Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / hygieia/api-audit issues and pull requests
#205 - Bump spring-core from 5.3.20 to 5.3.27
Pull Request -
State: open - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: 🔍 Ready for Review, dependencies
#204 - CVE-2023-20863 (Medium) detected in spring-expression-5.3.18.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability
#203 - CVE-2023-20861 (Medium) detected in spring-expression-5.3.18.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability
#202 - CVE-2023-20860 (High) detected in spring-webmvc-5.3.18.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability
#201 - Bump spring-core from 5.3.20 to 5.3.26
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 3 comments
Labels: 🔍 Ready for Review, dependencies
#200 - CVE-2022-42252 (High) detected in tomcat-embed-core-9.0.65.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#199 - CVE-2022-1471 (High) detected in snakeyaml-1.32.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#198 - Bump junit from 4.13 to 4.13.1
Pull Request -
State: open - Opened by dependabot[bot] about 2 years ago
- 2 comments
Labels: 🔍 Ready for Review, dependencies
#197 - POM update
Pull Request -
State: closed - Opened by dcanar9 about 2 years ago
- 1 comment
Labels: ✨ Merged
#196 - CVE-2022-42003 (Medium) detected in jackson-databind-2.10.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#195 - CVE-2022-42004 (Medium) detected in jackson-databind-2.10.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#194 - CVE-2022-40152 (High) detected in woodstox-core-6.2.1.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#193 - CVE-2022-40153 (High) detected in woodstox-core-6.2.1.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#192 - CVE-2021-43980 (Medium) detected in tomcat-embed-core-8.5.70.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#191 - CVE-2022-40156 (High) detected in woodstox-core-6.2.1.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#190 - CVE-2022-40154 (High) detected in woodstox-core-6.2.1.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#189 - CVE-2022-40155 (High) detected in woodstox-core-6.2.1.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#188 - Handle NPE in filteredForBap and filteredForASV for infra evaluator
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#187 - Account for {} in auditResponse
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#186 - Add informative statuses instead of empty responses
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#185 - CVE-2022-38749 (Medium) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#184 - CVE-2022-38750 (Medium) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#183 - CVE-2022-38751 (Medium) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#182 - CVE-2022-38752 (Medium) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#181 - adding condition to excessive logging
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
#180 - Changing logging to restart build
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
#179 - CVE-2022-25857 (High) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#178 - Adding logging for Auto Merge and adding X-Forwarded-For header to logging filter
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
#177 - Update pom.xml, display cvss3 results for library_policy audit
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#176 - Account for unknown status test cases in threshold
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#175 - Changing sort on list to correctly get last commit
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
#174 - Fix skipped test logic
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#173 - Fixed bug and Changes to decrease processing time
Pull Request -
State: open - Opened by dcanar9 over 2 years ago
- 2 comments
Labels: wontfix, ✅ Approved
#172 - Added boolean and filtering to help audit time
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
#171 - Don't count skipped tests against threshold
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#170 - increment POM and core version number
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#169 - CVE-2021-22112 (High) detected in spring-security-web-4.2.18.RELEASE.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#168 - CVE-2019-17495 (High) detected in springfox-swagger-ui-2.4.0.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#167 - CVE-2022-22980 (High) detected in spring-data-mongodb-1.10.23.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#166 - CVE-2020-5421 (Medium) detected in spring-web-4.3.25.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#165 - CVE-2021-22096 (Medium) detected in multiple libraries - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#164 - WS-2021-0461 (Medium) detected in springfox-swagger-ui-2.4.0.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#163 - CVE-2022-27772 (High) detected in spring-boot-1.5.22.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#162 - CVE-2020-10693 (Medium) detected in hibernate-validator-5.4.2.Final.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#161 - CVE-2020-13956 (Medium) detected in httpclient-4.5.9.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#160 - CVE-2020-36518 (High) detected in jackson-databind-2.10.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#159 - WS-2020-0293 (Medium) detected in spring-security-web-4.2.18.RELEASE.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#158 - CVE-2022-22950 (Medium) detected in spring-expression-4.3.25.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#157 - CVE-2022-25647 (High) detected in gson-2.8.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#156 - WS-2021-0616 (Medium) detected in jackson-databind-2.10.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#155 - WS-2021-0419 (High) detected in gson-2.8.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#154 - CVE-2021-42550 (Medium) detected in logback-core-1.2.3.jar, logback-classic-1.2.3.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#153 - CVE-2020-25649 (High) detected in jackson-databind-2.10.5.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#152 - CVE-2022-22970 (Medium) detected in spring-core-4.3.25.RELEASE.jar, spring-beans-4.3.25.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#151 - CVE-2018-25031 (Medium) detected in springfox-swagger-ui-2.4.0.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#150 - WS-2016-7107 (Medium) detected in spring-security-web-4.2.18.RELEASE.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#149 - CVE-2022-23181 (High) detected in tomcat-embed-core-8.5.70.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#148 - CVE-2020-8908 (Low) detected in guava-29.0-jre.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#147 - CVE-2016-1000027 (High) detected in spring-web-5.3.18.jar
