Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / ossf/package-analysis issues and pull requests
#1062 - Bump the actions-minor-updates group across 1 directory with 7 updates
Pull Request -
State: open - Opened by dependabot[bot] 29 days ago
Labels: dependencies, github_actions
#1061 - Bump the gomod-minor-updates group across 1 directory with 9 updates
Pull Request -
State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, go
#1060 - Bump the parsing-minor-updates group across 1 directory with 2 updates
Pull Request -
State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, javascript
#1059 - Bump cloud.google.com/go/bigquery from 1.59.1 to 1.62.0 in /function/loader in the loader-minor-updates group
Pull Request -
State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, go
#1058 - Bump the actions-minor-updates group across 1 directory with 6 updates
Pull Request -
State: closed - Opened by dependabot[bot] 3 months ago
- 3 comments
Labels: dependencies, github_actions
#1057 - Bump the gomod-minor-updates group across 1 directory with 6 updates
Pull Request -
State: closed - Opened by dependabot[bot] 3 months ago
- 1 comment
Labels: dependencies, go
#1056 - Bump the parsing-minor-updates group across 1 directory with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 3 months ago
- 1 comment
Labels: dependencies, javascript
#1055 - enhancement: github-actions analysis
Issue -
State: open - Opened by thepwagner 4 months ago
#1054 - golangci-lint: disable deprecated linters
Pull Request -
State: open - Opened by thepwagner 4 months ago
#1053 - Monitoring Data (with clear labels and malicious indicators) for Academic Research
Issue -
State: closed - Opened by Wapiti08 4 months ago
#1052 - Bump the gomod-minor-updates group across 1 directory with 6 updates
Pull Request -
State: closed - Opened by dependabot[bot] 4 months ago
- 1 comment
Labels: dependencies, go
#1051 - Bump the parsing-minor-updates group across 1 directory with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 4 months ago
- 1 comment
Labels: dependencies, javascript
#1050 - Bump the actions-minor-updates group across 1 directory with 6 updates
Pull Request -
State: closed - Opened by dependabot[bot] 4 months ago
- 1 comment
Labels: dependencies, github_actions
#1049 - fix: word in queries.md
Pull Request -
State: open - Opened by Yao-Wen-Chang 4 months ago
#1048 - fix: word in queries.md
Pull Request -
State: closed - Opened by Yao-Wen-Chang 4 months ago
#1047 - Error from scanning the package
Issue -
State: open - Opened by Yao-Wen-Chang 5 months ago
- 3 comments
#1046 - Bump cloud.google.com/go/bigquery from 1.59.1 to 1.61.0 in /function/loader in the loader-minor-updates group
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
- 1 comment
Labels: dependencies, go
#1045 - Bump the gomod-minor-updates group with 4 updates
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
- 1 comment
Labels: dependencies, go
#1044 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
- 1 comment
Labels: dependencies, javascript
#1043 - Bump the actions-minor-updates group with 4 updates
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
- 1 comment
Labels: dependencies, github_actions
#1042 - upgrade golang.org/x/net package to remediate vulnerability
Pull Request -
State: closed - Opened by maxfisher-g 6 months ago
#1041 - Report a critical issue
Issue -
State: closed - Opened by ya3raj 6 months ago
- 1 comment
#1040 - Bump actions/dependency-review-action from 3.1.4 to 4.2.5
Pull Request -
State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions
#1039 - Bump the actions-minor-updates group with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 6 months ago
- 1 comment
Labels: dependencies, github_actions
#1038 - Bump the loader-minor-updates group in /function/loader with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 6 months ago
- 1 comment
Labels: dependencies, go
#1037 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 6 months ago
- 1 comment
Labels: dependencies, javascript
#1036 - Bump the gomod-minor-updates group with 6 updates
Pull Request -
State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go
#1035 - Implement mholt/archiver
Pull Request -
State: open - Opened by gliptak 6 months ago
- 3 comments
#1034 - Proposed legal & governance improvements for the OpenSSF
Issue -
State: open - Opened by hythloda 7 months ago
- 1 comment
#1033 - Rename ExtractTarGzFile to ExtractArchiveFile
Pull Request -
State: closed - Opened by gliptak 7 months ago
- 1 comment
#1032 - bump protobuf to non vulnerable version
Pull Request -
State: closed - Opened by maxfisher-g 7 months ago
- 2 comments
#1031 - Bump google.golang.org/protobuf from 1.32.0 to 1.33.0
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go
#1030 - Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /function/loader
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go
#1029 - Adding Technical Charter
Pull Request -
State: open - Opened by redenmartinez 7 months ago
- 4 comments
#1028 - Refactor docker/* targets in Makefile
Pull Request -
State: closed - Opened by gliptak 7 months ago
- 8 comments
#1027 - Bump GVisor to the latest release 20240212.
Pull Request -
State: closed - Opened by calebbrown 7 months ago
#1026 - Update the K8S deb repo to the community repo.
