sonatype-nexus-community/DevAudit issues and pull requests

#161 - Strange behaviour of DevAudit library.

Issue - State: open - Opened by Pawel-Sow 9 months ago

#160 - Bump Newtonsoft.Json from 12.0.2 to 13.0.2 in /DevAudit.CommandLine

Pull Request - State: open - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, .NET

#159 - Bump Newtonsoft.Json from 12.0.2 to 13.0.2 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, .NET

#158 - Bump NuGet.Commands from 5.2.0 to 5.9.3 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, .NET

#157 - Bump NuGet.Protocol from 5.2.0 to 5.9.3 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, .NET

#156 - An HTTP Error Occurred

Issue - State: closed - Opened by bp4151 over 2 years ago

#155 - Bump Microsoft.AspNetCore.All from 2.1.0 to 2.1.15 in /DevAudit.AuditLibrary/Examples

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, .NET

#154 - Nuget package dependency - nearest wins in DevAudit

Issue - State: open - Opened by scabral-geotab over 2 years ago - 3 comments

#153 - Bump Newtonsoft.Json from 12.0.2 to 13.0.1 in /DevAudit.CommandLine

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, .NET

#152 - Bump Newtonsoft.Json from 12.0.2 to 13.0.1 in /DevAudit.AuditLibrary

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, .NET

#151 - Bump NuGet.Commands from 5.2.0 to 5.2.1+311b325795f23b3c718473671d3432cdbcf9deff in /DevAudit.AuditLibrary

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, .NET

#149 - Bump Microsoft.AspNetCore.All from 2.1.0 to 2.1.4 in /DevAudit.AuditLibrary/Examples

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, .NET

#148 - Bump RestSharp from 106.6.10 to 106.12.0 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, .NET

#147 - Bump SharpZipLib from 1.1.0 to 1.3.3 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] almost 3 years ago
Labels: dependencies

#146 - Add support for ignoring known vulnerabilities in case of CI mode so that it runs in pipe lines

Pull Request - State: open - Opened by jacobwvandijk-work about 3 years ago - 1 comment
Labels: cla:signed

#145 - no more postgresql audit support?

Issue - State: open - Opened by colbyallred about 3 years ago

#144 - Bump SharpCompress from 0.23.0 to 0.29.0 in /DevAudit.AuditLibrary

Pull Request - State: open - Opened by dependabot[bot] about 3 years ago
Labels: dependencies

#143 - Error in First method in GetPackages task when csproj file doesn't contain any packagereferences

Issue - State: open - Opened by amolpatty over 3 years ago - 1 comment

#142 - DevAudit reports vulnerability on Nuget package for lower vulnerable version not in csproj file.

Issue - State: closed - Opened by bp4151 over 3 years ago - 1 comment

#141 - OPS-4602

Pull Request - State: open - Opened by scherzhaft almost 4 years ago

#140 - netcore (.csproj style) fails to process versions on separate lines

Issue - State: open - Opened by chrisfunston about 4 years ago

#139 - Fix typo

Pull Request - State: open - Opened by pascalberger about 4 years ago - 1 comment
Labels: cla:signed

#138 - Impossible to ran DevAudit from TFS Agent

Issue - State: open - Opened by llotall about 4 years ago - 2 comments

#137 - Absolute path of DevAudit's Developer Shows in Exception message

Issue - State: open - Opened by llotall about 4 years ago - 1 comment

#136 - Unusual .Net Core package version strings crash

Issue - State: open - Opened by aidansteele over 4 years ago - 10 comments

#135 - Added Ability to parse NPM files and Visual studio Solution files

Pull Request - State: closed - Opened by gmeks over 4 years ago - 2 comments
Labels: cla:signed

#134 - netcore Documentation and .sln support

Issue - State: open - Opened by owk24 over 4 years ago - 4 comments

#133 - Hey, it's been a little while now and I am still seeing 3.3 as the latest release on the releases page. Some of the code hints at a 3.4, but it isn't there.

Issue - State: closed - Opened by justin-newman over 4 years ago - 4 comments

#132 - Do not scan packages with version 0.0.0.0 that can show up in deps.json

Pull Request - State: closed - Opened by jacobwvandijk-work over 4 years ago

#131 - not found vulnerabilities at bootstrap v 3.4.1

Issue - State: closed - Opened by rainmakerho over 4 years ago - 1 comment

#130 - Add support for .NET Core build targets file (transitive packages not working perfect yet)

Pull Request - State: closed - Opened by jacobwvandijk-work over 4 years ago

#129 - Add support for new csproj file format

Issue - State: open - Opened by jacobwvandijk-work over 4 years ago - 6 comments

#128 - IQ Server reporting

Pull Request - State: closed - Opened by allisterb over 4 years ago

#127 - Is there a way to out put at standard error or success from cli?

Issue - State: closed - Opened by jwilliamson1 over 4 years ago - 1 comment

#126 - Add LICENSE and VERIFICATION files.

