From 4ccb91065d4f5e5519b38573a01235334d56a3b6 Mon Sep 17 00:00:00 2001
From: Malte Juergens <mjurgens@mozilla.com>
Date: Wed, 20 Dec 2023 16:52:15 +0100
Subject: [PATCH] Do not update CVEs from before 2023 through GitHub Actions

---
 foundation_security_advisories/common_cve.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/foundation_security_advisories/common_cve.py b/foundation_security_advisories/common_cve.py
index 0068055..a459a72 100644
--- a/foundation_security_advisories/common_cve.py
+++ b/foundation_security_advisories/common_cve.py
@@ -162,9 +162,10 @@ def try_update_published_cve(local_cve: CVEAdvisory, local_date: int, remote_dat
     if local_cve.year < 2023:
         if not prompt_yes_no(
             f"\nThis CVE lies before the cutoff year 2023. Should the content still be updated for {local_cve.id}?",
-            default=True,  # CHANGEME
+            default=False,
         ):
             print(f"Skipping {local_cve.id} because it lies before the cutoff year")
+            touch_cve_id(local_cve.id)
             return False
     else:
         if not prompt_yes_no(f"\nShould this content be updated for {local_cve.id}?"):