Add weaknesses data in packages endpoint

vulnerabilities/api.py

@@ -157,6 +157,8 @@ class VulnSerializerRefsAndSummary(BaseResourceSerializer):
 
     aliases = serializers.SerializerMethodField()
 
+    weaknesses = serializers.SerializerMethodField()
+
     def get_aliases(self, obj):
         # Assuming `obj.aliases` is a queryset of `Alias` objects
         return [alias.alias for alias in obj.aliases.all()]
@@ -173,6 +175,9 @@ def get_references(self, vulnerability):
 
         return serialized_references
 
+    def get_weaknesses(self, obj):
+        return [weakness.to_dict() for weakness in getattr(obj, "prefetched_weaknesses", [])]
+
     class Meta:
         model = Vulnerability
         fields = [
@@ -185,6 +190,7 @@ class Meta:
             "risk_score",
             "exploitability",
             "weighted_severity",
+            "weaknesses",
         ]
 
 
@@ -355,14 +361,19 @@ def get_vulnerabilities_for_a_package(self, package, fix) -> dict:
                 "fixed_by_packages",
                 queryset=fixed_packages,
                 to_attr="filtered_fixed_packages",
+            ),
+            Prefetch(
+                "weaknesses",
+                queryset=Weakness.objects.all(),
+                to_attr="prefetched_weaknesses",
             )
         )
         return VulnSerializerRefsAndSummary(
             instance=qs,
             many=True,
             context={"request": self.context["request"]},
         ).data
-
+    
     def get_fixing_vulnerabilities(self, package) -> dict:
         """
         Return a mapping of vulnerabilities fixed in the given `package`.