Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / ossf/package-analysis issues and pull requests

#828 - Add unit tests for GCP and PubSub buckets in ResultStore

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: go

#828 - Add unit tests for GCP and PubSub buckets in ResultStore

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: go

#827 - Bump google.golang.org/api from 0.136.0 to 0.137.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#827 - Bump google.golang.org/api from 0.136.0 to 0.137.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#826 - Bump actions/setup-node from 3.7.0 to 3.8.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#825 - Rework of bucket path handling in resultstore.go

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#825 - Rework of bucket path handling in resultstore.go

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#824 - Bump actions/dependency-review-action from 3.0.6 to 3.0.7

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#824 - Bump actions/dependency-review-action from 3.0.6 to 3.0.7

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#823 - print static analysis errors using logger

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#823 - print static analysis errors using logger

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#822 - Bump actions/setup-go from 4.0.1 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#822 - Bump actions/setup-go from 4.0.1 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#821 - Bump google.golang.org/api from 0.134.0 to 0.136.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#821 - Bump google.golang.org/api from 0.134.0 to 0.136.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#820 - Add option to print feature flags in analyze script

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#820 - Add option to print feature flags in analyze script

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#819 - Bump google.golang.org/api from 0.134.0 to 0.135.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#819 - Bump google.golang.org/api from 0.134.0 to 0.135.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#818 - add URL, IP and email address detection in strings

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#818 - add URL, IP and email address detection in strings

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#817 - Minor static analysis refactoring

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#817 - Minor static analysis refactoring

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#816 - Bump go.uber.org/zap from 1.24.0 to 1.25.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#816 - Bump go.uber.org/zap from 1.24.0 to 1.25.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#815 - Bump gocloud.dev/pubsub/kafkapubsub from 0.32.0 to 0.33.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#814 - Bump gocloud.dev from 0.32.0 to 0.33.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#813 - Bump google.golang.org/grpc from 1.56.2 to 1.57.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#813 - Bump google.golang.org/grpc from 1.56.2 to 1.57.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#812 - Bump google.golang.org/api from 0.132.0 to 0.134.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#812 - Bump google.golang.org/api from 0.132.0 to 0.134.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#811 - Analysed package is not saved with correct name

Issue - State: closed - Opened by maxfisher-g over 1 year ago
Labels: bug, good first issue

#811 - Analysed package is not saved with correct name

Issue - State: closed - Opened by maxfisher-g over 1 year ago
Labels: bug, good first issue

#810 - Bump cloud.google.com/go/pubsub from 1.32.0 to 1.33.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#809 - Bump google.golang.org/api from 0.132.0 to 0.133.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#808 - Bump cloud.google.com/go/bigquery from 1.52.0 to 1.53.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#808 - Bump cloud.google.com/go/bigquery from 1.52.0 to 1.53.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#807 - Bump gocloud.dev from 0.30.0 to 0.32.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#807 - Bump gocloud.dev from 0.30.0 to 0.32.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#806 - Bump gocloud.dev/pubsub/kafkapubsub from 0.30.0 to 0.32.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#806 - Bump gocloud.dev/pubsub/kafkapubsub from 0.30.0 to 0.32.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#805 - Improve archive download code

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#804 - Bump google.golang.org/api from 0.131.0 to 0.132.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#803 - Bump google.golang.org/api from 0.130.0 to 0.131.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#802 - pass logger instance to strace parsing functions

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#801 - Create sample python package

Pull Request - State: closed - Opened by elainechien over 1 year ago - 1 comment

#801 - Create sample python package

Pull Request - State: closed - Opened by elainechien over 1 year ago - 2 comments

#800 - Bump github.com/gopacket/gopacket from 1.1.0 to 1.1.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#799 - Bump google.golang.org/grpc from 1.56.1 to 1.56.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#798 - Log strace raw data to a separate file instead of stdout

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: dynamic analysis

#798 - Log strace raw data to a separate file instead of stdout

Issue - State: closed - Opened by maxfisher-g over 1 year ago
Labels: dynamic analysis

#797 - Bump actions/setup-node from 3.6.0 to 3.7.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#797 - Bump actions/setup-node from 3.6.0 to 3.7.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#796 - Bump google.golang.org/api from 0.129.0 to 0.130.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#795 - Fix bugs in execution log handling

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#794 - Bump google.golang.org/api from 0.128.0 to 0.129.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#793 - Bump cloud.google.com/go/pubsub from 1.31.0 to 1.32.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#792 - More GCP PubSub tests and enable lazy nacks

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#791 - explicitly use `--require-hashes` in pip install command

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#791 - explicitly use `--require-hashes` in pip install command

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#790 - Bump google.golang.org/grpc from 1.56.0 to 1.56.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#790 - Bump google.golang.org/grpc from 1.56.0 to 1.56.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#789 - Bump google.golang.org/protobuf from 1.30.0 to 1.31.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#788 - Bump cloud.google.com/go/bigquery from 1.51.2 to 1.52.0 in /function/loader

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#787 - Enable code execution for PyPI

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#787 - Enable code execution for PyPI

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#786 - Fix a deadline bug, add GCP tests and a feature flag.

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#786 - Fix a deadline bug, add GCP tests and a feature flag.

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#785 - Properly close archive after extraction

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#784 - Correct usage of `path` and `filepath` packages across the project

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#784 - Correct usage of `path` and `filepath` packages across the project

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#783 - Bump ossf/scorecard-action from 2.1.3 to 2.2.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#783 - Bump ossf/scorecard-action from 2.1.3 to 2.2.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#782 - Fix PHP composer installation.

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#781 - PHP composer installation fails and breaks dynamic analysis dockerfile build

Issue - State: closed - Opened by maxfisher-g over 1 year ago - 1 comment
Labels: bug, dynamic analysis

#780 - Update go to version 1.21

Issue - State: closed - Opened by maxfisher-g over 1 year ago
Labels: go, infrastructure

#778 - Restructure of archive download and hashing functions

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#778 - Restructure of archive download and hashing functions

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#776 - Move worker-tmp onto ssds

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#776 - Move worker-tmp onto ssds

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#775 - Figure out how to interrupt long-running package functions during automated execution

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: dynamic analysis

#775 - Figure out how to interrupt long-running package functions during automated execution

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: dynamic analysis

#774 - Fix commands in `test/e2e/README.md`

Pull Request - State: closed - Opened by dukecat0 over 1 year ago - 1 comment

#773 - Bump gocloud.dev from 0.29.0 to 0.30.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, go

#772 - Bump gocloud.dev/pubsub/kafkapubsub from 0.29.0 to 0.30.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#772 - Bump gocloud.dev/pubsub/kafkapubsub from 0.29.0 to 0.30.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#771 - Bump github.com/package-url/packageurl-go from 0.1.0 to 0.1.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, go

#770 - Improve package download flow

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: enhancement, needs discussion

#770 - Improve package download flow

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: enhancement, needs discussion

#769 - add Parse function to pkgecosystem, use in ResolvePackage

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#769 - add Parse function to pkgecosystem, use in ResolvePackage

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago

#768 - Re-enable file contents writing without fsync.

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#767 - Remove an fsync to improve the performance of file writes.

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#766 - add package downloader tool and add more error handling to download functions

Pull Request - State: closed - Opened by maxfisher-g over 1 year ago - 2 comments

#765 - Switch the ephemeral emptyDir to a volumeClaimTemplate to use SSDs

Pull Request - State: closed - Opened by calebbrown over 1 year ago

#764 - Log stdout and stderr from dynamic analysis process

Issue - State: open - Opened by maxfisher-g over 1 year ago
Labels: enhancement, dynamic analysis