Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / ossf/package-analysis issues and pull requests

#1062 - Bump the actions-minor-updates group across 1 directory with 7 updates

Pull Request - State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, github_actions

#1061 - Bump the gomod-minor-updates group across 1 directory with 9 updates

Pull Request - State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, go

#1060 - Bump the parsing-minor-updates group across 1 directory with 2 updates

Pull Request - State: open - Opened by dependabot[bot] 30 days ago
Labels: dependencies, javascript

#1058 - Bump the actions-minor-updates group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 3 comments
Labels: dependencies, github_actions

#1057 - Bump the gomod-minor-updates group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, go

#1056 - Bump the parsing-minor-updates group across 1 directory with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#1055 - enhancement: github-actions analysis

Issue - State: open - Opened by thepwagner 4 months ago

#1054 - golangci-lint: disable deprecated linters

Pull Request - State: open - Opened by thepwagner 4 months ago

#1052 - Bump the gomod-minor-updates group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, go

#1051 - Bump the parsing-minor-updates group across 1 directory with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#1050 - Bump the actions-minor-updates group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#1049 - fix: word in queries.md

Pull Request - State: open - Opened by Yao-Wen-Chang 4 months ago

#1048 - fix: word in queries.md

Pull Request - State: closed - Opened by Yao-Wen-Chang 4 months ago

#1047 - Error from scanning the package

Issue - State: open - Opened by Yao-Wen-Chang 5 months ago - 3 comments

#1046 - Bump cloud.google.com/go/bigquery from 1.59.1 to 1.61.0 in /function/loader in the loader-minor-updates group

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, go

#1045 - Bump the gomod-minor-updates group with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, go

#1044 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#1043 - Bump the actions-minor-updates group with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#1042 - upgrade golang.org/x/net package to remediate vulnerability

Pull Request - State: closed - Opened by maxfisher-g 6 months ago

#1041 - Report a critical issue

Issue - State: closed - Opened by ya3raj 6 months ago - 1 comment

#1040 - Bump actions/dependency-review-action from 3.1.4 to 4.2.5

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions

#1039 - Bump the actions-minor-updates group with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#1038 - Bump the loader-minor-updates group in /function/loader with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, go

#1037 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, javascript

#1036 - Bump the gomod-minor-updates group with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#1035 - Implement mholt/archiver

Pull Request - State: open - Opened by gliptak 6 months ago - 3 comments

#1034 - Proposed legal & governance improvements for the OpenSSF

Issue - State: open - Opened by hythloda 7 months ago - 1 comment

#1033 - Rename ExtractTarGzFile to ExtractArchiveFile

Pull Request - State: closed - Opened by gliptak 7 months ago - 1 comment

#1032 - bump protobuf to non vulnerable version

Pull Request - State: closed - Opened by maxfisher-g 7 months ago - 2 comments

#1031 - Bump google.golang.org/protobuf from 1.32.0 to 1.33.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go

#1030 - Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go

#1029 - Adding Technical Charter

Pull Request - State: open - Opened by redenmartinez 7 months ago - 4 comments

#1028 - Refactor docker/* targets in Makefile

Pull Request - State: closed - Opened by gliptak 7 months ago - 8 comments

#1027 - Bump GVisor to the latest release 20240212.

Pull Request - State: closed - Opened by calebbrown 7 months ago

#1026 - Update the K8S deb repo to the community repo.

Pull Request - State: closed - Opened by calebbrown 7 months ago

#1025 - Bump the loader-minor-updates group in /function/loader with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go

#1024 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 2 comments
Labels: dependencies, javascript

#1023 - Bump the gomod-minor-updates group with 8 updates

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, go

#1022 - Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#1021 - Bump actions/dependency-review-action from 3.1.4 to 4.1.3

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#1020 - Bump the actions-minor-updates group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#1019 - Implement help in Makefile

Pull Request - State: closed - Opened by gliptak 7 months ago - 1 comment

#1018 - Add user-agents to http requests sent by Package Analysis

Pull Request - State: closed - Opened by calebbrown 7 months ago

#1017 - Point the new dynamic analysis loader at the real table.