Pull Request -
State: closed - Opened by calebbrown 7 months ago
#1025 - Bump the loader-minor-updates group in /function/loader with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go
#1024 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
- 2 comments
Labels: dependencies, javascript
#1023 - Bump the gomod-minor-updates group with 8 updates
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
- 1 comment
Labels: dependencies, go
#1022 - Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions
#1021 - Bump actions/dependency-review-action from 3.1.4 to 4.1.3
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
- 1 comment
Labels: dependencies, github_actions
#1020 - Bump the actions-minor-updates group with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
- 1 comment
Labels: dependencies, github_actions
#1019 - Implement help in Makefile
Pull Request -
State: closed - Opened by gliptak 7 months ago
- 1 comment
#1018 - Add user-agents to http requests sent by Package Analysis
Pull Request -
State: closed - Opened by calebbrown 7 months ago
#1017 - Point the new dynamic analysis loader at the real table.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1016 - Disable the currently failing crates.io test until it is fixed.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1015 - crates.io access is failing
Issue -
State: closed - Opened by calebbrown 8 months ago
- 1 comment
#1014 - Revert "Adjust the query to keep the destination rather than replace"
Pull Request -
State: closed - Opened by calebbrown 8 months ago
- 3 comments
#1013 - Adjust the query to keep the destination rather than replace.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1012 - Add option to BigQuery SQL to remove expiration from "like" table.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1011 - Add headless flag to BQ command to improve output.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1010 - Fix a bug where the RESULT_BUCKET env var wasn't used correctly.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1009 - Set the entrypoint explicitly to /bin/bash in the BQ Loader cloudbuild.yaml
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1008 - Add option to force cloud logging for BigQuery loading in cloudbuild.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1007 - Shard dynamic analysis data loading across ecosystems and simplify implementation.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#1006 - Switch to osv-scanner-action repo, pin action version
Pull Request -
State: closed - Opened by another-rex 8 months ago
#1005 - Bump the loader-minor-updates group in /function/loader with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 8 months ago
- 1 comment
Labels: dependencies, go
#1004 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies, javascript
#1003 - Bump the gomod-minor-updates group with 4 updates
Pull Request -
State: closed - Opened by dependabot[bot] 8 months ago
- 1 comment
Labels: dependencies, go
#1002 - Add support to build sample python package with docker
Pull Request -
State: closed - Opened by elainechien 8 months ago
#1001 - Create test packages that simulate malicious behaviors we want to catch
Issue -
State: open - Opened by elainechien 8 months ago
#1000 - Dynamic analysis data in BigQuery is not being updated.
Issue -
State: closed - Opened by calebbrown 8 months ago
- 2 comments
Labels: bug
#999 - Windows support
Issue -
State: closed - Opened by maxmeng-oss 8 months ago
- 1 comment
#998 - Move images using load/save instead of docker daemon.
Pull Request -
State: closed - Opened by calebbrown 8 months ago
#997 - Whether the pushed results are all malicious?
Issue -
State: closed - Opened by Wapiti08 9 months ago
- 4 comments
#996 - Add functionality for sample package to attempt to ping blocked addresses
Pull Request -
State: open - Opened by elainechien 9 months ago
#996 - Add functionality for sample package to attempt to ping blocked addresses
Pull Request -
State: open - Opened by elainechien 9 months ago
#995 - pkg/api/analysisrun refactoring
Pull Request -
State: closed - Opened by maxfisher-g 9 months ago
#994 - Bump Go version to 1.21.5 and use version specified in go.mod in Github Actions
Pull Request -
State: closed - Opened by maxfisher-g 9 months ago
#993 - static analysis: collect basic information about archive file
Pull Request -
State: closed - Opened by maxfisher-g 9 months ago
#992 - sandboxes/README.md: fix some sentences
Pull Request -
State: closed - Opened by maxfisher-g 9 months ago
#991 - Bump the gomod-minor-updates group with 5 updates
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
- 1 comment
Labels: dependencies, go
#990 - Bump actions/setup-go from 4.1.0 to 5.0.0
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#989 - Bump actions/upload-artifact from 3.1.3 to 4.0.0
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#988 - Bump the actions-minor-updates group with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions
#987 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
- 1 comment
Labels: dependencies, javascript
#986 - move DynamicAnalysisRecord struct to public API
Pull Request -
State: closed - Opened by maxfisher-g 10 months ago
#985 - Bump golang.org/x/crypto from 0.16.0 to 0.17.0
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go
#985 - Bump golang.org/x/crypto from 0.16.0 to 0.17.0
Pull Request -
State: open - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go
#984 - Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /function/loader
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
- 1 comment
Labels: dependencies, go
#984 - Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /function/loader
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
- 1 comment
Labels: dependencies, go
#983 - Fix compose path
Pull Request -
State: closed - Opened by lukehinds 10 months ago
- 1 comment
#983 - Fix compose path
Pull Request -
State: closed - Opened by lukehinds 10 months ago
- 1 comment
#982 - ES modules fail to be imported during node.js dynamic analysis
Issue -
State: open - Opened by maxfisher-g 10 months ago
Labels: bug
#982 - ES modules fail to be imported during node.js dynamic analysis
Issue -
State: open - Opened by maxfisher-g 10 months ago
Labels: bug
#981 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, javascript
#980 - Bump the gomod-minor-updates group with 3 updates
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go
#979 - Bump the actions-minor-updates group with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions
#978 - Add archive checksum
Pull Request -
State: closed - Opened by h0x0er 10 months ago
- 2 comments
#977 - Please
Issue -
State: closed - Opened by branden1992 10 months ago
- 1 comment
#976 - reduce dependabot PR frequency to monthly
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago
#975 - cmd/analyze: add resolved package version to logging context
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago
#974 - add python3-dev package to dynamic analysis dockerfile
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago
#973 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies, javascript
#972 - Bump the gomod-minor-updates group with 1 update
Pull Request -
State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies, go
#971 - support extracting zip archives
Issue -
State: open - Opened by maxfisher-g 11 months ago
- 2 comments
Labels: static analysis
#970 - strace parsing: fix regex issue when unlink syscall does not have path
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago
#969 - update babel parser to match babel traverse version
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago
#968 - python dynamic analysis: support async and generator function execution
Pull Request -
State: closed - Opened by maxfisher-g 11 months ago