Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / Vulnogram/Vulnogram issues and pull requests

#130 - Update CWE-1003 list

Pull Request - State: closed - Opened by raboof 12 months ago

#129 - Extending Vulnogram to support OSV

Issue - State: closed - Opened by andrewpollock 12 months ago - 1 comment
Labels: question

#128 - Trim spaces and newlines in text fields

Issue - State: closed - Opened by chandanbn 12 months ago - 1 comment

#127 - Add validation that versions are disjoint

Issue - State: open - Opened by raboof 12 months ago
Labels: enhancement

#126 - Allow empty "versionType" field for single versions

Issue - State: closed - Opened by raboof 12 months ago - 1 comment

#125 - Validate the document ID before using it in a query

Pull Request - State: open - Opened by raboof about 1 year ago

#124 - Update placeholder for 'versionType' field

Pull Request - State: closed - Opened by raboof about 1 year ago

#123 - Avoid excessive newlines in HTML-to-text conversion

Pull Request - State: closed - Opened by raboof about 1 year ago

#122 - Create session cookie with secure flags

Pull Request - State: closed - Opened by raboof about 1 year ago

#120 - document that Node.js 14+ is needed to generate static website

Pull Request - State: closed - Opened by ElectricNroff about 1 year ago

#119 - fix "No rule to make target" error for GNU Make 4.x

Pull Request - State: closed - Opened by ElectricNroff about 1 year ago

#118 - Avoid repeating a URL in the HTML to text conversion

Pull Request - State: closed - Opened by raboof about 1 year ago

#117 - CVE-2023-30547 (Critical) detected in vm2-3.9.14.tgz

Issue - State: open - Opened by mend-bolt-for-github[bot] about 1 year ago
Labels: Mend: dependency security vulnerability

#116 - CVE-2023-29199 (Critical) detected in vm2-3.9.14.tgz

Issue - State: open - Opened by mend-bolt-for-github[bot] about 1 year ago
Labels: Mend: dependency security vulnerability

#115 - CVE-2023-29017 (Critical) detected in vm2-3.9.14.tgz

Issue - State: open - Opened by mend-bolt-for-github[bot] about 1 year ago
Labels: Mend: dependency security vulnerability

#114 - spelling: exploitabality -> exploitability

Pull Request - State: closed - Opened by carterjones over 1 year ago

#113 - bugix: use idpath from opts

Pull Request - State: closed - Opened by carterjones over 1 year ago

#112 - Add an "Are you sure?" button

Issue - State: open - Opened by todb-r7 over 1 year ago - 3 comments
Labels: help wanted, High Priority, UX

#111 - Add credit field

Issue - State: closed - Opened by Miskerest over 1 year ago - 1 comment

#110 - Fix docker startup

Pull Request - State: closed - Opened by carterjones over 1 year ago

#109 - Update mongoose and address warnings

Pull Request - State: closed - Opened by carterjones over 1 year ago

#108 - please support timestamp UTC offsets UI

Issue - State: open - Opened by eslerm over 1 year ago - 1 comment

#107 - Is it possible to sort the attributes in JSON alphabetically

Issue - State: closed - Opened by MrSeccubus over 1 year ago - 1 comment

#106 - Histories stored in wrong table

Issue - State: closed - Opened by iamamoose over 1 year ago - 1 comment
Labels: bug

#105 - 0.1.0

Pull Request - State: closed - Opened by chandanbn over 1 year ago

#104 - Fixes #103

Pull Request - State: closed - Opened by xdrr over 1 year ago

#102 - discussion: timeline should be updated and mandatory, not optional

Issue - State: closed - Opened by eviltik over 1 year ago - 1 comment

#101 - 0.1.0

Pull Request - State: closed - Opened by chandanbn over 1 year ago

#100 - misc fixes. Publish package on npm

Pull Request - State: closed - Opened by chandanbn almost 2 years ago

#99 - 0.1.0

Pull Request - State: closed - Opened by chandanbn almost 2 years ago

#98 - CVE 5.0 CVE Portal test login attempt results in 'csClient is undefined'

Issue - State: closed - Opened by zmanion almost 2 years ago - 4 comments

#97 - CVE-2022-24304 (High) detected in mongoose-5.13.14.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#96 - Automatically strip 0.0 CVSS scores

