Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / nexB/vulnerablecode issues and pull requests

#1419 - Add URL to the vulnerability details view in the API serializers

Issue - State: closed - Opened by tdruez 12 months ago - 3 comments
Labels: enhancement, Priority: high

#1418 - index Linux kernel vulnerabilities

Issue - State: open - Opened by armijnhemel 12 months ago - 3 comments

#1417 - Ingest pub data through Github api

Pull Request - State: open - Opened by shravankshenoy 12 months ago - 5 comments

#1416 - Store latest non vulnerable version and next vulnerable version for a package in DB

Issue - State: open - Opened by TG1999 12 months ago
Labels: Priority: high, API, Core models, improver

#1415 - Filtering on an exact purl in API take over 1min

Issue - State: open - Opened by tdruez 12 months ago - 1 comment
Labels: bug, Priority: high

#1414 - [For Review Purpose Only-Do not Merge] First Draft for Glibc Importer

Pull Request - State: closed - Opened by harsh098 about 1 year ago - 2 comments

#1413 - Bump cryptography from 41.0.6 to 42.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1412 - Import data from OpenSSF Malicious Packages

Pull Request - State: closed - Opened by shravankshenoy about 1 year ago - 3 comments

#1411 - `SocketTimeoutException` with public instance

Issue - State: closed - Opened by sschuberth about 1 year ago - 5 comments

#1410 - Add Liferay advisories

Issue - State: open - Opened by pombredanne about 1 year ago - 4 comments
Labels: Data collection, good first issue, difficulty:easy

#1409 - Add malware from https://github.com/ossf/malicious-packages

Issue - State: open - Opened by pombredanne about 1 year ago - 3 comments
Labels: Data collection

#1408 - Add Pypi malware from https://github.com/lxyeternal/pypi_malregistry

Issue - State: open - Opened by pombredanne about 1 year ago - 2 comments
Labels: Data collection

#1407 - Add GH malware advisories

Issue - State: open - Opened by pombredanne about 1 year ago
Labels: Data collection

#1405 - Feat: Add CVE support to Snyk datasource

Pull Request - State: closed - Opened by shravankshenoy about 1 year ago - 5 comments
Labels: VulnTotal

#1402 - add-curl-advisories-importer

Pull Request - State: closed - Opened by ambuj-1211 about 1 year ago - 8 comments

#1395 - RFC: Design new Improver

Issue - State: open - Opened by pombredanne about 1 year ago - 3 comments
Labels: Priority: high, improver, core, next

#1393 - RFC: Design new Advisory -> Package -> Vulnerability models relationhips

Issue - State: open - Opened by pombredanne about 1 year ago - 3 comments
Labels: Priority: high, Core models, next

#1391 - Bump gitpython from 3.1.37 to 3.1.41

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1386 - Fix issue 1385

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1385 - Next/latest non-vulnerable version entries are missing from the public Package details page

Issue - State: closed - Opened by johnmhoran about 1 year ago - 3 comments
Labels: bug, ui, data-quality

#1384 - Fix package details view template

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1383 - Review and add CVE fixes dataset

Issue - State: open - Opened by pombredanne about 1 year ago - 1 comment

#1382 - Add robots.txt

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1381 - fix typos

Pull Request - State: open - Opened by jxdv about 1 year ago

#1380 - ci: Update gh actions

Pull Request - State: open - Opened by jxdv about 1 year ago

#1379 - Added license_url

Pull Request - State: open - Opened by sdivyanshu90 about 1 year ago - 5 comments

#1378 - feature: ui: added progress bar for `vulnerabilities.importers`

Pull Request - State: closed - Opened by harsh098 about 1 year ago - 10 comments

#1375 - index Canadian Centre of Cyber Security advisories

Issue - State: open - Opened by armijnhemel about 1 year ago

#1374 - Prepare for release v33.6.5

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1373 - Update docker-compose.yml

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1372 - Prepare for release v33.6.4

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1371 - Update docker-compose.yml

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1370 - Add date of publishing on vulnerability

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1369 - Bump paramiko from 2.10.3 to 3.4.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1368 - Package purl model updates

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1366 - Fix swagger API docs generation

Pull Request - State: closed - Opened by keshav-space about 1 year ago
Labels: bug, API, documentation

#1365 - `test_OpensslImporter` uses network calls while testing

Issue - State: open - Opened by TG1999 about 1 year ago

#1364 - Deprecate `bulk_search` in favour of `bulk_lookup`

Issue - State: open - Opened by TG1999 about 1 year ago

#1363 - add CAPEC

Issue - State: open - Opened by armijnhemel about 1 year ago - 2 comments

#1362 - Add glibc advisories

Issue - State: open - Opened by armijnhemel about 1 year ago - 40 comments

#1361 - Fix debian OVAL importer

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1360 - Fix import runner process inferences

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1359 - Add endpoint for purl lookup

Pull Request - State: closed - Opened by TG1999 about 1 year ago - 8 comments

#1358 - Fix table borders in Vulnerability details UI #1356

Pull Request - State: closed - Opened by johnmhoran about 1 year ago - 2 comments

