Code review comment for ~sespiros/ubuntu-cve-tracker/+git/ubuntu-cve-tracker:source-map-fix

Thanks for taking a look. Maybe by using an enum for release information but that would require a larger change I think.

What about a new function in cve_lib that will check a release against cve_lib's subprojects dictionary for a partner component? (just pushed a change for that)