From a27457109b6d0f71cb04d51dcc6ad0cec39d26b4 Mon Sep 17 00:00:00 2001
From: tschmidtb51 <65305130+tschmidtb51@users.noreply.github.com>
Date: Thu, 24 Oct 2024 22:27:29 +0200
Subject: [PATCH] Contradicting Product Status vs Remediation

- addresses parts of oasis-tcs/csaf#541, oasis-tcs/csaf#662, oasis-tcs/csaf#563
- fix spelling mistake
- improve wording
- clarify that this also applies to indirect relationships through product groups
---
 .../edit/src/tests-01-mndtr-35-contradicting-remediations.md | 3 ++-
 ...6-contradicting-product-status-remediation-combination.md | 5 +++--
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/csaf_2.1/prose/edit/src/tests-01-mndtr-35-contradicting-remediations.md b/csaf_2.1/prose/edit/src/tests-01-mndtr-35-contradicting-remediations.md
index 4603d95e..64e00eb2 100644
--- a/csaf_2.1/prose/edit/src/tests-01-mndtr-35-contradicting-remediations.md
+++ b/csaf_2.1/prose/edit/src/tests-01-mndtr-35-contradicting-remediations.md
@@ -1,6 +1,7 @@
 ### Contradicting Remediations
 
-For each item in `/vulnerabilities[]/remediations` it MUST be tested that the same Product ID is not member of contradicting remediation categories.
+For each item in `/vulnerabilities[]/remediations` it MUST be tested that a Product is not member of contradicting remediation categories.
+This takes indirect relations through Product Groups into account.
 
 The relevant path for this test is:
 
diff --git a/csaf_2.1/prose/edit/src/tests-01-mndtr-36-contradicting-product-status-remediation-combination.md b/csaf_2.1/prose/edit/src/tests-01-mndtr-36-contradicting-product-status-remediation-combination.md
index 1e3c5f15..248f4818 100644
--- a/csaf_2.1/prose/edit/src/tests-01-mndtr-36-contradicting-product-status-remediation-combination.md
+++ b/csaf_2.1/prose/edit/src/tests-01-mndtr-36-contradicting-product-status-remediation-combination.md
@@ -1,6 +1,7 @@
 ### Contradicting Product Status Remediation Combination
 
-For each item in `/vulnerabilities[]/remediations` it MUST be tested that the same Product ID is not member of a contradicting product status group.
+For each item in `/vulnerabilities[]/remediations` it MUST be tested that a Product is not member of a contradicting product status group.
+This takes indirect relations through Product Groups into account.
 
 The relevant path for this test is:
 
@@ -27,4 +28,4 @@ The relevant path for this test is:
       ]
 ```
 
-> For the product with product ID `CSAFPID-908070` a `vendo_fix` is given but the product was not affected at all.
+> For the product with product ID `CSAFPID-908070` a `vendor_fix` is given but the product was not affected at all.