#1357 - Add an endpoint for lookup for exact match in VCIO

Issue - State: closed - Opened by TG1999 about 1 year ago

#1356 - Bug in vulnerability details view

Issue - State: closed - Opened by TG1999 about 1 year ago - 19 comments

#1355 - Add date of publishing in vulnerability detail view

Issue - State: open - Opened by TG1999 about 1 year ago - 3 comments

#1354 - Drop package_managers in favour of fetchcode.package_versions

Pull Request - State: closed - Opened by keshav-space about 1 year ago

#1353 - Add missing ABOUT file for Base32 snippet

Issue - State: open - Opened by pombredanne about 1 year ago

#1352 - Update docs WRT relaxed API token requirements

Issue - State: open - Opened by sschuberth about 1 year ago - 3 comments

#1351 - Bump cryptography from 41.0.4 to 41.0.6

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1350 - Add graph model diagrams #977

Pull Request - State: closed - Opened by johnmhoran about 1 year ago - 1 comment
Labels: documentation

#1348 - Prepare for release v33.6.3

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1347 - Add middleware to ban bytedance user agent

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1346 - Import VEX data

Issue - State: open - Opened by pombredanne about 1 year ago

#1345 - Import OpenVEX data

Issue - State: open - Opened by pombredanne about 1 year ago

#1344 - Import CycloneDX VEX data

Issue - State: open - Opened by pombredanne about 1 year ago

#1343 - Fix search encoding issue

Pull Request - State: closed - Opened by TG1999 about 1 year ago

#1342 - Improvement for Improver: New CVEs first

Issue - State: open - Opened by turambarturin about 1 year ago - 1 comment

#1340 - Vulnerability 'summary' field is neither consistent nor complete

Issue - State: open - Opened by johnmhoran about 1 year ago - 8 comments
Labels: enhancement, Data collection, API, ui, data-quality

#1339 - Widen the RTD page #977

Pull Request - State: closed - Opened by johnmhoran about 1 year ago - 1 comment

#1338 - Collect bitnami advisories

Issue - State: open - Opened by pombredanne about 1 year ago

#1337 - Add RTD build configuration from skeleton

Pull Request - State: closed - Opened by AyanSinhaMahapatra about 1 year ago - 1 comment

#1336 - %40 changes to @ when changing the page in package search view

Issue - State: closed - Opened by TG1999 about 1 year ago

#1335 - Prepare for release v33.6.2

Pull Request - State: closed - Opened by TG1999 over 1 year ago

#1334 - Do not create vulnerabilities for empty aliases

Pull Request - State: closed - Opened by TG1999 over 1 year ago

#1332 - Improve handling of scores

Issue - State: open - Opened by pombredanne over 1 year ago

#1331 - Bump django from 4.1.10 to 4.1.13

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#1330 - Add proper acknowledgements for NGI projects. Fixes #1325

Pull Request - State: closed - Opened by armijnhemel over 1 year ago - 2 comments

#1329 - Handling of locally patched packagaes

Issue - State: open - Opened by keshav-space over 1 year ago - 1 comment

#1328 - Add throttling rate for anon users

Pull Request - State: closed - Opened by TG1999 over 1 year ago - 1 comment

#1327 - Remove redundant package-urls from VCIO

Issue - State: open - Opened by TG1999 over 1 year ago - 2 comments

#1326 - Discuss rate limiting for anonymous API user

Issue - State: open - Opened by TG1999 over 1 year ago - 1 comment

#1325 - Properly acknowledge NGI

Issue - State: closed - Opened by armijnhemel over 1 year ago

#1324 - Wordfence Intelligence feed

Issue - State: open - Opened by armijnhemel over 1 year ago

#1323 - Bump urllib3 from 1.26.17 to 1.26.18

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#1322 - Collect wolfssl vulnerabilities

Issue - State: open - Opened by pombredanne over 1 year ago

#1321 - Bump gitpython from 3.1.35 to 3.1.37

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#1320 - Begin work on combining affected and fixed by packages #1287

Pull Request - State: open - Opened by johnmhoran over 1 year ago - 4 comments

#1319 - Add note about CSRF_TRUSTED_ORIGINS

Pull Request - State: closed - Opened by Hritik14 over 1 year ago - 1 comment

#1318 - CERT-IN reports

Issue - State: open - Opened by armijnhemel over 1 year ago - 2 comments

#1317 - CERT Vulnerability Notes

Issue - State: open - Opened by armijnhemel over 1 year ago

#1316 - VulnTotal like structure

Issue - State: open - Opened by Hritik14 over 1 year ago

#1315 - Add data in CSAF format from https://github.com/cisagov/CSAF

Issue - State: open - Opened by pombredanne over 1 year ago - 7 comments
Labels: Data collection, good first issue

#1314 - Bump urllib3 from 1.26.9 to 1.26.17

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#1313 - RFC: vulnerability reachability

Issue - State: open - Opened by TG1999 over 1 year ago - 11 comments

#1312 - Add support for CVSS vectors display

Pull Request - State: closed - Opened by ziadhany over 1 year ago - 7 comments

#1311 - How should we treat lesser PURL versions that fix a vuln affecting a searched-for version?

Issue - State: closed - Opened by johnmhoran over 1 year ago - 2 comments
Labels: Priority: medium, API, ui, data-quality

#1310 - Add dates and changelog for packages and vulnerabilities

Pull Request - State: closed - Opened by TG1999 over 1 year ago - 1 comment

#1309 - possible data source: VulInfo

Issue - State: open - Opened by armijnhemel over 1 year ago - 3 comments

#1308 - Prepare for release v33.6.1

Pull Request - State: closed - Opened by TG1999 over 1 year ago

#1307 - Add pagination to valid versions improver

Pull Request - State: closed - Opened by TG1999 over 1 year ago - 1 comment

#1306 - Bump cryptography from 41.0.3 to 41.0.4

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies