Feedser
Evidence collection library for backport detection and binary fingerprinting.
Purpose
Feedser provides deterministic, cryptographic evidence collection for backport detection. It extracts patch signatures from unified diffs and binary fingerprints from compiled code to enable high-confidence vulnerability status determination for packages where upstream fixes have been backported by distro maintainers.
Quick Links
- Architecture - Technical design and implementation details
Status
| Attribute | Value |
|---|---|
| Maturity | Production |
| Last Reviewed | 2025-12-29 |
| Maintainer | Concelier Guild |
Key Features
- Patch Signature Extraction: Parse unified diffs and extract normalized hunk signatures
- Binary Fingerprinting: TLSH fuzzy hashing and instruction sequence hashing
- Four-Tier Proof System: Supporting backport detection at multiple confidence levels
- Deterministic Outputs: Canonical JSON serialization with stable hashing
Dependencies
Upstream (this module depends on)
- None (library with no external service dependencies)
Downstream (modules that depend on this)
- Concelier - ProofService layer consumes Feedser for backport evidence
- Attestor - Evidence storage for generated proofs
Notes
Feedser is a library, not a standalone service. It does not expose REST APIs directly and does not make vulnerability decisions. It provides evidence that feeds into VEX statements and Policy Engine evaluation.