apache/security-vulnogram issues and pull requests

#161 - problemType: autocomplete all CWEs

Pull Request - State: closed - Opened by raboof 5 months ago - 1 comment

#160 - catch TypeError when a reference is not a URL at all

Issue - State: open - Opened by raboof 5 months ago
Labels: bug

#159 - problem type autocomplete: allow more CWEs

Issue - State: open - Opened by raboof 5 months ago
Labels: enhancement

#158 - validation: when "Package name" is filled, also expect "package collection URL"

Issue - State: open - Opened by raboof 5 months ago
Labels: enhancement

#157 - validation: no 'incubator'/'incubation'/'incubating' in the product name

Issue - State: open - Opened by raboof 5 months ago
Labels: enhancement

#156 - Feature to email reporters

Issue - State: open - Opened by raboof 5 months ago
Labels: enhancement

#155 - Add link to explain problem types are autocompleted

Pull Request - State: closed - Opened by raboof 5 months ago

#154 - improve input placeholder text contrast

Pull Request - State: closed - Opened by raboof 5 months ago

#153 - Validate maven package names contain a ":"

Pull Request - State: closed - Opened by raboof 5 months ago

#152 - Validate the product name is not repeated in the title

Pull Request - State: closed - Opened by raboof 5 months ago

#151 - feat: validate notifications are not sent to private lists

Pull Request - State: closed - Opened by raboof 5 months ago

#150 - chore: avoid browser console error

Pull Request - State: closed - Opened by raboof 5 months ago

#149 - javascript error: "not a valid regexp: invalid character in class in regular expression"

Issue - State: open - Opened by raboof 5 months ago
Labels: enhancement

#148 - send emails after saving the CVE

Pull Request - State: closed - Opened by raboof 6 months ago

#147 - remove validation that versionType is empty for non-ranges

Pull Request - State: closed - Opened by raboof 6 months ago

#146 - validation: no 'security@' mailinglist in notifications

Issue - State: closed - Opened by raboof 6 months ago
Labels: enhancement

#145 - validation: no project name in title

Issue - State: closed - Opened by raboof 6 months ago
Labels: enhancement

#144 - validation: packageName should contain a : for Maven packages

Issue - State: closed - Opened by raboof 6 months ago
Labels: enhancement

#143 - input placeholder text has low contrast

Issue - State: closed - Opened by raboof 7 months ago - 1 comment
Labels: enhancement

#142 - 'problem type' autocomplete is unclear

Issue - State: closed - Opened by raboof 7 months ago
Labels: enhancement

#141 - default 'versionType' causes validation issues

Issue - State: closed - Opened by raboof 8 months ago
Labels: bug

#140 - More description generation / version list tweaks

Pull Request - State: closed - Opened by raboof 9 months ago

#140 - More description generation / version list tweaks

Pull Request - State: closed - Opened by raboof 9 months ago

#139 - loosen cookie sameSite setting

Pull Request - State: closed - Opened by raboof 9 months ago

#139 - loosen cookie sameSite setting

Pull Request - State: closed - Opened by raboof 9 months ago

#138 - Generate correct version range texts for 'all versions'

Pull Request - State: closed - Opened by raboof 9 months ago

#138 - Generate correct version range texts for 'all versions'

Pull Request - State: closed - Opened by raboof 9 months ago

#137 - Better HTML in the auto-generated description

Pull Request - State: closed - Opened by raboof 9 months ago

#137 - Better HTML in the auto-generated description

Pull Request - State: closed - Opened by raboof 9 months ago

#135 - Avoid export error

Pull Request - State: closed - Opened by raboof 11 months ago

#135 - Avoid export error

Pull Request - State: closed - Opened by raboof 11 months ago

#134 - Error handling on CVE rejection

Issue - State: closed - Opened by raboof 11 months ago - 1 comment
Labels: enhancement

