Use only latest per avid aadvisories to compute package risk score

TG1999 · TG1999 · commit 1d2aaee97713 · 2026-03-17T15:25:37.000+05:30
Signed-off-by: Tushar Goel &lt;tushar.goel.dav@gmail.com&gt;
diff --git a/vulnerabilities/pipelines/v2_improvers/compute_package_risk.py b/vulnerabilities/pipelines/v2_improvers/compute_package_risk.py
@@ -130,8 +130,14 @@ def compute_and_store_vulnerability_risk_score(self):
         )
 
     def compute_and_store_package_risk_score(self):
+
+        latest_advisories = AdvisoryV2.objects.latest_per_avid()
+
         qs = (
-            PackageV2.objects.filter(affected_in_impacts__advisory__risk_score__isnull=False)
+            PackageV2.objects.filter(
+                affected_in_impacts__advisory__risk_score__isnull=False,
+                affected_in_impacts__advisory__in=latest_advisories,
+            )
             .annotate(computed_risk=Max("affected_in_impacts__advisory__risk_score"))
             .only("id")
         )
