 
     commit_author: Optional[str] = None
     commit_message: Optional[str] = None
+    commit_diff: Optional[str] = None
     commit_date: Optional[datetime.datetime] = None
 
     def __post_init__(self):
@@ -226,6 +227,7 @@ def _cmp_key(self):
             self.vcs_url,
             self.commit_author,
             self.commit_message,
+            self.commit_diff,
             self.commit_date,
         )
 
@@ -236,6 +238,7 @@ def to_dict(self) -> dict:
             "vcs_url": self.vcs_url,
             "commit_author": self.commit_author,
             "commit_message": self.commit_message,
+            "commit_diff": self.commit_diff,
             "commit_date": self.commit_date,
         }
 
@@ -244,10 +247,11 @@ def from_dict(cls, data: dict):
         """Create a Commit instance from a dictionary."""
         commit_date = data.get("commit_date")
         return cls(
-            commit_hash=str(data.get("commit_hash", "")),
-            vcs_url=data.get("vcs_url", ""),
+            commit_hash=data.get("commit_hash"),
+            vcs_url=data.get("vcs_url"),
             commit_author=data.get("commit_author"),
             commit_message=data.get("commit_message"),
+            commit_diff=data.get("commit_diff"),
             commit_date=datetime.datetime.fromisoformat(commit_date) if commit_date else None,
         )
 

vulnerabilities/migrations/0104_codecommit_commit_diff.py

@@ -0,0 +1,20 @@
+# Generated by Django 4.2.22 on 2025-11-17 12:17
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("vulnerabilities", "0103_codecommit_impactedpackage_affecting_commits_and_more"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="codecommit",
+            name="commit_diff",
+            field=models.TextField(
+                blank=True, help_text="Full diff content of the commit.", null=True
+            ),
+        ),
+    ]

vulnerabilities/models.py

@@ -3412,5 +3412,9 @@ class CodeCommit(models.Model):
         null=True, blank=True, help_text="Commit message or description."
     )
 
+    commit_diff = models.TextField(
+        null=True, blank=True, help_text="Full diff content of the commit."
+    )
+
     class Meta:
         unique_together = ("commit_hash", "vcs_url")

vulnerabilities/pipes/advisory.py

@@ -121,6 +121,7 @@ def get_or_create_advisory_code_commits(code_commits_data: List) -> List["CodeCo
             vcs_url=c.vcs_url,
             commit_author=getattr(c, "commit_author", None),
             commit_message=getattr(c, "commit_message", None),
+            commit_diff=getattr(c, "commit_diff", None),
             commit_date=getattr(c, "commit_date", None),
         )
         for c in code_commits_data

vulnerabilities/tests/pipelines/v2_importers/test_github_osv_importer_v2.py

@@ -90,13 +90,15 @@ def delete(self):
             vcs_url="https://github.com/aboutcode-org/vulnerablecode",
             commit_author=None,
             commit_message=None,
+            commit_diff=None,
             commit_date=None,
         ),
         CodeCommitData(
             commit_hash="b58c68c38a9de451818bac6c96d08d61e7f348a2",
             vcs_url="https://github.com/aboutcode-org/vulnerablecode",
             commit_author=None,
             commit_message=None,
+            commit_diff=None,
             commit_date=None,
         ),
     ]
@@ -107,13 +109,15 @@ def delete(self):
             vcs_url="https://github.com/aboutcode-org/vulnerablecode",
             commit_author=None,
             commit_message=None,
+            commit_diff=None,
             commit_date=None,
         ),
         CodeCommitData(
             commit_hash="61621982593152c47b520ce893eb90c332427483",
             vcs_url="https://github.com/aboutcode-org/vulnerablecode",
             commit_author=None,
             commit_message=None,
+            commit_diff=None,
             commit_date=None,
         ),
     ]

vulnerabilities/tests/pipes/test_advisory.py

@@ -170,6 +170,7 @@ def advisory_commit():
             vcs_url="https://github.com/aboutcode-org/vulnerablecode",
             commit_author="tester1",
             commit_message="message1",
+            commit_diff="diff commit1",
             commit_date=datetime.now(),
         ),
         CodeCommitData(

vulnerabilities/tests/test_commit_code.py

@@ -1,6 +1,7 @@
 from datetime import datetime
 
 import pytest
+from django.core.exceptions import ValidationError
 
 from vulnerabilities.models import AdvisoryV2
 from vulnerabilities.models import CodeCommit
@@ -32,6 +33,7 @@ def setup_method(self):
             vcs_url="https://github.com/aboutcode-org/test1/",
             commit_author="tester1",
             commit_message="test message1",
+            commit_diff="diff text",
             commit_date=datetime.now(),
         )
 
@@ -56,3 +58,18 @@ def test_commit_fields(self):
     def test_impacted_packages_creation(self):
         assert ImpactedPackage.objects.count() == 1
         assert self.code_commit1 == self.impacted.fixed_by_commits.first()
+
+    def test_invalid_commit_creation(self):
+        with pytest.raises(ValidationError):
+            commit = CodeCommit(
+                commit_hash="", vcs_url="https://github.com/aboutcode-org/test1/"  # invalid
+            )
+            commit.full_clean()  # triggers model validation
+            commit.save()
+
+        with pytest.raises(ValidationError):
+            commit = CodeCommit(
+                commit_hash="7c001a11dbcb3eb6d851e18f4cefa080af5fb398", vcs_url=""  # invalid
+            )
+            commit.full_clean()  # triggers model validation
+            commit.save()