google/osv.dev issues and pull requests

#2492 - feat(api-perf-test): revert API query to original method on test instance for A/B performance testing

Pull Request - State: closed - Opened by hogo6002 3 months ago

#2491 - `Fix available` tags are not accurate when multiple ecosystems are combined together

Issue - State: open - Opened by hogo6002 3 months ago - 1 comment
Labels: ui, frontend, backlog

#2490 - fix(workflow): Disable grpcio updating until support for new protobuf gets added to google-cloud

Pull Request - State: closed - Opened by another-rex 3 months ago

#2489 - fix: unpin github pages dependency

Pull Request - State: closed - Opened by another-rex 3 months ago

#2488 - fix(build): install Poetry via apk instead of pip

Pull Request - State: closed - Opened by andrewpollock 3 months ago - 5 comments

#2487 - CI/CD: Add GitHub Actions Workflow to validate Swagger documentation

Issue - State: open - Opened by andrewpollock 3 months ago
Labels: documentation, api, backlog

#2486 - fix(api): add CVSS_V4 to API Swagger documentation

Pull Request - State: closed - Opened by andrewpollock 3 months ago - 1 comment

#2485 - Missing CVSS_V4 Severity Type in osvSeverityType Enum in Swagger Definition

Issue - State: closed - Opened by James-o-Howson 3 months ago
Labels: bug, documentation, api

#2484 - fix(build): pin all usage of cloud-sdk image

Pull Request - State: closed - Opened by andrewpollock 3 months ago

#2483 - docs: add Git conventional commit requirement

Pull Request - State: closed - Opened by hogo6002 3 months ago

#2482 - Combine all `not yet assigned` Debian Security Tracker issues into OSV

Issue - State: closed - Opened by hogo6002 3 months ago
Labels: enhancement

#2481 - fix: remove security tracker URL validation to reduce job runtime

Pull Request - State: closed - Opened by hogo6002 3 months ago - 1 comment

#2480 - fix(combine-to-osv): attempt to work around execution latency problems

Pull Request - State: closed - Opened by andrewpollock 3 months ago - 3 comments

#2479 - fix: missing Packages for some malicious packages

Pull Request - State: closed - Opened by ZhangChen199102 3 months ago - 2 comments

#2478 - Query API for Ubuntu `linux` packages

Issue - State: open - Opened by dodys 3 months ago - 7 comments

#2475 - chore(deps): lock file maintenance api

Pull Request - State: closed - Opened by renovate-bot 3 months ago
Labels: dependencies

#2474 - chore(deps): lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 3 months ago
Labels: dependencies

#2473 - chore(deps): lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 3 months ago
Labels: dependencies

#2472 - chore(deps): lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 3 months ago
Labels: dependencies

#2471 - DSA-5649-1 missing in OSV.dev

Issue - State: closed - Opened by RamvigneshPasupathy 3 months ago - 6 comments

#2468 - Affected methods by a vulnerability

Issue - State: closed - Opened by NordCoderd 3 months ago - 3 comments
Labels: enhancement, stale, autoclosed

#2465 - Improve CVE entry management in OSV

Issue - State: open - Opened by hogo6002 3 months ago - 28 comments
Labels: enhancement

#2454 - feat: use GCS object update time instead of creation time

Pull Request - State: closed - Opened by andrewpollock 3 months ago - 4 comments

#2447 - Add SBOMResearcher to third-party.md

Pull Request - State: closed - Opened by bigdawgsfootball 4 months ago - 6 comments

#2443 - Automate submodule updates

Issue - State: open - Opened by andrewpollock 4 months ago - 3 comments
Labels: techdebt

#2436 - The importer does not honour ignore_patterns for REST sources

Issue - State: open - Opened by andrewpollock 4 months ago - 1 comment
Labels: bug, backlog

#2424 - Invalidate `last_update_date` when source changes

Issue - State: open - Opened by oliverchang 4 months ago - 1 comment
Labels: enhancement, infra, backlog, techdebt

#2422 - Missing `Packages` for some malicious packages

Issue - State: closed - Opened by hogo6002 4 months ago - 1 comment
Labels: bug, frontend, stale

#2415 - Solution hashes for a vulnerability lies in an external fork

Issue - State: open - Opened by yashrsharma44 4 months ago - 4 comments
Labels: data quality, backlog

#2414 - Style/custom dark theme

Pull Request - State: closed - Opened by stvmachine 4 months ago - 9 comments

#2410 - style: adjusting styles of titles

Pull Request - State: closed - Opened by stvmachine 4 months ago

#2407 - Crucial bug: osv-scanner does not detect known malicious package in lockfiles

Issue - State: open - Opened by maaaaz 4 months ago - 11 comments
Labels: bug

#2404 - Git analysis: relax branch computation

Issue - State: open - Opened by oliverchang 4 months ago - 1 comment
Labels: enhancement, backlog

#2402 - Missing PURL converters

Issue - State: open - Opened by michaelkedar 4 months ago - 4 comments
Labels: good first issue, data quality, stale

#2401 - Support API queries for non-enumerated ecosystems

Issue - State: closed - Opened by hogo6002 4 months ago - 1 comment
Labels: enhancement, api

#2387 - Failed to enumerate versions for some Debian packages

Issue - State: closed - Opened by hogo6002 4 months ago - 3 comments
Labels: bug, stale, autoclosed

