Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / brave/security-action issues and pull requests

#171 - chore(deps): update dependency semgrep to ~=1.20.0

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#170 - chore(deps): update ruby/setup-ruby digest to d2b39ad

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#169 - semgrep_rules: april update

Pull Request - State: closed - Opened by thypon over 1 year ago

#168 - Feature request: add `govulncheck`

Issue - State: open - Opened by thypon over 1 year ago
Labels: enhancement

#167 - Bugfix/improve switch statement

Pull Request - State: closed - Opened by thypon over 1 year ago

#166 - chore(deps): update ruby/setup-ruby digest to 6cecb48

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#165 - chore(deps): update dependency semgrep to ~=1.19.0

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#164 - action.yml: update packages if base-image get outsync

Pull Request - State: closed - Opened by thypon over 1 year ago - 1 comment

#163 - test dnm

Pull Request - State: closed - Opened by bcaller over 1 year ago

#162 - Revert "Revert "Bump semgrep (&pip-audit)""

Pull Request - State: closed - Opened by bcaller over 1 year ago

#161 - Bump semgrep (&pip-audit)

Pull Request - State: closed - Opened by bcaller over 1 year ago

#160 - ERROR while installing `pip-audit` dependencies

Issue - State: closed - Opened by thypon over 1 year ago - 4 comments
Labels: bug

#158 - chore(deps): update ruby/setup-ruby digest to 55283cc

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#157 - semgrep: update rules 04/April/2023

Pull Request - State: closed - Opened by thypon over 1 year ago

#156 - chore(deps): update ruby/setup-ruby digest to 904f3fe

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#155 - interesting-api-calls.yaml: remove runOnUIThreads

Pull Request - State: closed - Opened by thypon over 1 year ago

#154 - safesvg: remove duplicates

Pull Request - State: closed - Opened by thypon over 1 year ago

#153 - blocklist.txt: exclude data-* elements

Pull Request - State: closed - Opened by thypon over 1 year ago

#152 - renovate.json: remove dangling comma

Pull Request - State: closed - Opened by thypon over 1 year ago

#151 - Action Required: Fix Renovate Configuration

Issue - State: closed - Opened by renovate[bot] over 1 year ago
Labels: bug

#150 - Kill unquoted

Pull Request - State: closed - Opened by bcaller over 1 year ago
Labels: needs-security-review

#148 - Don't match AWS regexes in the middle of words

Pull Request - State: closed - Opened by bcaller over 1 year ago
Labels: needs-security-review

#147 - chore(deps): update ruby/setup-ruby digest to ec02537

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#146 - The generic AWS secrets regex has gone rogue

Issue - State: closed - Opened by bcaller over 1 year ago - 1 comment
Labels: bug

#145 - semgrep_rules: disable default switch case

Pull Request - State: closed - Opened by thypon over 1 year ago

#143 - Interesting API calls: match xyzmemset not memsetxyz

Pull Request - State: closed - Opened by bcaller over 1 year ago

#142 - Make interesting API calls rule unmaintainable

Pull Request - State: closed - Opened by bcaller over 1 year ago
Labels: needs-security-review

#141 - Too broad with insecure-api-call

Issue - State: closed - Opened by thypon over 1 year ago - 1 comment
Labels: bug

#140 - Send an email/slack-notification on failure

Issue - State: open - Opened by thypon over 1 year ago
Labels: enhancement

#139 - Investigate `tfsec` failure on slim-list-lambda

Issue - State: closed - Opened by thypon over 1 year ago - 1 comment
Labels: bug

#138 - chore(deps): update ruby/setup-ruby digest to e6689b4

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#137 - Pip audit forever

Pull Request - State: closed - Opened by bcaller over 1 year ago

#136 - Fix comments on large diffs.

Issue - State: closed - Opened by bcaller over 1 year ago - 1 comment
Labels: enhancement

#135 - Use env variable for base branch in pip audit

Pull Request - State: closed - Opened by bcaller over 1 year ago

#134 - Reporter errors

Pull Request - State: closed - Opened by bcaller over 1 year ago

#133 - build(deps): bump salt from 2016.3 to 3003.5 in /t3sts/pipaudit

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#132 - build(deps): bump flask from 0.5 to 1.0 in /t3sts/pipaudit

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#131 - Feature/rust support

Pull Request - State: closed - Opened by thypon over 1 year ago

#130 - Issue with ruleset `unquoted-attribute-var.yaml`

Issue - State: closed - Opened by thypon over 1 year ago - 3 comments
Labels: bug

#129 - Pip audit

Pull Request - State: closed - Opened by bcaller over 1 year ago - 2 comments
Labels: needs-security-review

#128 - Delete outdated comments without replies

Pull Request - State: closed - Opened by bcaller over 1 year ago - 2 comments
Labels: needs-security-review

#127 - *: add ISSUE_TEMPLATEs

Pull Request - State: closed - Opened by thypon over 1 year ago

#126 - chore(deps): update ruby/setup-ruby digest to 9669f3e

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#125 - Removing stalled comments

Issue - State: closed - Opened by thypon over 1 year ago - 4 comments

#124 - chore(deps): update ruby/setup-ruby digest to 31a7f6d

Pull Request - State: closed - Opened by renovate[bot] over 1 year ago

#123 - javascript.lang.security.audit.unsafe-formatstring.unsafe-formatstring

Issue - State: closed - Opened by bcaller over 1 year ago - 1 comment

#122 - chore(deps): update ruby/setup-ruby digest to 92aece5

Pull Request - State: closed - Opened by renovate[bot] almost 2 years ago

#121 - npm-audit

Pull Request - State: closed - Opened by bcaller almost 2 years ago - 4 comments
Labels: needs-security-review

