Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / nexB/vulnerablecode issues and pull requests

#1192 - Collect apache ant

Issue - State: open - Opened by Hritik14 over 1 year ago

#1191 - Bump django from 4.1.7 to 4.1.9

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#1190 - Clean imported data after import process

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1189 - Add support for CVSS v4 (when ready?)

Issue - State: open - Opened by pombredanne almost 2 years ago

#1188 - Clean imported data after import process

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1187 - Remove CVSSv2 scores from vulnerablecode

Issue - State: open - Opened by TG1999 almost 2 years ago - 4 comments
Labels: next

#1186 - Wrong CVSS3 V3.1 QR "MODERATE"

Issue - State: open - Opened by mnonnenmacher almost 2 years ago - 1 comment

#1185 - Bump sqlparse from 0.4.2 to 0.4.4

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 3 comments
Labels: dependencies

#1184 - Prepare for release v32.0.0

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1183 - Update deps according to dependabot PRs

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1182 - Provide link to GMS Aliases in UI (and API)

Issue - State: open - Opened by pombredanne almost 2 years ago

#1179 - Add support for severity range

Pull Request - State: closed - Opened by ziadhany almost 2 years ago - 3 comments

#1178 - Add dark mode toggle in documentation.

Pull Request - State: closed - Opened by swastkk almost 2 years ago - 3 comments

#1177 - Dark mode toggle added for documentation.

Pull Request - State: closed - Opened by swastkk almost 2 years ago - 5 comments

#1176 - Fix Apache kafka and Apache httpd importer

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1175 - Failed to run Apache HTTPD importer

Issue - State: closed - Opened by TG1999 almost 2 years ago - 3 comments

#1174 - Failed to run Apache Kafka importer

Issue - State: closed - Opened by TG1999 almost 2 years ago

#1173 - URL in vulnerability reference contains illegal character

Issue - State: open - Opened by oheger-bosch almost 2 years ago - 6 comments

#1172 - Add CVE reference key/maps

Issue - State: open - Opened by armijnhemel almost 2 years ago - 2 comments

#1171 - Add Huawei security advisories

Issue - State: open - Opened by armijnhemel almost 2 years ago

#1170 - Add ISC advisories

Issue - State: open - Opened by pombredanne almost 2 years ago
Labels: Data collection

#1169 - Add documentation for v32.0.0

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1168 - add Full Disclosure mailinglist

Issue - State: open - Opened by armijnhemel almost 2 years ago

#1167 - Add AusCERT data source

Issue - State: open - Opened by armijnhemel almost 2 years ago - 1 comment

#1166 - Add CURL advisories data source

Issue - State: open - Opened by pombredanne almost 2 years ago - 2 comments
Labels: Data collection, good first issue, difficulty:easy

#1165 - Check for cryptogragphy 39.0.1 in vulnerablecode

Issue - State: open - Opened by TG1999 almost 2 years ago

#1164 - Revisit throttling and rate-limiting

Issue - State: open - Opened by TG1999 almost 2 years ago

#1163 - Add CVE support in SnykDataSource

Issue - State: closed - Opened by keshav-space almost 2 years ago - 5 comments
Labels: good first issue, VulnTotal

#1162 - Remove excessive network calls from redhat importer #1161

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1161 - Remove excessive network calls from the redhat importer

Issue - State: closed - Opened by TG1999 almost 2 years ago - 3 comments

#1160 - Support query using CVE in VulnTotal

Pull Request - State: closed - Opened by keshav-space almost 2 years ago
Labels: VulnTotal

#1159 - Prepare for release of v32.0.0rc4

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1158 - Fix kbmsr2019 importer

Pull Request - State: closed - Opened by TG1999 almost 2 years ago - 1 comment

#1157 - Improved code style and fixed typos

Pull Request - State: open - Opened by michaelehab almost 2 years ago - 2 comments
Labels: VulnTotal

#1156 - Update nix flake

Pull Request - State: closed - Opened by raboof almost 2 years ago - 5 comments

#1155 - Add support for conan advisories

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1154 - Documentation for contributing to documentation is unclear

Issue - State: open - Opened by vic-ma almost 2 years ago

#1153 - Use `affected` instead of `versionUnaffected` for reporting fixed versions from DEPS

Issue - State: open - Opened by keshav-space almost 2 years ago
Labels: enhancement, VulnTotal

#1152 - Automate adding "Token" prefix to API key in VCIO API UI

Issue - State: open - Opened by johnmhoran almost 2 years ago
Labels: API, ui, documentation

#1151 - [WIP] Support Advisory Comparison in VulnTotal

Pull Request - State: open - Opened by keshav-space almost 2 years ago - 6 comments
Labels: VulnTotal

#1150 - Refactor file names to enable git clone on windows

Pull Request - State: closed - Opened by shricodev almost 2 years ago

#1149 - Fix github importer

Pull Request - State: closed - Opened by TG1999 almost 2 years ago - 1 comment

#1148 - Update documentation for v32

Issue - State: closed - Opened by DennisClark almost 2 years ago - 2 comments
Labels: Priority: high, documentation

#1147 - Add golang vulnerability data

Pull Request - State: open - Opened by TG1999 almost 2 years ago - 1 comment

#1146 - Collect go vulnerabilities from pkg.go.dev

Issue - State: open - Opened by TG1999 almost 2 years ago

#1145 - Use PURL in VersionAPIs

Issue - State: open - Opened by keshav-space almost 2 years ago - 2 comments

#1144 - Package managers may not contain/report all versions related to a package

Issue - State: open - Opened by keshav-space almost 2 years ago - 1 comment
Labels: data-quality, next

#1142 - Failed to run GitHubAPIImporter

Issue - State: closed - Opened by ziadhany almost 2 years ago - 2 comments

#1140 - Add env variables for throttling

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1139 - fix ecosystem mappings and filter out fixed and affected package based on purl.type in VCIO

Pull Request - State: closed - Opened by keshav-space almost 2 years ago
Labels: VulnTotal

#1138 - Add valid version improver

Pull Request - State: closed - Opened by TG1999 almost 2 years ago

#1137 - Add CWE support in all importers

Pull Request - State: closed - Opened by ziadhany almost 2 years ago - 1 comment

#1135 - Grammar issues

Pull Request - State: closed - Opened by BhaswatiRoy almost 2 years ago - 1 comment

#1132 - refactor file names to enable git clone on windows

Pull Request - State: closed - Opened by rabajaj0509 almost 2 years ago - 5 comments

#1131 - Bump django from 4.0.7 to 4.1.7

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies

#1128 - Also parse text and HTML OpenSSL feeds

Issue - State: open - Opened by pombredanne almost 2 years ago - 2 comments
Labels: Data collection, importer

#1127 - Run latest release of Black

Pull Request - State: closed - Opened by johnmhoran almost 2 years ago - 5 comments

#1124 - Bump ipython from 8.0.1 to 8.10.0

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies

#1121 - Vulntotal browser extension

Issue - State: open - Opened by AyanSinhaMahapatra almost 2 years ago - 8 comments
Labels: VulnTotal

#1120 - Bump cryptography from 36.0.2 to 39.0.1

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies

#1119 - Add threads to run importers in parallel

Pull Request - State: closed - Opened by TG1999 almost 2 years ago - 2 comments

#1116 - Add CWE support in the API

Pull Request - State: closed - Opened by ziadhany about 2 years ago - 2 comments

#1108 - Consider safetydb for vulntotal

Issue - State: closed - Opened by TG1999 about 2 years ago
Labels: VulnTotal

#1105 - Collect data from https://github.com/google/security-research

Issue - State: open - Opened by pombredanne about 2 years ago
Labels: Data collection

#1095 - Are we identifying all affected Ubuntu packages?

Issue - State: open - Opened by johnmhoran about 2 years ago - 2 comments
Labels: enhancement, Data collection

#1093 - Add CWE support in all importers

Issue - State: open - Opened by pombredanne about 2 years ago - 1 comment
Labels: GSoC 24

#1088 - Delete advisories related to importer before using the importer

Pull Request - State: closed - Opened by TG1999 about 2 years ago

#1085 - Create SUSE OVAL importer

Pull Request - State: closed - Opened by johnmhoran about 2 years ago - 28 comments

#1084 - RHSA is polluting the data quality

Issue - State: open - Opened by keshav-space about 2 years ago
Labels: data-quality, next

#1082 - store packages/vulnerabilities inside db that VCIO doesn't contain

Issue - State: closed - Opened by TG1999 about 2 years ago
Labels: data-quality

#1081 - Add tests for improver

Pull Request - State: closed - Opened by Hritik14 about 2 years ago - 4 comments

#1080 - Add improver to resolve all the version ranges for the ecosystems that we support

Issue - State: open - Opened by TG1999 about 2 years ago
Labels: data-quality

#1079 - Deprecate yaml format for SUSE importer and ingest data in CSAF, OVAL or CVRF format

Issue - State: open - Opened by TG1999 about 2 years ago - 1 comment
Labels: Data collection

#1077 - Add a "Release Notes" or "What's New" panel to the VulnerableCode.io home page

Issue - State: open - Opened by DennisClark about 2 years ago
Labels: enhancement, ui, documentation

#1074 - Revisit why we are skipping some versions in gentoo importer

Issue - State: open - Opened by TG1999 about 2 years ago
Labels: Data collection

#1072 - store publicly available vuldb.com identifiers

Issue - State: open - Opened by armijnhemel about 2 years ago - 2 comments
Labels: Data collection

#1071 - We should store patches from Xen advisories

Issue - State: open - Opened by TG1999 about 2 years ago
Labels: Data collection

#1069 - Report new/changed vulnerabilities for a package

Issue - State: open - Opened by pombredanne about 2 years ago - 1 comment
Labels: feature, design-needed

#1068 - Re-design Package to Vulnerability model relationships

Issue - State: open - Opened by pombredanne about 2 years ago - 2 comments
Labels: Priority: high, Core models

#1067 - Collect Freexian advisories

Issue - State: open - Opened by pombredanne about 2 years ago
Labels: Data collection

#1064 - Interesting / misleading advisories

Issue - State: open - Opened by Hritik14 about 2 years ago - 4 comments

#1063 - Import Erlang advisory in GitHub importer

Issue - State: open - Opened by keshav-space about 2 years ago
Labels: Data collection

#1053 - Migrate suse backport importer #1054

Pull Request - State: closed - Opened by TG1999 about 2 years ago - 2 comments

#1046 - Add on demand live evaluation of packages and vulnerabilities

Issue - State: open - Opened by TG1999 about 2 years ago - 1 comment
Labels: feature

#1045 - Find a way to collect CVSS scores from github graphql API

Issue - State: open - Opened by TG1999 about 2 years ago
Labels: Data collection

#1039 - Ingest github ecosystems

Issue - State: closed - Opened by pombredanne about 2 years ago - 2 comments
Labels: Priority: medium, Data collection, good first issue, next

#1034 - Add Improvers for the migrated importers

Issue - State: closed - Opened by TG1999 about 2 years ago - 1 comment
Labels: Data collection, data-quality

#1031 - Add advisory quality scoring to VCIO

Issue - State: open - Opened by TG1999 about 2 years ago - 3 comments
Labels: enhancement, difficulty: intermediate, data-quality, next

#1030 - Add source of importing with packagerelatedvulnerability and vulnerability aliases

Issue - State: closed - Opened by TG1999 about 2 years ago - 1 comment
Labels: Priority: high, Core models, data-quality

#1029 - ingest git versions from OSS-Fuzz

Issue - State: open - Opened by ziadhany about 2 years ago
Labels: Data collection

#1028 - Investigate Known Exploited Vulnerabilities

Issue - State: closed - Opened by mjherzog about 2 years ago - 10 comments
Labels: enhancement, Priority: medium, Data collection, improver, design-needed

#1024 - Include PoC using https://github.com/trickest/cve

Issue - State: closed - Opened by pombredanne about 2 years ago - 2 comments
Labels: Data collection

#1023 - Collect data from https://github.com/gmatuz/inthewilddb

Issue - State: open - Opened by pombredanne about 2 years ago - 2 comments
Labels: Data collection

#1022 - Support conan

Issue - State: open - Opened by pombredanne about 2 years ago - 5 comments
Labels: Data collection

#1021 - Migrate kaybee importer #1011

Pull Request - State: closed - Opened by TG1999 about 2 years ago - 1 comment
Labels: import-improver-migration

#1016 - Package bulk_search by PURLs is too slow

Issue - State: closed - Opened by tdruez about 2 years ago - 4 comments
Labels: bug, Priority: medium

#1015 - Support CVE JSON 5.0

Issue - State: open - Opened by armijnhemel about 2 years ago - 3 comments
Labels: Priority: medium, Data collection, research required, next