Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / interlynk-io/sbomqs issues and pull requests

#155 - Provide ability to run the tool in air-gap environment

Issue - State: open - Opened by pushkargr over 1 year ago - 2 comments

#154 - Bump sigs.k8s.io/release-utils from 0.7.3 to 0.7.4

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#153 - Update README.md

Pull Request - State: closed - Opened by surendrapathak over 1 year ago

#152 - Bump github.com/cloudflare/circl from 1.1.0 to 1.3.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#151 - Update README.md

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago

#150 - Add dtrack information

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago

#149 - Fix rels for spdx

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago

#148 - Add new version check

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago

#147 - For SPDX supplier name and originator name both should be checked

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago

#146 - Align Supplier Check with SPDX specification

Issue - State: closed - Opened by pushkargr over 1 year ago - 3 comments

#145 - Add DT scoring support

Pull Request - State: closed - Opened by riteshnoronha over 1 year ago - 1 comment

#144 - Integrate with DT

Issue - State: closed - Opened by riteshnoronha over 1 year ago - 1 comment

#143 - refactor scores

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#142 - Refactor Score

Issue - State: closed - Opened by riteshnoronha almost 2 years ago

#141 - Fix edge case

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#140 - fix config file features

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#139 - configpath and feature flags do not filter

Issue - State: closed - Opened by mattymo30 almost 2 years ago - 6 comments

#137 - Bump github.com/spf13/cobra from 1.6.1 to 1.7.0

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies

#135 - Update README.md

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#134 - Add support to walk component hierarchy for cdx

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#133 - Tool does not report correct number of components for nested CycloneDX SBOMs

Issue - State: closed - Opened by schlenk almost 2 years ago - 3 comments

#132 - Update Features.md

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#131 - rename features to checks

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#130 - WIP

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#129 - update deps and fix specs

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#128 - Update Features.md

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#127 - Check if version has a digit

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#126 - Stray debug stmt.

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#125 - Bump github.com/samber/lo from 1.38.0 to 1.38.1

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies

#124 - JSON format is printing debug statement

Issue - State: closed - Opened by surendrapathak almost 2 years ago

#123 - Update CODEOWNERS

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#122 - fix for broken reportFormat

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#121 - working refactor

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#120 - Add goreleaser supply chain template

Issue - State: open - Opened by riteshnoronha almost 2 years ago

#119 - syft installation for GH

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#118 - update syft installation

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#117 - add sboms #88

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#116 - Update README.md

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#115 - change codeowners

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#114 - Change to preferred url

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#113 - Bump github.com/samber/lo from 1.37.0 to 1.38.0

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies

#112 - Fix ShareLink to point to sbombenchmark.dev

Issue - State: closed - Opened by surendrapathak almost 2 years ago
Labels: Next Release

#111 - added gorelease to generate sbom (spdx,cycloneDX) file

Pull Request - State: closed - Opened by kchetans almost 2 years ago

#110 - Multi Vuln lookup rule re-evaluate

Issue - State: open - Opened by riteshnoronha almost 2 years ago

#109 - Added basic usage, contact and checked spellings

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#108 - On readme - Goals - 1, Assess is misspelled

Issue - State: closed - Opened by david-thrower almost 2 years ago - 1 comment

#107 - On readme.md #Goals: 1: Assess is misspelled

Issue - State: closed - Opened by david-thrower almost 2 years ago - 1 comment

#106 - Report format should not include full-path

Issue - State: closed - Opened by surendrapathak almost 2 years ago - 1 comment
Labels: Next Release

#105 - Update Features.md

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#104 - Need to change case for relation type matching

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#103 - fix help

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#102 - Add macos arm support

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#101 - 67 automate homebrew publishing via goreleaser

Pull Request - State: closed - Opened by kchetans almost 2 years ago

#100 - Quality Score Sharing

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#99 - Share your score with others.