#120 - action: trigger on comments

Pull Request - State: closed - Opened by thypon almost 2 years ago - 1 comment

#119 - semgrep_rules missing-noopener-window-open: fix native ruleset

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#118 - semgrep_rules missing-noopener-window-open: less noise

Pull Request - State: closed - Opened by thypon almost 2 years ago

#117 - semgrep_rules missing-noopener-window-open: adding noreferrer allowlist

Pull Request - State: closed - Opened by thypon almost 2 years ago

#116 - New semgrep-rule: missing-noopener-window-open

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#115 - bugfix/missing-integrity

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#114 - mirror: fix dest branch `main`

Pull Request - State: closed - Opened by thypon almost 2 years ago

#113 - semgrep_rule interesting-api-calls: add source

Pull Request - State: closed - Opened by thypon almost 2 years ago

#112 - renovate: ignore tests

Pull Request - State: closed - Opened by thypon almost 2 years ago

#111 - Mod semgrep_rule: unquoted-attribute-var

Pull Request - State: closed - Opened by thypon almost 2 years ago - 2 comments
Labels: needs-security-review

#110 - chore(deps): update terraform azurerm to ~> 3.44.0

Pull Request - State: closed - Opened by renovate[bot] almost 2 years ago

#109 - chore(deps): update terraform aws to ~> 4.55.0

Pull Request - State: closed - Opened by renovate[bot] almost 2 years ago

#108 - New semgrep rule: brave-isolated-world-id-content-end

Pull Request - State: closed - Opened by thypon almost 2 years ago - 1 comment
Labels: needs-security-review

#107 - mirror: fix again

Pull Request - State: closed - Opened by thypon almost 2 years ago

#106 - semgrep_rules: remove most of the signed-unsigned false positives

Pull Request - State: closed - Opened by thypon almost 2 years ago

#101 - Allowlist `brave-core` unittests

Issue - State: open - Opened by thypon almost 2 years ago
Labels: bug

#92 - Write a guide to run the checkers locally!

Issue - State: open - Opened by thypon almost 2 years ago
Labels: documentation

#79 - Handle https://semgrep.dev/r/html.security.audit.missing-integrity.missing-integrity

Issue - State: closed - Opened by thypon almost 2 years ago
Labels: enhancement

#78 - bfcdcb2fe1af7fa1cfe7c39d6806b5bef6a30d1f broke tests

Issue - State: closed - Opened by thypon almost 2 years ago - 4 comments
Labels: bug

#76 - Features/offline semgrep

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#73 - False positive for var in script with tojson

Pull Request - State: closed - Opened by bcaller almost 2 years ago
Labels: needs-security-review

#70 - Blocklist: almost always a false positive

Pull Request - State: closed - Opened by bcaller almost 2 years ago

#68 - action: use type boolean

Pull Request - State: closed - Opened by thypon almost 2 years ago - 1 comment

#66 - action: enable toggle

Pull Request - State: closed - Opened by thypon almost 2 years ago

#65 - Evaluate the use of Sarif instead of Reviewdog

Issue - State: open - Opened by thypon almost 2 years ago - 4 comments
Labels: enhancement

#64 - Safari

Pull Request - State: closed - Opened by bcaller almost 2 years ago

#59 - Don't readd `needs-security-review` if label was removed

Issue - State: closed - Opened by thypon almost 2 years ago

#56 - action: retry public check if network error

Pull Request - State: closed - Opened by thypon almost 2 years ago

#55 - Port brakeman to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago - 8 comments
Labels: enhancement

#54 - reviewdog: remove tfsec.log file

Pull Request - State: closed - Opened by thypon almost 2 years ago

#50 - reviewdog: run twice and push the log to a file

Pull Request - State: closed - Opened by thypon almost 2 years ago

#49 - New ruleset: check if redirects are absolute (containing full domain and protocol)

Issue - State: open - Opened by thypon almost 2 years ago
Labels: enhancement

#48 - Port gixy to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago
Labels: enhancement

#47 - Check if dependency is on `brave-experiments`

Issue - State: open - Opened by thypon almost 2 years ago
Labels: enhancement

#46 - Feature/add tfsec

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#45 - action: semgrep run only if pull_request

Pull Request - State: closed - Opened by thypon almost 2 years ago

#43 - reviewdog: exit eagerly on semgrep, don't on xmllint

Pull Request - State: closed - Opened by thypon almost 2 years ago

#42 - Bugfix/no fail on empty filechange

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#41 - Tweak var-in-href when using sanititze_url

Pull Request - State: closed - Opened by bcaller almost 2 years ago
Labels: needs-security-review

#40 - Tweak template-href-var when using sanititze_url

Pull Request - State: closed - Opened by bcaller almost 2 years ago
Labels: needs-security-review

#39 - action: less debug

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#35 - Bugfix/large changesets

Pull Request - State: closed - Opened by thypon almost 2 years ago
Labels: needs-security-review

#34 - Port cargo audit to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago
Labels: enhancement

#33 - Port gosec to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago - 1 comment
Labels: enhancement

#32 - Port pip-audit to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago - 3 comments
Labels: enhancement

#31 - Port npm-audit to reviewdog

Issue - State: closed - Opened by thypon almost 2 years ago - 4 comments

#29 - Port bandit to reviewdog

Issue - State: open - Opened by thypon almost 2 years ago - 2 comments
Labels: enhancement

#10 - Dependency Dashboard

Issue - State: open - Opened by renovate[bot] almost 2 years ago

#7 - Add Signature check for commits

Issue - State: closed - Opened by thypon almost 2 years ago - 1 comment
Labels: enhancement