Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / silinternational/vulnerability-scanner issues and pull requests
#96 - Node to >=16 and bump semver to 7.5.2
Pull Request -
State: closed - Opened by devon-sil 11 months ago
- 2 comments
#95 - Bump semver from 7.3.8 to 7.5.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies
#94 - Extract contents of `try` to separate method or methods (in `getSecurityVulnerabilitiesFor___Repo()` functions)
Issue -
State: open - Opened by forevermatt over 1 year ago
#93 - Release 2.0.0 (back into `develop`)
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#92 - Release 2.0.0 (into `main`)
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#91 - Gracefully handle repo scan failures
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
- 2 comments
#90 - Gracefully handle Bitbucket repo search failures
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
- 2 comments
#89 - Upgrade to Node 16
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#88 - Fix some issues in the `cli/scan.js` file
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#87 - Release 1.9.0
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
- 1 comment
#86 - Add EOL date for PHP 8.2
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#85 - Check docker-compose.yml and codeship-services.yml images
Issue -
State: open - Opened by jason-jackson over 1 year ago
Labels: enhancement
#84 - Feature/add local scan
Pull Request -
State: closed - Opened by jason-jackson over 1 year ago
- 1 comment
#83 - Make it easier to check language versions in a list of Docker images
Pull Request -
State: closed - Opened by forevermatt over 1 year ago
#82 - Add scan.js
Pull Request -
State: closed - Opened by jason-jackson almost 2 years ago
#81 - Language versions found in Dockerfiles aren't always accurate
Issue -
State: open - Opened by forevermatt almost 2 years ago
Labels: bug
#80 - Release 1.8.3 (release branch back into develop)
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#79 - Release 1.8.3
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#78 - Exclude aliases from the list of Docker images that a Dockerfile uses
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
- 2 comments
#77 - Cache calls for file contents
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#76 - Release 1.8.2
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#75 - Add EOL date for PHP 8.1
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#74 - Fix cross-architecture bug
Pull Request -
State: closed - Opened by forevermatt almost 2 years ago
#73 - Bump minimatch from 3.0.4 to 3.1.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies
#72 - Include docker image name in NodeJS and PHP End-Of-Life version warnings
Pull Request -
State: closed - Opened by forevermatt about 2 years ago
#71 - Include (in the output) what file it found the vulnerability in
Issue -
State: closed - Opened by forevermatt about 2 years ago
Labels: enhancement
#70 - Report Dockerfiles that appear to be running as root
Issue -
State: open - Opened by forevermatt over 2 years ago
- 1 comment
#69 - Release 1.8.1
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#68 - Fix helper script to skip unknown docker image, not say "NONE" for them
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#67 - Release 1.8.0
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#66 - Improve JS documentation (types, corrections, more documentation)
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#65 - Show the download progress when pulling Docker images to check versions
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#64 - Check for End-of-Life'd (EOL) NodeJS versions
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#63 - Check more programming language versions in helper script
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#62 - Run tests on codeship
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
- 1 comment
#61 - Check serverless.yml files for EOL'd versions of NodeJS
Issue -
State: open - Opened by forevermatt over 2 years ago
Labels: enhancement
#60 - Release 1.7.0
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#59 - Exclude archived Bitbucket repos
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#58 - Avoid leaving docker containers lying around after checking PHP version
Pull Request -
State: closed - Opened by forevermatt over 2 years ago
#57 - Add a way to exclude archived Bitbucket repos
Issue -
State: closed - Opened by forevermatt almost 3 years ago
Labels: enhancement
#56 - Release 1.6.3
Pull Request -
State: closed - Opened by forevermatt almost 3 years ago
#55 - Update dependencies
Pull Request -
State: closed - Opened by forevermatt almost 3 years ago
#54 - Add a way for it to find (and record) the PHP version used in Docker images not yet in the spreadsheet
Issue -
State: open - Opened by forevermatt almost 3 years ago
Labels: enhancement
#53 - Also check JavaScript dependencies pulled in via Composer
Issue -
State: open - Opened by forevermatt almost 3 years ago
Labels: enhancement
#52 - Warn about use of abandoned dependencies
Issue -
State: open - Opened by forevermatt over 3 years ago
Labels: enhancement
#51 - Release 1.6.2
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#50 - Release 1.6.1
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#49 - Reduce chances of hitting Bitbucket API rate limit
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#48 - Reduce the number of API calls to GitHub by caching `listRepoContents()`
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#47 - Release 1.6.0
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
- 1 comment
#46 - Correctly handle multistage Docker images
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#45 - Document the values at the heart of this vulnerability scanner
Issue -
State: open - Opened by forevermatt over 3 years ago
Labels: documentation
#44 - Enable configuring what (if any) severity of dev. dependency vulnerabilities to report
Issue -
State: open - Opened by forevermatt over 3 years ago
Labels: enhancement
#43 - Check for End-of-Life (EOL) versions of PHP
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
- 2 comments
#42 - Check Dockerfiles for use of End-Of-Life (EOL) NodeJS version
Issue -
State: open - Opened by forevermatt over 3 years ago
- 1 comment
Labels: enhancement
#41 - Check Dockerfiles for use of End-Of-Life (EOL) PHP Version
Issue -
State: closed - Opened by forevermatt over 3 years ago
Labels: enhancement
#40 - Check OSV for vulnerabilities in the programming language itself (PHP, NodeJS, etc.)
