Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / google/osv-scanner issues and pull requests
#396 - Failed to parse SBOM using all supported formates.
Issue -
State: closed - Opened by Huiicat over 1 year ago
- 4 comments
#395 - Fix version printer to use app stdout and stderr
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 1 comment
#394 - PURLs on stdin
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 1 comment
#393 - chore(deps): update workflows
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#392 - fix(deps): update osv-scanner minor
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#391 - up
Pull Request -
State: closed - Opened by gitadvisor over 1 year ago
- 1 comment
#390 - OSV user agent
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#389 - Gitignore parsing iterates through all directories unnecessarily
Issue -
State: closed - Opened by another-rex over 1 year ago
- 2 comments
Labels: performance
#388 - Add osv-scanner user agent
Issue -
State: closed - Opened by another-rex over 1 year ago
#387 - Add new line and fix test to avoid having to change version twice
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#386 - Exiting with 127 when filtering out vulnerabilities
Issue -
State: closed - Opened by another-rex over 1 year ago
- 1 comment
Labels: bug
#385 - 1.3.3 Release
Pull Request -
State: closed - Opened by andrewpollock over 1 year ago
#384 - Use upload draft assets option
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#383 - chore(deps): update slsa-framework/slsa-github-generator action to v1.6.0
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#382 - chore(deps): update alpine docker tag to v3.18
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#381 - fix(deps): update osv-scanner minor
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#380 - chore(deps): update golang:alpine docker digest to ee2f23f
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#379 - Remove --hash from version in requirements.txt
Pull Request -
State: closed - Opened by robotdana over 1 year ago
#378 - chore(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go
#377 - Small formatting changes
Pull Request -
State: closed - Opened by hayleycd over 1 year ago
- 3 comments
#376 - Add option to disable color in default table output
Issue -
State: closed - Opened by inkel over 1 year ago
- 9 comments
Labels: enhancement, stale
#375 - Update exit docs
Pull Request -
State: closed - Opened by hayleycd over 1 year ago
#374 - govulncheck integration
Pull Request -
State: closed - Opened by julieqiu over 1 year ago
#373 - Improve exit docs and add No vulns found to output
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 3 comments
#372 - chore(deps): update github/codeql-action action to v2.3.3
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#371 - CVE Onboarding Timeline
Issue -
State: closed - Opened by theinfosecguy over 1 year ago
- 1 comment
#370 - Support parsing requirements.txt files that aren't specifically named "requirements.txt"
Issue -
State: closed - Opened by alex over 1 year ago
- 2 comments
#369 - requirements.txt mis-parses lines that contain --hash
Issue -
State: closed - Opened by alex over 1 year ago
- 1 comment
Labels: bug
#368 - add unit tests for results.go
Pull Request -
State: closed - Opened by khareyash05 over 1 year ago
- 3 comments
#367 - fix: don't panic on empty files
Pull Request -
State: closed - Opened by robotdana over 1 year ago
#366 - fix: handle cyclical `-r`s in `requirements.txt`
Pull Request -
State: closed - Opened by robotdana over 1 year ago
- 1 comment
#365 - Update spdx to 0.5.0
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#364 - panic when parsing fake pnpm lockfile
Issue -
State: closed - Opened by laurentS over 1 year ago
- 3 comments
Labels: bug
#363 - chore(deps): update github/codeql-action action to v2.3.2
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#362 - Enable osvVulnerabilityAlerts
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#361 - Update docs to latest
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#360 - Fix sbom scanning code
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#359 - 1.3.2 Release
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#358 - Update all minor dependencies without spdx
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#357 - Update pkg/osv to allow overriding the http client / transport.
Pull Request -
State: closed - Opened by jeffmendoza over 1 year ago
- 1 comment
#356 - add unit tests for results.go
Issue -
State: closed - Opened by khareyash05 over 1 year ago
- 2 comments
#355 - Scanning a CycloneDX sBOM results in No package sources found error
Issue -
State: closed - Opened by ccYHM86 over 1 year ago
- 3 comments
Labels: bug
#354 - cycle in requirements.txt causes infinite recursion
Issue -
State: closed - Opened by spencerschrock over 1 year ago
- 7 comments
Labels: bug
#353 - Support CPE scanning.
Issue -
State: open - Opened by oliverchang over 1 year ago
- 6 comments
Labels: enhancement, backlog
#352 - Automated/guided remediation
Issue -
State: open - Opened by oliverchang over 1 year ago
- 16 comments
Labels: enhancement, priority, guided remediation
#351 - Document return code values
Issue -
State: closed - Opened by oliverchang over 1 year ago
Labels: documentation
#350 - (enhancement) Table output: detailed fixed version
Pull Request -
State: closed - Opened by dineshr93 over 1 year ago
- 5 comments
Labels: enhancement
#349 - Better SBOM documentation and error message
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#348 - Bad exit code when no dependencies found on a maven file
Issue -
State: closed - Opened by mohamnag over 1 year ago
- 6 comments
Labels: documentation, enhancement, stale
#347 - misleading document or code implementation
Issue -
State: closed - Opened by trganda over 1 year ago
- 2 comments
Labels: documentation
#346 - Move a specific regex to static variable
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 6 comments
#345 - Refactor reporter to interfaces
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#344 - Snap created
Pull Request -
State: closed - Opened by kz6fittycent over 1 year ago
- 5 comments
#343 - [cli output] added new column "Fixed versions" in cli table output
Pull Request -
State: closed - Opened by dineshr93 over 1 year ago
#342 - [cli output] added new column "Fixed versions" in cli table output
Pull Request -
State: closed - Opened by dineshr93 over 1 year ago
- 1 comment
#341 - Make the reporter public
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#340 - Set `skip-pkg-cache: true` for golangci-lint
Pull Request -
State: closed - Opened by oliverchang over 1 year ago
#339 - SBOM parsing improvements.