Issue - State: closed - Opened by riteshnoronha almost 2 years ago - 2 comments

#98 - Add support to ignore scores when not applicable

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#97 - 77 add consistent creationinformation as a SBOM quality check

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#96 - SBOM samples section added

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#94 - [Scoring] Quality - Describes a main document

Issue - State: closed - Opened by riteshnoronha almost 2 years ago

#93 - [SCVS] Implement tests from SCVS Bom Maturity Model V2 Control Family

Issue - State: open - Opened by surendrapathak almost 2 years ago
Labels: P2

#92 - Always check if creation info object is present

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#91 - fix result ordering, now use category and feature

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#90 - Result ordering is not fixed across SBOM types

Issue - State: closed - Opened by surendrapathak almost 2 years ago

#89 - Empty component list should not be treated as low quality

Issue - State: closed - Opened by surendrapathak almost 2 years ago - 2 comments
Labels: P3, Next Release

#88 - Add sbomqs sbom to our release output

Issue - State: closed - Opened by riteshnoronha almost 2 years ago - 1 comment
Labels: P3, Next Release

#87 - update depedencies

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#86 - [Scoring] Add depth of sbom components to metadata

Issue - State: open - Opened by riteshnoronha almost 2 years ago

#85 - Add feature selection details

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#84 - Add component count to json

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#83 - Add component count to json output

Issue - State: closed - Opened by riteshnoronha almost 2 years ago

#82 - CDX check for bomformat only for json

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#81 - Add the new scores

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#80 - CycloneDX XML SBOM incorrectly checks for bomFormat

Issue - State: closed - Opened by surendrapathak almost 2 years ago

#79 - Update README with details per specification

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#78 - added md file for feature and category, also enable 2 new criterion s…

Pull Request - State: closed - Opened by kchetans almost 2 years ago

#77 - Add consistent creationInformation as a SBOM Quality Check

Issue - State: closed - Opened by surendrapathak almost 2 years ago
Labels: P3, Next Release

#76 - Improvements in reportFormat JSON for errors during processing

Issue - State: open - Opened by surendrapathak almost 2 years ago
Labels: P3

#75 - 19 configurable scoring criteria

Pull Request - State: closed - Opened by kchetans almost 2 years ago

#74 - Add go report card reported fixes

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#73 - Adding creationInfo details for each sbom being processed

Issue - State: closed - Opened by surendrapathak almost 2 years ago - 1 comment
Labels: P3

#72 - Improve error reporting from processing of the file

Issue - State: open - Opened by surendrapathak almost 2 years ago
Labels: enhancement, good first issue, P3

#71 - 49 new rule for checking of vulnerability lookup identifier present

Pull Request - State: closed - Opened by riteshnoronha almost 2 years ago

#70 - Test signing

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#69 - Testing signed commit

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#68 - Updated unique component identifier to match NTIA

Pull Request - State: closed - Opened by surendrapathak almost 2 years ago

#67 - Automate homebrew publishing via goreleaser

Issue - State: open - Opened by riteshnoronha almost 2 years ago

#57 - [Scoring] Copyright

Issue - State: open - Opened by riteshnoronha almost 2 years ago
Labels: P2

#56 - [Scoring] Files Analyzed

Issue - State: open - Opened by riteshnoronha almost 2 years ago
Labels: P2

#42 - Add user_guide

Issue - State: closed - Opened by riteshnoronha almost 2 years ago - 1 comment
Labels: Next Release

#38 - [Feature Request] Output JSON

Issue - State: closed - Opened by jspeed-meyers almost 2 years ago - 9 comments

#31 - Create signed releases

Issue - State: closed - Opened by surendrapathak almost 2 years ago - 3 comments

#24 - Improve help message by listing supported category and reportFormat values

Issue - State: closed - Opened by surendrapathak almost 2 years ago
Labels: enhancement, good first issue

#20 - Align rules with OWASP SCVS initiative

Issue - State: open - Opened by surendrapathak almost 2 years ago - 1 comment
Labels: enhancement

#19 - configurable scoring criteria

Issue - State: closed - Opened by surendrapathak almost 2 years ago
Labels: enhancement

#12 - Make file names as default for scoring

Issue - State: closed - Opened by surendrapathak almost 2 years ago - 1 comment
Labels: enhancement, good first issue, Next Release