Sort CPEs before adding them to the datastream

[ggbecker]

Description:

• Sort CPEs before adding them to the datastream.
• Do not show diff for rule security_patches_up_to_date.

Rationale

• Produce reproduceable builds and remove useless information about security_patches_up_to_date in compare_ds.py tool

[pep8speaks]

Hello @ggbecker! Thanks for updating this PR. We checked the lines you've touched for PEP 8 issues, and found:

• In the file utils/compare_ds.py:

Line 236:100: E501 line too long (101 > 99 characters)

Comment last updated at 2021-11-10 19:52:07 UTC

[github-actions]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff

Rule 'xccdf_org.ssgproject.content_rule_security_patches_up_to_date' points to 'security-data-oval-com.redhat.rhsa-RHEL8.xml' which isn't a part of the old datastream
Platform has been changed for rule 'xccdf_org.ssgproject.content_rule_chronyd_or_ntpd_set_maxpoll'
--- old datastream
+++ new datastream
-['cpe:/a:chrony', 'cpe:/a:ntp']
+['cpe:/a:ntp', 'cpe:/a:chrony']

[ggbecker]

Unfortunately changes to the workflow will only reflect when the PR gets merged as it uses pull_request_target. I have tested on my fork and they worked pretty well: ggbecker#20 (comment)

The workflow file similarly as it is proposed here: https://github.com/ggbecker/content/blob/master/.github/workflows/compare-ds.yaml

[ggbecker]

@evgenyz can you please check this one? thanks

[JAORMX]

@ggbecker thanks for this fix!