Pull Request - State: closed - Opened by calebbrown 8 months ago

#1015 - crates.io access is failing

Issue - State: closed - Opened by calebbrown 8 months ago - 1 comment

#1014 - Revert "Adjust the query to keep the destination rather than replace"

Pull Request - State: closed - Opened by calebbrown 8 months ago - 3 comments

#1013 - Adjust the query to keep the destination rather than replace.

Pull Request - State: closed - Opened by calebbrown 8 months ago

#1011 - Add headless flag to BQ command to improve output.

Pull Request - State: closed - Opened by calebbrown 8 months ago

#1006 - Switch to osv-scanner-action repo, pin action version

Pull Request - State: closed - Opened by another-rex 8 months ago

#1005 - Bump the loader-minor-updates group in /function/loader with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, go

#1004 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies, javascript

#1003 - Bump the gomod-minor-updates group with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, go

#1002 - Add support to build sample python package with docker

Pull Request - State: closed - Opened by elainechien 8 months ago

#1000 - Dynamic analysis data in BigQuery is not being updated.

Issue - State: closed - Opened by calebbrown 8 months ago - 2 comments
Labels: bug

#999 - Windows support

Issue - State: closed - Opened by maxmeng-oss 8 months ago - 1 comment

#998 - Move images using load/save instead of docker daemon.

Pull Request - State: closed - Opened by calebbrown 8 months ago

#997 - Whether the pushed results are all malicious?

Issue - State: closed - Opened by Wapiti08 9 months ago - 4 comments

#995 - pkg/api/analysisrun refactoring

Pull Request - State: closed - Opened by maxfisher-g 9 months ago

#993 - static analysis: collect basic information about archive file

Pull Request - State: closed - Opened by maxfisher-g 9 months ago

#992 - sandboxes/README.md: fix some sentences

Pull Request - State: closed - Opened by maxfisher-g 9 months ago

#991 - Bump the gomod-minor-updates group with 5 updates

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, go

#990 - Bump actions/setup-go from 4.1.0 to 5.0.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions

#989 - Bump actions/upload-artifact from 3.1.3 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions

#988 - Bump the actions-minor-updates group with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions

#987 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, javascript

#986 - move DynamicAnalysisRecord struct to public API

Pull Request - State: closed - Opened by maxfisher-g 10 months ago

#985 - Bump golang.org/x/crypto from 0.16.0 to 0.17.0

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go

#985 - Bump golang.org/x/crypto from 0.16.0 to 0.17.0

Pull Request - State: open - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go

#984 - Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, go

#984 - Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, go

#983 - Fix compose path

Pull Request - State: closed - Opened by lukehinds 10 months ago - 1 comment

#983 - Fix compose path

Pull Request - State: closed - Opened by lukehinds 10 months ago - 1 comment

#982 - ES modules fail to be imported during node.js dynamic analysis

Issue - State: open - Opened by maxfisher-g 10 months ago
Labels: bug

#982 - ES modules fail to be imported during node.js dynamic analysis

Issue - State: open - Opened by maxfisher-g 10 months ago
Labels: bug

#981 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, javascript

#980 - Bump the gomod-minor-updates group with 3 updates

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, go

#979 - Bump the actions-minor-updates group with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions

#978 - Add archive checksum

Pull Request - State: closed - Opened by h0x0er 10 months ago - 2 comments

#977 - Please

Issue - State: closed - Opened by branden1992 10 months ago - 1 comment

#976 - reduce dependabot PR frequency to monthly

Pull Request - State: closed - Opened by maxfisher-g 11 months ago

#975 - cmd/analyze: add resolved package version to logging context

Pull Request - State: closed - Opened by maxfisher-g 11 months ago

#974 - add python3-dev package to dynamic analysis dockerfile

Pull Request - State: closed - Opened by maxfisher-g 11 months ago

#973 - Bump the parsing-minor-updates group in /internal/staticanalysis/parsing with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies, javascript

#972 - Bump the gomod-minor-updates group with 1 update

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies, go

#971 - support extracting zip archives

Issue - State: open - Opened by maxfisher-g 11 months ago - 2 comments
Labels: static analysis

#969 - update babel parser to match babel traverse version

Pull Request - State: closed - Opened by maxfisher-g 11 months ago