Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / hygieia/hygieia-codequality-sonar-collector issues and pull requests

#132 - Bump spring-core from 5.3.22 to 5.3.27

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: 🔍 Ready for Review, dependencies

#131 - CVE-2023-20863 (Medium) detected in spring-expression-5.3.18.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] over 1 year ago
Labels: Mend: dependency security vulnerability

#130 - CVE-2023-20861 (Medium) detected in spring-expression-5.3.18.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] over 1 year ago
Labels: Mend: dependency security vulnerability

#129 - CVE-2023-20860 (High) detected in spring-webmvc-5.3.18.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] over 1 year ago
Labels: Mend: dependency security vulnerability

#128 - Bump spring-core from 5.3.22 to 5.3.26

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: 🔍 Ready for Review, dependencies

#127 - CVE-2022-1471 (High) detected in snakeyaml-1.32.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability

#126 - CVE-2022-31692 (High) detected in spring-security-web-5.6.4.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability

#125 - CVE-2022-40152 (High) detected in woodstox-core-6.2.4.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability

#124 - CVE-2022-40153 (High) detected in woodstox-core-6.2.4.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#123 - CVE-2022-41854 (Medium) detected in snakeyaml-1.32.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] almost 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#122 - Bump logback-core from 1.2.8 to 1.2.9

Pull Request - State: open - Opened by dependabot[bot] almost 2 years ago - 2 comments
Labels: 🔍 Ready for Review, dependencies

#121 - src and pom update

Pull Request - State: closed - Opened by dcanar9 almost 2 years ago - 1 comment
Labels: ✨ Merged

#120 - CVE-2022-42003 (High) detected in jackson-databind-2.12.6.1.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability

#119 - CVE-2022-42004 (High) detected in jackson-databind-2.12.6.1.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability

#118 - CVE-2021-43980 (Low) detected in tomcat-embed-core-9.0.60.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability

#117 - CVE-2022-38749 (Medium) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#116 - CVE-2022-38750 (Medium) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#115 - CVE-2022-38751 (Medium) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#114 - CVE-2022-38752 (Medium) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#113 - CVE-2022-25857 (High) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#112 - CVE-2021-22112 (High) detected in spring-security-web-4.2.18.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#111 - CVE-2021-41079 (High) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#110 - CVE-2022-22980 (High) detected in spring-data-mongodb-1.10.23.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#109 - CVE-2020-5421 (Medium) detected in spring-web-4.3.25.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#108 - CVE-2021-22096 (Medium) detected in multiple libraries - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#107 - CVE-2021-25122 (High) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#106 - CVE-2020-10693 (Medium) detected in hibernate-validator-5.4.2.Final.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#105 - CVE-2022-27772 (High) detected in spring-boot-1.5.22.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#104 - CVE-2020-13956 (Medium) detected in httpclient-4.5.9.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#103 - CVE-2020-36518 (High) detected in jackson-databind-2.10.3.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#102 - WS-2020-0293 (Medium) detected in spring-security-web-4.2.18.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#101 - CVE-2022-22950 (Medium) detected in spring-expression-4.3.25.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#100 - CVE-2022-25647 (High) detected in gson-2.8.5.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#99 - WS-2021-0616 (Medium) detected in jackson-databind-2.10.3.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#98 - WS-2021-0419 (High) detected in gson-2.8.5.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#97 - CVE-2021-42550 (Medium) detected in logback-classic-1.2.3.jar, logback-core-1.2.3.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#96 - CVE-2021-24122 (Medium) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#95 - CVE-2020-25649 (High) detected in jackson-databind-2.10.3.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#94 - CVE-2022-22970 (Medium) detected in spring-core-4.3.25.RELEASE.jar, spring-beans-4.3.25.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#93 - WS-2016-7107 (Medium) detected in spring-security-web-4.2.18.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#92 - CVE-2022-23181 (High) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#91 - CVE-2021-33037 (Medium) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#90 - CVE-2020-8908 (Low) detected in guava-29.0-jre.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#89 - CVE-2020-13943 (Medium) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#88 - CVE-2016-1000027 (High) detected in spring-web-5.3.18.jar

