Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / silinternational/vulnerability-scanner issues and pull requests

#96 - Node to >=16 and bump semver to 7.5.2

Pull Request - State: closed - Opened by devon-sil about 1 year ago - 2 comments

#95 - Bump semver from 7.3.8 to 7.5.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#93 - Release 2.0.0 (back into `develop`)

Pull Request - State: closed - Opened by forevermatt almost 2 years ago

#92 - Release 2.0.0 (into `main`)

Pull Request - State: closed - Opened by forevermatt almost 2 years ago

#91 - Gracefully handle repo scan failures

Pull Request - State: closed - Opened by forevermatt almost 2 years ago - 2 comments

#90 - Gracefully handle Bitbucket repo search failures

Pull Request - State: closed - Opened by forevermatt almost 2 years ago - 2 comments

#89 - Upgrade to Node 16

Pull Request - State: closed - Opened by forevermatt almost 2 years ago

#88 - Fix some issues in the `cli/scan.js` file

Pull Request - State: closed - Opened by forevermatt almost 2 years ago

#87 - Release 1.9.0

Pull Request - State: closed - Opened by forevermatt almost 2 years ago - 1 comment

#86 - Add EOL date for PHP 8.2

Pull Request - State: closed - Opened by forevermatt almost 2 years ago

#85 - Check docker-compose.yml and codeship-services.yml images

Issue - State: open - Opened by jason-jackson almost 2 years ago
Labels: enhancement

#84 - Feature/add local scan

Pull Request - State: closed - Opened by jason-jackson almost 2 years ago - 1 comment

#83 - Make it easier to check language versions in a list of Docker images

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#82 - Add scan.js

Pull Request - State: closed - Opened by jason-jackson about 2 years ago

#81 - Language versions found in Dockerfiles aren't always accurate

Issue - State: open - Opened by forevermatt about 2 years ago
Labels: bug

#80 - Release 1.8.3 (release branch back into develop)

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#79 - Release 1.8.3

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#78 - Exclude aliases from the list of Docker images that a Dockerfile uses

Pull Request - State: closed - Opened by forevermatt about 2 years ago - 2 comments

#77 - Cache calls for file contents

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#76 - Release 1.8.2

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#75 - Add EOL date for PHP 8.1

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#74 - Fix cross-architecture bug

Pull Request - State: closed - Opened by forevermatt about 2 years ago

#73 - Bump minimatch from 3.0.4 to 3.1.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies

#71 - Include (in the output) what file it found the vulnerability in

Issue - State: closed - Opened by forevermatt over 2 years ago
Labels: enhancement

#70 - Report Dockerfiles that appear to be running as root

Issue - State: open - Opened by forevermatt almost 3 years ago - 1 comment

#69 - Release 1.8.1

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#68 - Fix helper script to skip unknown docker image, not say "NONE" for them

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#67 - Release 1.8.0

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#66 - Improve JS documentation (types, corrections, more documentation)

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#65 - Show the download progress when pulling Docker images to check versions

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#64 - Check for End-of-Life'd (EOL) NodeJS versions

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#63 - Check more programming language versions in helper script

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#62 - Run tests on codeship

Pull Request - State: closed - Opened by forevermatt about 3 years ago - 1 comment

#61 - Check serverless.yml files for EOL'd versions of NodeJS

Issue - State: open - Opened by forevermatt about 3 years ago
Labels: enhancement

#60 - Release 1.7.0

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#59 - Exclude archived Bitbucket repos

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#58 - Avoid leaving docker containers lying around after checking PHP version

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#57 - Add a way to exclude archived Bitbucket repos

Issue - State: closed - Opened by forevermatt about 3 years ago
Labels: enhancement

#56 - Release 1.6.3

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#55 - Update dependencies

Pull Request - State: closed - Opened by forevermatt about 3 years ago

#53 - Also check JavaScript dependencies pulled in via Composer

Issue - State: open - Opened by forevermatt about 3 years ago
Labels: enhancement

#52 - Warn about use of abandoned dependencies

Issue - State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement

#51 - Release 1.6.2

Pull Request - State: closed - Opened by forevermatt almost 4 years ago

#50 - Release 1.6.1

Pull Request - State: closed - Opened by forevermatt almost 4 years ago

#49 - Reduce chances of hitting Bitbucket API rate limit

Pull Request - State: closed - Opened by forevermatt almost 4 years ago

#48 - Reduce the number of API calls to GitHub by caching `listRepoContents()`

Pull Request - State: closed - Opened by forevermatt almost 4 years ago

#47 - Release 1.6.0

Pull Request - State: closed - Opened by forevermatt almost 4 years ago - 1 comment