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
- 2 comments
Labels: Mend: dependency security vulnerability
#146 - CVE-2017-18640 (High) detected in snakeyaml-1.17.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#145 - CVE-2022-22965 (High) detected in spring-beans-4.3.25.RELEASE.jar - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#144 - Create .whitesource
Pull Request -
State: closed - Opened by yamunag19 over 2 years ago
- 1 comment
Labels: ✨ Merged
#143 - Adding code to fix SOD Violation on Automerged PR's
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#142 - Update pom.xml 3.7.19-SNAPSHOT
Pull Request -
State: closed - Opened by nireeshT over 2 years ago
- 1 comment
Labels: ✅ Approved, ✨ Merged
#141 - updated core version to 3.15.35
Pull Request -
State: closed - Opened by nireeshT over 2 years ago
- 1 comment
#140 - added logging to error being thrown in CodeReviewEvaluator
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#139 - increment audit version
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#138 - Core Version Update to test MongoConfig readPreference
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#137 - Add comment
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#136 - Fix audit response sending too many artifact binaries
Pull Request -
State: closed - Opened by dcanar9 over 2 years ago
- 1 comment
Labels: ✨ Merged
#135 - Sort ft collector items before search
Pull Request -
State: closed - Opened by tatlax3636 over 2 years ago
- 1 comment
Labels: ✨ Merged
#134 - Enforce altidentifier
Pull Request -
State: closed - Opened by rvema almost 3 years ago
- 2 comments
Labels: wontfix, ✅ Approved
#133 - Add test cases to mergeCommitAfterReviews
Pull Request -
State: closed - Opened by nireeshT almost 3 years ago
- 1 comment
Labels: ✨ Merged
#132 - Feature test evaluator
Pull Request -
State: closed - Opened by tatlax3636 almost 3 years ago
- 1 comment
#131 - getDashboard - Remove ignorecase check
Pull Request -
State: closed - Opened by nireeshT almost 3 years ago
- 1 comment
Labels: ✨ Merged
#130 - apiaudit 3.7.6 and core doc db dependency
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
Labels: ✨ Merged
#129 - Revert "Audit based on altIdentifier"
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
Labels: ✨ Merged
#128 - Revert "Audit based on altIdentifier - unit tests"
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
Labels: ✨ Merged
#127 - Revert "core update - 3.15.26"
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
#126 - revert version 3.7.7 - strict audit by altIdentifier
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
Labels: ⚠️ Changes requested
#125 - core update - 3.15.26
Pull Request -
State: closed - Opened by nameisaravind almost 3 years ago
- 1 comment
Labels: ✨ Merged
#124 - Audit API Enhancements [WIP]
Pull Request -
State: closed - Opened by rvema about 3 years ago
- 3 comments
Labels: 🔍 Ready for Review
#123 - Audit based on altIdentifier - unit tests
Pull Request -
State: closed - Opened by nireeshT about 3 years ago
- 1 comment
Labels: ✨ Merged
#122 - Audit based on altIdentifier
Pull Request -
State: closed - Opened by nireeshT about 3 years ago
- 1 comment
Labels: ✨ Merged
#121 - hygieia core upgrade - AuditType CONTAINER_SCAN
Pull Request -
State: closed - Opened by nireeshT about 3 years ago
- 1 comment
Labels: ✨ Merged
#120 - core version upgrade
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
#119 - remove case insensitive search
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✨ Merged
#118 - fallback to looking at the scmAuthorLogin field during evaluation
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
#117 - log the ldap requests
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✨ Merged
#116 - optimize ldap calls
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✨ Merged
#115 - Quick fix to make codereview in case of missing ldapdn
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✅ Approved
#114 - Update pom.xml
Pull Request -
State: closed - Opened by tatlax3636 over 3 years ago
- 1 comment
Labels: ✨ Merged
#113 - peer review - auto merge direct commit handling
Pull Request -
State: closed - Opened by nameisaravind over 3 years ago
- 1 comment
Labels: ✨ Merged
#112 - additional check for direct commit
Pull Request -
State: closed - Opened by nameisaravind over 3 years ago
- 1 comment
#111 - additional logging
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✨ Merged
#110 - Toggle the serialization of requests using a property
Pull Request -
State: closed - Opened by rvema over 3 years ago
- 1 comment
Labels: ✨ Merged
#109 - handle all Exceptions instead of only AuditException
Pull Request -
State: closed - Opened by danielyhuang over 3 years ago
- 2 comments
Labels: 🔍 Ready for Review
#108 - LIBRARY_POLICY_OK validations
Pull Request -
State: closed - Opened by nireeshT over 3 years ago
- 1 comment
Labels: ✨ Merged
#107 - artifact lookup filter by identifier name
Pull Request -
State: closed - Opened by nameisaravind over 3 years ago
- 1 comment
Labels: ✨ Merged
#96 - Configure WhiteSource Bolt for GitHub
Pull Request -
State: closed - Opened by mend-bolt-for-github[bot] over 3 years ago
- 3 comments
Labels: wontfix, 🔍 Ready for Review