#2374 - Always return the upstream aliases when no alias groups are generated

Issue - State: open - Opened by Moullisha 4 months ago - 13 comments
Labels: bug, data quality, backlog

#2361 - Adding dependi to third party list

Pull Request - State: closed - Opened by kadirkaang 5 months ago - 5 comments
Labels: stale, autoclosed

#2351 - Issue 2254/add link to cvss calculator

Pull Request - State: closed - Opened by zahraaalizadeh 5 months ago

#2350 - Remove relative-time lib to improve CLS

Pull Request - State: closed - Opened by zahraaalizadeh 5 months ago

#2349 - Fix layout shift in list page

Pull Request - State: closed - Opened by zahraaalizadeh 5 months ago

#2341 - Display the correct introduced event tooltip

Pull Request - State: closed - Opened by zahraaalizadeh 5 months ago - 2 comments

#2337 - OSV API Response is Inconsistent with Schema

Issue - State: open - Opened by abhisek 5 months ago - 1 comment

#2336 - Incorrect tooltip text on osv.dev when starting affected version is 0

Issue - State: open - Opened by another-rex 5 months ago
Labels: bug, frontend

#2335 - Failed to hydrate an OSV response due to an unexpected severity type format

Issue - State: open - Opened by LeSuisse 5 months ago - 1 comment
Labels: bug

#2334 - Grouping multiple unrelated Git repos into a single "affected" entry is confusing

Issue - State: open - Opened by Bo98 5 months ago

#2333 - Data quality issue with 2016/2017 Ruby CVEs

Issue - State: open - Opened by Bo98 5 months ago - 1 comment
Labels: data quality

#2332 - GHSA-c5pj-mqfh-rvc3 Still in osv

Issue - State: open - Opened by zhangzhenyu2 5 months ago

#2331 - Data Quality issue with GHSA-w9jx-4g6g-rp7x

Issue - State: open - Opened by clemens 5 months ago

#2330 - Data quality issue with CVE-2024-37890

Issue - State: open - Opened by zurada 5 months ago - 2 comments
Labels: data quality

#2329 - Document the treatment of the GIT ecosystem

Issue - State: open - Opened by yashrsharma44 5 months ago - 5 comments
Labels: documentation

#2328 - Chainguard feed announcement blog post

Pull Request - State: open - Opened by andrewpollock 5 months ago

#2327 - Disable test case failing due to Internet dependency outage

Pull Request - State: closed - Opened by andrewpollock 5 months ago

#2326 - Lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 5 months ago
Labels: dependencies

#2325 - Lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 5 months ago
Labels: dependencies

#2324 - Lock file maintenance

Pull Request - State: closed - Opened by renovate-bot 5 months ago
Labels: dependencies

#2323 - Update golang:1.22.4-alpine Docker digest to 6522f0c

Pull Request - State: closed - Opened by renovate-bot 5 months ago
Labels: dependencies

#2322 - Make last modified date export with the UTC offset

Pull Request - State: closed - Opened by another-rex 5 months ago

#2321 - Revert "Lock file maintenance appengine-backend"

Pull Request - State: closed - Opened by michaelkedar 5 months ago

#2320 - Fix Debian blog post format

Pull Request - State: closed - Opened by hogo6002 5 months ago

#2319 - chore(deps-dev): Bump ws from 7.5.9 to 7.5.10 in /gcp/appengine/frontend3 in the npm_and_yarn group across 1 directory

Pull Request - State: open - Opened by dependabot[bot] 5 months ago - 3 comments
Labels: dependencies, javascript

#2318 - Maven transitive support blog post

Pull Request - State: closed - Opened by cuixq 5 months ago - 2 comments

#2317 - Adding introduction of x-cmd/osv module

Pull Request - State: closed - Opened by edwinjhlee 5 months ago - 2 comments

#2316 - Update README.md

Pull Request - State: closed - Opened by edwinjhlee 5 months ago - 1 comment

#2315 - Support postgresql repo

Pull Request - State: closed - Opened by andrewpollock 5 months ago

#2314 - Update the project to use the new Material components

Pull Request - State: closed - Opened by zahraaalizadeh 5 months ago

#2313 - Add a blog post to announce Debian Security Tracker integration

Pull Request - State: closed - Opened by hogo6002 5 months ago

#2312 - Add CVSS_V4 to OSV proto.

Pull Request - State: closed - Opened by oliverchang 5 months ago

#2311 - Sort zip in exporter

Pull Request - State: closed - Opened by another-rex 5 months ago - 1 comment

#2310 - Fix sitemap generate and upload script

Pull Request - State: closed - Opened by another-rex 5 months ago

#2309 - Actually upload the generated sitemaps (and perform logging)

Pull Request - State: closed - Opened by another-rex 5 months ago

#2308 - GitHub Actions version matching

Issue - State: open - Opened by thepwagner 5 months ago - 7 comments
Labels: enhancement, datasource, backlog

#2307 - Fix more instances of pygit2 incompatibility

Pull Request - State: closed - Opened by andrewpollock 5 months ago

#2306 - Prepare for pygit2 1.15.0

Pull Request - State: closed - Opened by andrewpollock 5 months ago

#2305 - chore(deps-dev): Bump braces from 3.0.2 to 3.0.3 in /gcp/appengine/frontend3 in the npm_and_yarn group across 1 directory

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

GitHub / google/osv.dev issues and pull requests