Issue - State: closed - Opened by todb-r7 almost 2 years ago - 6 comments

#95 - CVE-2022-2564 (High) detected in mongoose-5.13.14.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#94 - CVE-2021-35065 (High) detected in glob-parent-5.1.2.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#93 - enable docker deployment

Pull Request - State: closed - Opened by carterjones almost 2 years ago

#92 - CVE.js updates

Pull Request - State: closed - Opened by xdrr almost 2 years ago - 3 comments

#91 - Default minimal fields & bug fixes

Pull Request - State: open - Opened by sei-vsarvepalli about 2 years ago - 2 comments

#89 - CVE-2022-25896 (Medium) detected in passport-0.4.1.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#88 - CVE-2022-25871 (High) detected in querymen-2.1.4.tgz

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability

#87 - CVE-2022-33987 (Medium) detected in got-9.6.0.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#86 - Opening a file without impacts array adds a blank one (json 5)

Issue - State: closed - Opened by iamamoose about 2 years ago

#85 - CVE session persistance

Pull Request - State: closed - Opened by sei-vsarvepalli about 2 years ago

#84 - clearly distinguish between CVE info and advisory info

Issue - State: closed - Opened by tomturner-citrix about 2 years ago - 3 comments

#83 - Reintroduce Autotext button

Issue - State: closed - Opened by chandanbn about 2 years ago - 2 comments

#82 - CVE-2022-24434 (High) detected in dicer-0.3.0.tgz

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability

#81 - A few issues when parsing a valid 5.0 file

Issue - State: closed - Opened by iamamoose about 2 years ago - 1 comment
Labels: bug

#80 - Invalid JSON v5 if versionType is blank

Issue - State: closed - Opened by iamamoose about 2 years ago - 1 comment
Labels: bug

#79 - wysihtml possibly unmaintained or has embargoed CVE Record?

Issue - State: closed - Opened by ElectricNroff about 2 years ago - 1 comment

#78 - use IndexedDB in cve5sw.js?

Issue - State: closed - Opened by ElectricNroff about 2 years ago - 9 comments

#77 - 'FRSIRT' as a refsource - is this a typo for 'F5SIRT'?

Issue - State: closed - Opened by F5MegaZone about 2 years ago - 1 comment

#76 - CVE-2021-3765 (High) detected in validator-10.11.0.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#75 - merge cve-session code with 0.1.0

Pull Request - State: closed - Opened by chandanbn about 2 years ago

#74 - merge with 0.1.0-dev

Pull Request - State: closed - Opened by chandanbn about 2 years ago

#73 - Adds paging to the CVE Issue #54

Pull Request - State: closed - Opened by sei-vsarvepalli about 2 years ago

#72 - Using relative path for JavaScript and CSS files.

Issue - State: closed - Opened by sei-vsarvepalli about 2 years ago - 1 comment

#71 - CVE-2022-21803 (High) detected in nconf-0.10.0.tgz, nconf-0.6.9.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#70 - CVE-2021-43138 (High) detected in multiple libraries - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#69 - Browser mode deployment URL's not relative

Issue - State: closed - Opened by sei-vsarvepalli about 2 years ago - 1 comment
Labels: bug

#68 - Handling of "versionType" field for single versions

Issue - State: closed - Opened by dkoehler-boschpsirt about 2 years ago - 1 comment
Labels: bug

#67 - "impacts" requirement in Vulnogram vs. CVE JSON 5.0 Schema

Issue - State: closed - Opened by dkoehler-boschpsirt about 2 years ago - 2 comments

#66 - Add UI for user and org management

Issue - State: closed - Opened by chandanbn about 2 years ago - 2 comments
Labels: help wanted, CVE-JSON5

#65 - #63 closed, but misunderstood

Issue - State: closed - Opened by MrSeccubus over 2 years ago - 1 comment

#64 - CVE5.0 it is bad pratice to hard code version numbers into tags...