Issue - State: open - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: Mend: dependency security vulnerability

#87 - CVE-2017-18640 (High) detected in snakeyaml-1.17.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#86 - CVE-2021-25329 (High) detected in tomcat-embed-core-8.5.57.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 2 comments
Labels: wontfix, Mend: dependency security vulnerability

#85 - CVE-2022-22965 (High) detected in spring-beans-4.3.25.RELEASE.jar - autoclosed

Issue - State: closed - Opened by mend-bolt-for-github[bot] about 2 years ago - 1 comment
Labels: Mend: dependency security vulnerability

#84 - Create .whitesource

Pull Request - State: closed - Opened by yamunag19 about 2 years ago - 1 comment
Labels: ✨ Merged

#83 - Update README.md

Pull Request - State: closed - Opened by OSPO-CapitalOne about 2 years ago - 2 comments
Labels: 🔍 Ready for Review

#82 - core update - 3.15.26

Pull Request - State: closed - Opened by nameisaravind over 2 years ago - 1 comment
Labels: ✨ Merged

#81 - Making Documentation Link work

Pull Request - State: closed - Opened by kensipe almost 3 years ago - 3 comments
Labels: wontfix, 🔍 Ready for Review

#80 - Create .coveralls.yml

Pull Request - State: closed - Opened by tpwange1977 about 3 years ago - 2 comments
Labels: 🔍 Ready for Review

#79 - Configure WhiteSource Bolt for GitHub

Pull Request - State: closed - Opened by mend-bolt-for-github[bot] over 3 years ago - 3 comments
Labels: wontfix, 🔍 Ready for Review

#78 - Updated REadMe for testing GitActions

Pull Request - State: closed - Opened by ShachiRai1 over 3 years ago - 2 comments

#77 - Core version update and log enhancement

Pull Request - State: closed - Opened by chzhanpeng over 3 years ago - 1 comment

#76 - Update core version for log enhancement

Pull Request - State: closed - Opened by chzhanpeng over 3 years ago - 1 comment

#75 - Is https://sonarcloud.io/ supported by hygieia-codequality-sonar-collector?

Issue - State: closed - Opened by Pachantoms over 3 years ago - 1 comment
Labels: wontfix

#74 - sonar collector version update

Pull Request - State: closed - Opened by nameisaravind over 3 years ago - 1 comment

#73 - Fix Sonar collector refresh logic

Pull Request - State: closed - Opened by benj58xu over 3 years ago - 1 comment

#72 - Doesn't it work?Static Analysis is the only static analysis. Security is not the only static analysis. Why isn't anyone talking about it?

Issue - State: closed - Opened by wanggerui almost 4 years ago - 2 comments
Labels: wontfix

#71 - Sonar collector authentication

Issue - State: closed - Opened by ghost over 6 years ago - 12 comments

#70 - sonar refresh data by individual project

Pull Request - State: closed - Opened by nameisaravind almost 4 years ago - 15 comments
Labels: ✨ Merged

#69 - Sonar Collector - Unable to get data if using sonar API token for authentication

Issue - State: closed - Opened by sgantasa about 4 years ago - 4 comments
Labels: wontfix

#68 - Sonar projectId null check

Pull Request - State: closed - Opened by nireeshT about 4 years ago - 1 comment
Labels: ✨ Merged

#67 - README update Sonar

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#66 - Fix maven deploy

Pull Request - State: closed - Opened by rvema about 4 years ago - 1 comment
Labels: ✨ Merged

#65 - allow blank passwords

Pull Request - State: closed - Opened by aochsner about 4 years ago - 2 comments
Labels: ✨ Merged

#64 - Update pom.xml to 3.1.9 without snapshot.

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ⚠️ Changes requested

#63 - Update dependencies

Pull Request - State: closed - Opened by aochsner about 4 years ago - 1 comment
Labels: ✨ Merged

#62 - Update pom snapshot for sonar changes

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#61 - Create test.txt

Pull Request - State: closed - Opened by syedsfayaz about 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#60 - removal of clean for sonar exceptions

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#59 - Upgrade core to 3.8.0 and adapt RestClient change

Pull Request - State: closed - Opened by benj58xu about 4 years ago - 1 comment

#58 - Log changes for updated or new projects and checking errors

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#57 - Security Vulnerabilities Fix

Pull Request - State: closed - Opened by rvema about 4 years ago - 1 comment
Labels: ✨ Merged

#56 - Updated version of snapshot for log checks.