Pull Request -
State: closed - Opened by oliverchang over 1 year ago
- 2 comments
#338 - chore(deps): bump nokogiri from 1.14.1 to 1.14.3 in /docs
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, ruby
#337 - chore(deps): bump commonmarker from 0.23.8 to 0.23.9 in /docs
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, ruby
#336 - [improvement] osv output summary in cli should also contain 'vulnerability fixed version' column
Issue -
State: closed - Opened by dineshr93 over 1 year ago
- 2 comments
Labels: enhancement
#335 - SPDX parsing improvements
Issue -
State: closed - Opened by oliverchang over 1 year ago
- 2 comments
Labels: enhancement
#334 - chore(deps): update workflows
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#333 - Regexp compilation taking a long time
Issue -
State: closed - Opened by another-rex over 1 year ago
- 4 comments
#332 - Distinguish between normal and dev dependencies.
Issue -
State: closed - Opened by michaelkedar over 1 year ago
- 4 comments
Labels: enhancement, good first issue
#331 - Call analysis note fixed.
Pull Request -
State: closed - Opened by hayleycd over 1 year ago
#330 - Duplicate results
Issue -
State: closed - Opened by Feelemoon over 1 year ago
- 2 comments
Labels: bug, backlog
#329 - Add configs to ignore test vulnerabilities
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#328 - chore(deps): update dependency jekyll-feed to v0.17.0
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#327 - fix(deps): update osv-scanner minor
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#326 - chore(deps): update alpine:3.17 docker digest to 124c7d2
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#325 - Support PNPM v6+ Lockfile
Pull Request -
State: closed - Opened by dbtedman over 1 year ago
- 1 comment
#324 - PNPM lock file v6.0+ broken support
Issue -
State: closed - Opened by dbtedman over 1 year ago
Labels: enhancement
#323 - Provenance is archived with zip in v1.3.1
Issue -
State: closed - Opened by suzuki-shunsuke over 1 year ago
- 2 comments
#322 - chore(deps): update ossf/scorecard-action action to v2.1.3
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#321 - Release 1.3.1 changelog
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#320 - Add nil check to cyclonedx enumeration
Pull Request -
State: closed - Opened by michaelkedar over 1 year ago
- 2 comments
#319 - segmentation fault when scanning a CycloneDX bom.json without dependencies
Issue -
State: closed - Opened by manolo over 1 year ago
- 2 comments
#318 - Merge main into docs for 1.3 release
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 4 comments
#317 - Provenance data should be added to the draft release, not a new release
Issue -
State: closed - Opened by another-rex over 1 year ago
#316 - Update changelog and version for v1.3.0
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#315 - Update workflows to compositing, so that goreleaser workflow can run them.
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#314 - chore(deps): update workflows
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#313 - fix(deps): update osv-scanner minor
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#312 - Fix some issues with the model.
Pull Request -
State: closed - Opened by calebbrown over 1 year ago
#311 - Fix workflow
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#310 - Improve the OSV models to allow for 3rd party use of the library.
Pull Request -
State: closed - Opened by calebbrown over 1 year ago
#309 - feat: verify provenance
Pull Request -
State: closed - Opened by developer-guy over 1 year ago
- 3 comments
Labels: stale, autoclosed
#308 - chore(deps): update actions/setup-go action to v4
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#307 - chore(deps): update workflows
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#306 - fix(deps): update osv-scanner minor
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#305 - chore(deps): update golang:alpine docker digest to 913de96
Pull Request -
State: closed - Opened by renovate-bot over 1 year ago
Labels: dependencies
#304 - Adds concurrency to hydration requests
Pull Request -
State: closed - Opened by another-rex over 1 year ago
- 2 comments
#303 - Add a "verbose dry-run" mode to display what data is exchanged with OSV.dev
Issue -
State: open - Opened by andrewpollock over 1 year ago
Labels: enhancement, good first issue
#302 - chore(deps): bump activesupport from 7.0.4.2 to 7.0.4.3 in /docs
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, ruby
#301 - Run tests before release
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#300 - Make `IgnoredVulns` also ignore aliases
Pull Request -
State: closed - Opened by michaelkedar over 1 year ago
- 1 comment
#299 - Pin lint action
Pull Request -
State: closed - Opened by another-rex over 1 year ago
#298 - osv-scanner not detecting NuGet vulnerable dependencies in some dependency resolution cases in .NET
Issue -
State: open - Opened by piraces over 1 year ago
- 1 comment
Labels: enhancement, good first issue, backlog
#297 - fix: support Pipenv develop packages without versions.
Pull Request -
State: closed - Opened by spencerschrock over 1 year ago
- 1 comment