Issue - State: closed - Opened by MrSeccubus over 2 years ago - 2 comments

#63 - CVE5.0 CWE vs cepec

Issue - State: closed - Opened by MrSeccubus over 2 years ago - 2 comments

#62 - CVE V5 format incorrect rendering of advisory

Issue - State: closed - Opened by MrSeccubus over 2 years ago - 1 comment
Labels: bug, CVE-JSON5

#61 - Integrates latest cve.js feature/cred-mgmt

Pull Request - State: closed - Opened by xdrr over 2 years ago

#60 - CVE-2021-44906 (High) detected in minimist-0.0.10.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#59 - CVE-2021-33502 (High) detected in normalize-url-4.5.0.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#58 - in 0.1.0, cveLogin requests /api/org/ with some web browsers

Issue - State: closed - Opened by ElectricNroff over 2 years ago - 4 comments

#57 - Replace the rich-text-editor

Issue - State: open - Opened by chandanbn over 2 years ago - 2 comments
Labels: enhancement, help wanted

#56 - CVE services login/logout can be be improved

Issue - State: closed - Opened by chandanbn over 2 years ago - 2 comments
Labels: help wanted

#55 - allow x_ tags

Issue - State: closed - Opened by chandanbn over 2 years ago - 1 comment

#54 - in 0.1.0, getCveIds neglects pagination

Issue - State: closed - Opened by ElectricNroff over 2 years ago
Labels: help wanted, good first issue

#53 - When exporting and importing json, the DATE_PUBLIC timestamp may get lost

Issue - State: closed - Opened by MrSeccubus over 2 years ago - 2 comments

#52 - Updated the cve.mitre.org links to www.cve.org

Pull Request - State: closed - Opened by sei-vsarvepalli over 2 years ago - 1 comment

#51 - Default timestamp of 00:00:00 UTC

Issue - State: open - Opened by zmanion over 2 years ago - 1 comment

#50 - Update render.js from cve.mitre.org to cve.org

Issue - State: closed - Opened by ViperGeek over 2 years ago - 1 comment

#49 - v4.0 CVE Records aren't valid if RESERVED is chosen

Issue - State: closed - Opened by ElectricNroff over 2 years ago
Labels: CVE-JSON4

#48 - 0.1.0-dev

Pull Request - State: closed - Opened by chandanbn almost 3 years ago

#47 - CVE-2020-28469 (High) detected in glob-parent-3.1.0.tgz

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 3 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#46 - CVE-2021-3807 (Medium) detected in ansi-regex-4.1.0.tgz, ansi-regex-2.1.1.tgz - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 3 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#45 - CVE-2021-23438 (High) detected in mpath-0.8.3.tgz

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 3 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#44 - Let's use the 1003 view of CWE (as used by CVMAP audit)

Pull Request - State: closed - Opened by iamamoose almost 3 years ago

#43 - Plot example

Issue - State: open - Opened by lacoil about 3 years ago

#42 - Limit the CWE list to 1003 view

Issue - State: closed - Opened by chandanbn about 3 years ago

#41 - Provide "Basic", "Advanced", "Pro" modes.

Issue - State: open - Opened by chandanbn about 3 years ago
Labels: enhancement

#40 - Support parsing CSV format

Issue - State: closed - Opened by reedloden over 3 years ago
Labels: enhancement

#39 - Pug 2.x is no longer supported due to vulnerabilities

Pull Request - State: closed - Opened by santosomar over 3 years ago - 1 comment

#38 - CVE-2021-21353 (High) detected in pug-2.0.4.tgz

Issue - State: closed - Opened by mend-bolt-for-github[bot] over 3 years ago - 2 comments
Labels: Mend: dependency security vulnerability

#37 - Addressing vulnerability in mongoose

Pull Request - State: closed - Opened by santosomar over 3 years ago - 1 comment

#36 - Sort by ID doesn't understand CVE ordering

Issue - State: open - Opened by iamamoose over 3 years ago - 2 comments

#35 - Update the advisory to not include headings for sections that are empty

Pull Request - State: closed - Opened by iamamoose over 3 years ago

#34 - The Tweet button is dangerous for non-public CVE, so hide it

Pull Request - State: closed - Opened by iamamoose over 3 years ago

#33 - Remove the hardcoded redirect to use the one from the config

Pull Request - State: closed - Opened by iamamoose over 3 years ago

#32 - Don't render buttons for the sections which we don't actually want,

Pull Request - State: open - Opened by iamamoose over 3 years ago

#31 - API/ REST for Vulnogram? e.g. OData.

Issue - State: closed - Opened by mpaujnpr01 almost 4 years ago - 1 comment