Issue -
State: open - Opened by forevermatt over 3 years ago
Labels: enhancement
#39 - Update the readme to show how to scan Bitbucket, too
Issue -
State: closed - Opened by forevermatt over 3 years ago
- 1 comment
Labels: documentation, good first issue
#38 - Abort the run if a rate-limit error is hit
Issue -
State: closed - Opened by forevermatt over 3 years ago
- 1 comment
#37 - Release/1.5.0
Pull Request -
State: closed - Opened by forevermatt over 3 years ago
#36 - Feature/check for javascript vulnerabilities
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#35 - Don't look in "vendor/" when searching for composer.lock file
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#34 - Release 1.4.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#33 - Improve CLI for scanning both GitHub and Bitbucket to use named CLI parameters
Issue -
State: open - Opened by forevermatt almost 4 years ago
#32 - Feature/scan GitHub and bitbucket
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
- 2 comments
#31 - Release 1.3.1
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#30 - Release 1.3.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#29 - Add automated code linter/formatter
Issue -
State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement
#28 - Use a static analysis tool or service
Issue -
State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement
#27 - Add automated tests
Issue -
State: open - Opened by forevermatt almost 4 years ago
- 1 comment
Labels: enhancement
#26 - Feature/scan bitbucket
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#25 - Allow running vulnerability-scanner on local repos
Issue -
State: open - Opened by jason-jackson almost 4 years ago
Labels: enhancement
#24 - Check for JavaScript vulnerabilities (not just PHP vulnerabilities)
Issue -
State: closed - Opened by forevermatt almost 4 years ago
Labels: enhancement
#23 - Check Bitbucket repos as well (not just GitHub repos)
Issue -
State: closed - Opened by forevermatt almost 4 years ago
Labels: enhancement
#22 - Release 1.2.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#21 - Feature/exclude archived GitHub repos
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#20 - Exclude archived GitHub repos
Issue -
State: closed - Opened by forevermatt almost 4 years ago
Labels: bug
#19 - Improve the command line interface (CLI)
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#18 - Release 1.1.1
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#17 - Release 1.1.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#16 - Include summary and link for each vulnerability
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#15 - Enable connecting to a PR as a build check, to give a pass/fail response
Issue -
State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement
#14 - Include link a "more details" link about the vulnerability in the results/CSV
Issue -
State: closed - Opened by forevermatt almost 4 years ago
Labels: enhancement
#13 - Release 1.0.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#12 - Improve naming of PHP-related functions/values
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#11 - Fix version/range comparison to handle comma-separated versions
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#10 - If no composer.lock found, check for composer.json that requires vulnerable dependencies
Issue -
State: open - Opened by forevermatt almost 4 years ago
Labels: enhancement
#9 - Clean up code and simplify data structures
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
- 4 comments
#8 - Release 0.2.3
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#7 - Get all pages of the results when listing repos
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
- 2 comments
#6 - Release 0.2.2
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#5 - Release 0.2.1
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#4 - Release 0.2.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#3 - More clearly define public interface (re: BC-breaking determinations)
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#2 - Release 0.1.0
Pull Request -
State: closed - Opened by forevermatt almost 4 years ago
#1 - Configure WhiteSource Bolt for GitHub
Pull Request -
State: closed - Opened by mend-bolt-for-github[bot] almost 4 years ago
- 1 comment