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment

#55 - update mongodb 3.6.x to support AWS DocumentDB

Pull Request - State: closed - Opened by aochsner about 4 years ago - 1 comment
Labels: ✨ Merged

#54 - Add log lines

Pull Request - State: closed - Opened by benj58xu about 4 years ago - 1 comment
Labels: ✨ Merged

#53 - Added sonar project error check for 404 possibility

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#52 - Docker image config error at launch

Issue - State: closed - Opened by yannschepens about 4 years ago - 1 comment
Labels: wontfix

#51 - Question : use application properties or UI conf for sonar server configuration ? (still on Docker image)

Issue - State: closed - Opened by yannschepens about 4 years ago - 1 comment

#50 - Docker image do not start

Issue - State: open - Opened by yannschepens about 4 years ago - 5 comments
Labels: bug

#49 - Fix excessive number of Sonar exceptions from 404

Pull Request - State: closed - Opened by Courtneyp123 about 4 years ago - 1 comment
Labels: ✨ Merged

#48 - [Snyk] Upgrade org.apache.commons:commons-lang3 from 3.8.1 to 3.10

Pull Request - State: closed - Opened by snyk-bot about 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#47 - [Snyk] Upgrade com.capitalone.dashboard:core from 3.7.8 to 3.7.11

Pull Request - State: closed - Opened by snyk-bot about 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#46 - [Snyk] Upgrade commons-codec:commons-codec from 1.9 to 1.14

Pull Request - State: closed - Opened by snyk-bot about 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#45 - [Snyk] Upgrade org.tmatesoft.svnkit:svnkit from 1.8.7 to 1.10.1

Pull Request - State: closed - Opened by snyk-bot about 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#44 - Increment Version to 3.1.8-SNAPSHOT

Pull Request - State: closed - Opened by rvema about 4 years ago - 1 comment
Labels: ✨ Merged

#43 - Sonar 8.3 measures changes

Pull Request - State: closed - Opened by aochsner over 4 years ago - 3 comments
Labels: ✨ Merged

#42 - adding maven wrapper and docker build file

Pull Request - State: closed - Opened by paruff over 4 years ago - 1 comment
Labels: ✨ Merged

#41 - Ping Sonar collector

Pull Request - State: closed - Opened by nireeshT over 4 years ago - 1 comment
Labels: ✨ Merged

#40 - Increment Version 3.1.6-SNAPSHOT

Pull Request - State: closed - Opened by rvema over 4 years ago - 2 comments
Labels: 🔍 Ready for Review

#39 - Support for Sonar 8.x

Pull Request - State: closed - Opened by aochsner over 4 years ago - 4 comments
Labels: ✨ Merged

#38 - updated version to 3.1.5-SNAPSHOT

Pull Request - State: closed - Opened by nireeshT over 4 years ago
Labels: ✨ Merged

#37 - updated version to 3.1.4-SNAPSHOT

Pull Request - State: closed - Opened by nireeshT over 4 years ago - 1 comment
Labels: ✨ Merged

#36 - removed deleteUnwantedJobs()

Pull Request - State: closed - Opened by nireeshT over 4 years ago - 1 comment
Labels: ✨ Merged

#33 - Application start up failed when deploy executable file for hygieia-codequality-sonar-collector

Issue - State: closed - Opened by emily-solo over 4 years ago - 7 comments
Labels: wontfix

#27 - ERROR o.s.s.s.TaskUtils$LoggingErrorHandler - Unexpected error occurred in scheduled task

Issue - State: closed - Opened by learningmate123 almost 5 years ago - 1 comment

#16 - Sonar collector can't fetch private projects

Issue - State: closed - Opened by yanranzhao over 5 years ago - 8 comments
Labels: wontfix