#46 - Correctly handle multistage Docker images

Pull Request - State: closed - Opened by forevermatt almost 4 years ago

#45 - Document the values at the heart of this vulnerability scanner

Issue - State: open - Opened by forevermatt almost 4 years ago
Labels: documentation

#44 - Enable configuring what (if any) severity of dev. dependency vulnerabilities to report

Issue - State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement

#43 - Check for End-of-Life (EOL) versions of PHP

Pull Request - State: closed - Opened by forevermatt almost 4 years ago - 2 comments

#42 - Check Dockerfiles for use of End-Of-Life (EOL) NodeJS version

Issue - State: open - Opened by forevermatt almost 4 years ago - 1 comment
Labels: enhancement

#41 - Check Dockerfiles for use of End-Of-Life (EOL) PHP Version

Issue - State: closed - Opened by forevermatt almost 4 years ago
Labels: enhancement

#40 - Check OSV for vulnerabilities in the programming language itself (PHP, NodeJS, etc.)

Issue - State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement

#39 - Update the readme to show how to scan Bitbucket, too

Issue - State: closed - Opened by forevermatt about 4 years ago - 1 comment
Labels: documentation, good first issue

#38 - Abort the run if a rate-limit error is hit

Issue - State: closed - Opened by forevermatt about 4 years ago - 1 comment

#37 - Release/1.5.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#36 - Feature/check for javascript vulnerabilities

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#35 - Don't look in "vendor/" when searching for composer.lock file

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#34 - Release 1.4.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#32 - Feature/scan GitHub and bitbucket

Pull Request - State: closed - Opened by forevermatt about 4 years ago - 2 comments

#31 - Release 1.3.1

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#30 - Release 1.3.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#29 - Add automated code linter/formatter

Issue - State: open - Opened by forevermatt about 4 years ago
Labels: enhancement

#28 - Use a static analysis tool or service

Issue - State: open - Opened by forevermatt about 4 years ago
Labels: enhancement

#27 - Add automated tests

Issue - State: open - Opened by forevermatt about 4 years ago - 1 comment
Labels: enhancement

#26 - Feature/scan bitbucket

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#25 - Allow running vulnerability-scanner on local repos

Issue - State: open - Opened by jason-jackson about 4 years ago
Labels: enhancement

#24 - Check for JavaScript vulnerabilities (not just PHP vulnerabilities)

Issue - State: closed - Opened by forevermatt about 4 years ago
Labels: enhancement

#23 - Check Bitbucket repos as well (not just GitHub repos)

Issue - State: closed - Opened by forevermatt about 4 years ago
Labels: enhancement

#22 - Release 1.2.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#21 - Feature/exclude archived GitHub repos

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#20 - Exclude archived GitHub repos

Issue - State: closed - Opened by forevermatt about 4 years ago
Labels: bug

#19 - Improve the command line interface (CLI)

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#18 - Release 1.1.1

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#17 - Release 1.1.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#16 - Include summary and link for each vulnerability

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#15 - Enable connecting to a PR as a build check, to give a pass/fail response

Issue - State: open - Opened by forevermatt about 4 years ago
Labels: enhancement

#14 - Include link a "more details" link about the vulnerability in the results/CSV

Issue - State: closed - Opened by forevermatt about 4 years ago
Labels: enhancement

#13 - Release 1.0.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#12 - Improve naming of PHP-related functions/values

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#11 - Fix version/range comparison to handle comma-separated versions

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#9 - Clean up code and simplify data structures

Pull Request - State: closed - Opened by forevermatt about 4 years ago - 4 comments

#8 - Release 0.2.3

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#7 - Get all pages of the results when listing repos

Pull Request - State: closed - Opened by forevermatt about 4 years ago - 2 comments

#6 - Release 0.2.2

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#5 - Release 0.2.1

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#4 - Release 0.2.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#3 - More clearly define public interface (re: BC-breaking determinations)

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#2 - Release 0.1.0

Pull Request - State: closed - Opened by forevermatt about 4 years ago

#1 - Configure WhiteSource Bolt for GitHub

Pull Request - State: closed - Opened by mend-bolt-for-github[bot] about 4 years ago - 1 comment