From 4f41f5db773a87d07b483594090774f964613b70 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Michal=20Posp=C3=AD=C5=A1il?= <mpospisi@redhat.com>
Date: Wed, 12 Nov 2025 17:49:46 +0100
Subject: [PATCH] fix bundling metadata

This should help ProdSec accurately detect versions of bundled
components in pcs. Security analysts usually filter the database based
on ecosystem. The ecosystem detection has been done from RPM metadata
for some time and that is when ProdSec stopped creating trackers
accurately. The problem is that we didn't follow the Fedora Packaging
Guidelines and didn't name the bundled components with package names as
if they were entering Fedora. The ecosystem detection in Deptopia (the
tool that ProdSec uses) expects "rubygem-" prefix for rubygems and
"python[X]-" prefix for Python ecosystem. See PSDEVOPS-4408 for more
details.
---
 pcs.spec | 39 ++++++++++++++++++++-------------------
 1 file changed, 20 insertions(+), 19 deletions(-)

diff --git a/pcs.spec b/pcs.spec
index 6e243cc..010132a 100644
--- a/pcs.spec
+++ b/pcs.spec
@@ -219,24 +219,25 @@ Requires: logrotate
 # for working with qdevice certificates (certutil)
 Requires: nss-tools
 
-Provides: bundled(dacite) = %{dacite_version}
-Provides: bundled(backports) = %{version_rubygem_backports}
-Provides: bundled(base64) = %{version_rubygem_base64}
-Provides: bundled(childprocess) = %{version_rubygem_childprocess}
-Provides: bundled(ethon) = %{version_rubygem_ethon}
-Provides: bundled(ffi) = %{version_rubygem_ffi}
-Provides: bundled(logger) = %{version_rubygem_logger}
-Provides: bundled(mustermann) = %{version_rubygem_mustermann}
-Provides: bundled(nio4r) = %{version_rubygem_nio4r}
-Provides: bundled(puma) = %{version_rubygem_puma}
-Provides: bundled(rack) = %{version_rubygem_rack}
-Provides: bundled(rack_protection) = %{version_rubygem_rack_protection}
-Provides: bundled(rack_session) = %{version_rubygem_rack_session}
-Provides: bundled(rack_test) = %{version_rubygem_rack_test}
-Provides: bundled(rackup) = %{version_rubygem_rackup}
-Provides: bundled(ruby2_keywords) = %{version_rubygem_ruby2_keywords}
-Provides: bundled(sinatra) = %{version_rubygem_sinatra}
-Provides: bundled(tilt) = %{version_rubygem_tilt}
+Provides: bundled(python3-dacite) = %{dacite_version}
+
+Provides: bundled(rubygem-backports) = %{version_rubygem_backports}
+Provides: bundled(rubygem-base64) = %{version_rubygem_base64}
+Provides: bundled(rubygem-childprocess) = %{version_rubygem_childprocess}
+Provides: bundled(rubygem-ethon) = %{version_rubygem_ethon}
+Provides: bundled(rubygem-ffi) = %{version_rubygem_ffi}
+Provides: bundled(rubygem-logger) = %{version_rubygem_logger}
+Provides: bundled(rubygem-mustermann) = %{version_rubygem_mustermann}
+Provides: bundled(rubygem-nio4r) = %{version_rubygem_nio4r}
+Provides: bundled(rubygem-puma) = %{version_rubygem_puma}
+Provides: bundled(rubygem-rack) = %{version_rubygem_rack}
+Provides: bundled(rubygem-rack-protection) = %{version_rubygem_rack_protection}
+Provides: bundled(rubygem-rack-session) = %{version_rubygem_rack_session}
+Provides: bundled(rubygem-rack-test) = %{version_rubygem_rack_test}
+Provides: bundled(rubygem-rackup) = %{version_rubygem_rackup}
+Provides: bundled(rubygem-ruby2_keywords) = %{version_rubygem_ruby2_keywords}
+Provides: bundled(rubygem-sinatra) = %{version_rubygem_sinatra}
+Provides: bundled(rubygem-tilt) = %{version_rubygem_tilt}
 
 Provides: bundled(pcs-web-ui) = %{!?ui_tarball_version:%{ui_version}}%{?ui_tarball_version}
 
@@ -262,7 +263,7 @@ Requires: pcs = %{version}-%{release}
 Requires: pacemaker
 Requires: net-snmp
 
-Provides: bundled(pyagentx) = %{pyagentx_version}
+Provides: bundled(python3-pyagentx) = %{pyagentx_version}
 
 %description -n %{pcs_snmp_pkg_name}
 SNMP agent that provides information about pacemaker cluster to the master agent (snmpd)