#133 - populate 'type' field of metrics object

Issue - State: closed - Opened by raboof 11 months ago - 1 comment
Labels: bug

#132 - Add `sameSite` option for cookie

Pull Request - State: closed - Opened by raboof 11 months ago

#132 - Add `sameSite` option for cookie

Pull Request - State: closed - Opened by raboof 11 months ago

#131 - Add Content-Security-Policy

Pull Request - State: closed - Opened by raboof 11 months ago

#131 - Add Content-Security-Policy

Pull Request - State: closed - Opened by raboof 11 months ago

#130 - don't rely on javascript from cloudflare

Issue - State: open - Opened by raboof 11 months ago

#129 - Have the browser remember to use https

Pull Request - State: closed - Opened by raboof 11 months ago

#128 - Stricter CORS headers

Pull Request - State: closed - Opened by raboof 11 months ago

#127 - mailinglists for 'unsupported when assigned' CVEs

Issue - State: open - Opened by raboof 12 months ago

#126 - userslist field description: encourage users@

Pull Request - State: closed - Opened by raboof 12 months ago

#126 - userslist field description: encourage users@

Pull Request - State: closed - Opened by raboof 12 months ago

#125 - Hide 'defaultStatus' field

Pull Request - State: closed - Opened by raboof 12 months ago - 1 comment

#125 - Hide 'defaultStatus' field

Pull Request - State: closed - Opened by raboof 12 months ago - 1 comment

#124 - autoText: template 'unsupported when assigned' text

Pull Request - State: closed - Opened by raboof 12 months ago

#123 - Avoid over-matching when converting links to text

Pull Request - State: closed - Opened by raboof about 1 year ago - 2 comments

#122 - 5-second timeout on whimsy requests

Pull Request - State: closed - Opened by raboof about 1 year ago - 1 comment

#121 - Run-time dependency on whimsy

Issue - State: closed - Opened by raboof about 1 year ago
Labels: enhancement

#120 - Tentatively address issue #119

Pull Request - State: closed - Opened by ardovm about 1 year ago - 1 comment

#119 - On the "OSS/ASF Emails" page, mention emails to [email protected] may be delayed due to moderation

Issue - State: closed - Opened by raboof about 1 year ago - 3 comments

#118 - Remove 'defaultStatus' field

Issue - State: closed - Opened by raboof about 1 year ago - 3 comments

#117 - Support wildcard version range end

Pull Request - State: closed - Opened by raboof about 1 year ago

#116 - Validation: lists should not contain private@

Issue - State: open - Opened by raboof about 1 year ago
Labels: enhancement

#115 - When sending emails, an error box briefly appears

Issue - State: closed - Opened by raboof about 1 year ago - 1 comment
Labels: bug

#114 - Push success box is an error box

Issue - State: open - Opened by iamamoose over 1 year ago

#113 - Fix ASF list validation

Pull Request - State: closed - Opened by raboof over 1 year ago - 1 comment

#112 - Resolve HTML entities in comment notification emails

Pull Request - State: closed - Opened by raboof over 1 year ago

#111 - Select a default list for the announcement

Pull Request - State: closed - Opened by raboof over 1 year ago

#111 - Select a default list for the announcement

Pull Request - State: closed - Opened by raboof over 1 year ago

#110 - Enable fields for ecosystem-specific package names

Pull Request - State: closed - Opened by raboof over 1 year ago - 1 comment

#109 - Allow adding internal references

Pull Request - State: closed - Opened by raboof over 1 year ago

#108 - Expose public CVE4 cves

Pull Request - State: closed - Opened by raboof over 1 year ago - 1 comment

#107 - Simplify timeline UTC date logic

Pull Request - State: closed - Opened by raboof over 1 year ago

#106 - Catch exception parsing URL

Pull Request - State: closed - Opened by raboof over 1 year ago

#106 - Catch exception parsing URL

Pull Request - State: closed - Opened by raboof over 1 year ago

#105 - Merge upstream changes

Pull Request - State: open - Opened by raboof over 1 year ago - 1 comment

#105 - Merge upstream changes

Pull Request - State: open - Opened by raboof over 1 year ago - 2 comments

#104 - update use of deprecated method

Issue - State: open - Opened by raboof over 1 year ago

#103 - Validate mailinglists to notify

Pull Request - State: closed - Opened by raboof over 1 year ago

#102 - enable 'post to cve.org' button only in 'PUBLIC' state

Issue - State: open - Opened by raboof over 1 year ago
Labels: enhancement

#101 - Recommend dlcdn.apache.org over download.apache.org

Pull Request - State: closed - Opened by raboof over 1 year ago

#101 - Recommend dlcdn.apache.org over download.apache.org

Pull Request - State: closed - Opened by raboof over 1 year ago

#100 - Deleting the second 'rating metric' makes the text input field for the first disappear

Issue - State: closed - Opened by raboof over 1 year ago - 1 comment
Labels: bug

#100 - Deleting the second 'rating metric' makes the text input field for the first disappear

Issue - State: closed - Opened by raboof over 1 year ago - 1 comment
Labels: bug

#99 - "+ Rating Metric" opens a CVSS rating

Issue - State: open - Opened by raboof over 1 year ago
Labels: enhancement

#98 - validate references don't link to cveprocess

Pull Request - State: closed - Opened by raboof over 1 year ago

#97 - Fix Histories in wrong collection

Pull Request - State: closed - Opened by raboof over 1 year ago - 1 comment

#96 - Enable 'tags' field

Pull Request - State: closed - Opened by raboof over 1 year ago

#95 - Correctly determine project urls for retired projects

Pull Request - State: closed - Opened by raboof over 1 year ago

#95 - Correctly determine project urls for retired projects

Pull Request - State: closed - Opened by raboof over 1 year ago

#94 - Update placeholder for 'versionType' field

Pull Request - State: closed - Opened by raboof over 1 year ago

#94 - Update placeholder for 'versionType' field

Pull Request - State: closed - Opened by raboof over 1 year ago

#93 - Avoid excessive newlines in HTML-to-text conversion

Pull Request - State: closed - Opened by raboof over 1 year ago

#93 - Avoid excessive newlines in HTML-to-text conversion

Pull Request - State: closed - Opened by raboof over 1 year ago

#92 - Run codeql on PR's and pushes to main branch

Pull Request - State: closed - Opened by raboof over 1 year ago

#92 - Run codeql on PR's and pushes to main branch

Pull Request - State: closed - Opened by raboof over 1 year ago

#91 - Validate the document ID before using it in a query

Pull Request - State: closed - Opened by raboof over 1 year ago - 4 comments

#90 - Create session cookie with secure flags

Pull Request - State: closed - Opened by raboof over 1 year ago

#90 - Create session cookie with secure flags

Pull Request - State: closed - Opened by raboof over 1 year ago

#89 - timezone issue(?) with timeline

Issue - State: closed - Opened by raboof over 1 year ago
Labels: bug

#88 - Remove unneeded dependencies

Pull Request - State: closed - Opened by raboof over 1 year ago - 1 comment
Labels: bug, fairly urgent

#87 - Airflow now has a security list

Pull Request - State: closed - Opened by raboof over 1 year ago

#87 - Airflow now has a security list

Pull Request - State: closed - Opened by raboof over 1 year ago

#86 - Fix 'versionType' documentation

Issue - State: closed - Opened by raboof over 1 year ago
Labels: bug

#85 - Consider using AI to give quality check feedback

Issue - State: open - Opened by iamamoose almost 2 years ago
Labels: enhancement, someday

#84 - Reduce the number of newlines produced by the HTML-to-text conversion

Issue - State: closed - Opened by raboof almost 2 years ago
Labels: enhancement

#84 - Reduce the number of newlines produced by the HTML-to-text conversion

Issue - State: closed - Opened by raboof almost 2 years ago
Labels: enhancement

#83 - Introduce an API to list public advisories

Pull Request - State: closed - Opened by raboof almost 2 years ago

#82 - Avoid repeating a URL in the HTML to text conversion

Pull Request - State: closed - Opened by raboof almost 2 years ago

GitHub / apache/security-vulnogram issues and pull requests