Pull Request - State: closed - Opened by allisterb over 4 years ago

#125 - Crash when detecting a nuget vulnerability in non-interactive mode

Issue - State: closed - Opened by infocynic almost 5 years ago - 9 comments

#124 - Add authentication for OSS Index data source and Yarn lock file auditing. Upload latest builds to S3 storage

Pull Request - State: closed - Opened by allisterb about 5 years ago

#123 - Option -n causes DevAudit crash

Issue - State: closed - Opened by v6ak about 5 years ago - 6 comments

#122 - Add authentication support for OSSI backend calls

Issue - State: closed - Opened by ken-duck about 5 years ago - 1 comment

#121 - No known vulnerabilities found

Issue - State: closed - Opened by schreddies over 5 years ago - 4 comments

#120 - Add transitive dependencies for .NET package sources and JUnit XML serializer

Pull Request - State: closed - Opened by allisterb over 5 years ago

#119 - Chocolatey package not up to date

Issue - State: closed - Opened by OSSIndex-Admin over 5 years ago - 7 comments

#118 - Exception trying to dump CSV file

Issue - State: closed - Opened by ken-duck over 5 years ago - 1 comment

#117 - NuGet transitive dependencies not covered

Issue - State: closed - Opened by rob123456 over 5 years ago - 2 comments

#116 - Fixing bug where nuget packages are not correctly located when an XML…

Pull Request - State: closed - Opened by rob123456 over 5 years ago

#115 - Changes Console.Write(format, args) to use PrintMessageformat, args)

Pull Request - State: closed - Opened by matt-feeney over 5 years ago

#114 - Re-enable MSI support

Issue - State: closed - Opened by ken-duck over 5 years ago - 1 comment

#113 - Dockerized DevAudit does not work with nuget security audit for *.csproj targets

Issue - State: closed - Opened by ari-luokkala over 5 years ago - 3 comments

#112 - Confusing error message when no security vulnerabilities are found (nuget)

Issue - State: closed - Opened by ari-luokkala over 5 years ago

#111 - JSON Reports for packages vulnerabilities

Pull Request - State: closed - Opened by DamianBis over 5 years ago - 2 comments

#110 - Refactor version support and upgrade testing

Pull Request - State: closed - Opened by allisterb over 5 years ago

#109 - Prepare framework for new ecosystem support (starting with yarn.lock support)

Issue - State: closed - Opened by ken-duck over 5 years ago - 1 comment

#108 - Refactor version support

Issue - State: closed - Opened by ken-duck over 5 years ago - 1 comment

#107 - Upgrade testing

Issue - State: closed - Opened by ken-duck over 5 years ago

#106 - Remove -c options, issue #105

Pull Request - State: closed - Opened by Niels-V over 5 years ago

#105 - Remove -c option from readme.md

Issue - State: closed - Opened by Niels-V over 5 years ago - 1 comment

#104 - V3.x issue99

Pull Request - State: closed - Opened by allisterb over 5 years ago

#103 - Support yarn .lock file auditing

Issue - State: closed - Opened by ken-duck over 5 years ago - 1 comment

#102 - Cache error messages in log after dependency downloads

Issue - State: closed - Opened by OSSIndex-Admin over 5 years ago - 2 comments

#101 - Removed if statement which stops aspnet projects from working

Pull Request - State: closed - Opened by nikk1e over 5 years ago - 7 comments

#100 - Prune unneeded features/projects from code base and automate Docker/NuGet deployment.

Pull Request - State: closed - Opened by allisterb almost 6 years ago

#99 - An HTTP error occured attempting to query the OSS Index API for the following Yarn packages

Issue - State: closed - Opened by jcoffi almost 6 years ago - 3 comments

#98 - Fix bug in .NET Core package source

Pull Request - State: closed - Opened by allisterb almost 6 years ago

#97 - devaudit nuget throws exception csproj containing for packages with no version

Issue - State: closed - Opened by BggClr almost 6 years ago - 14 comments

#96 - .NET Core project support and updated build and Docker scripts

Pull Request - State: closed - Opened by allisterb almost 6 years ago - 2 comments

#95 - docker version is outdated

Issue - State: closed - Opened by StefanSchoof almost 6 years ago - 2 comments

#94 - Add support for scanning .net core projects?

Issue - State: closed - Opened by Peter-Optiway almost 6 years ago - 4 comments

#93 - Continuous Integration (ci) argument not working

Issue - State: closed - Opened by benrjm about 6 years ago - 7 comments

#92 - Update README.md

Pull Request - State: closed - Opened by AntoineGa about 6 years ago - 1 comment

#91 - NullReferenceException is thrown when web.config section not defined

Issue - State: closed - Opened by Interface007 about 6 years ago - 2 comments

#90 - Add Option To Exit On Vulnerabilities Found

Issue - State: closed - Opened by thomashzhang about 6 years ago - 8 comments

#89 - new csproj nuget reference support

Issue - State: closed - Opened by danpowell88 over 6 years ago - 15 comments

#88 - Exception while scanning Chocolatey packages

Issue - State: closed - Opened by pascalberger over 6 years ago - 6 comments

#87 - V2.2.x

Pull Request - State: closed - Opened by OSSIndex-Admin almost 7 years ago

#86 - Update Package on NuGet.org

Issue - State: closed - Opened by nbuuck almost 7 years ago - 8 comments

#85 - Include the Package Described by bower.json During an Audit

Pull Request - State: closed - Opened by nbuuck almost 7 years ago - 6 comments

#84 - Include the Package Described by bower.json During an Audit

Issue - State: closed - Opened by nbuuck almost 7 years ago - 6 comments

#83 - Port DevAudit to .NET Core

Issue - State: closed - Opened by allisterb almost 7 years ago - 2 comments

#82 - Machine readable report formats

Issue - State: closed - Opened by eoftedal about 7 years ago - 7 comments

#81 - Implement Grafeas support

Issue - State: closed - Opened by allisterb about 7 years ago - 1 comment

#80 - DevAudit does not provide details like CVSS or external links for further processing

Issue - State: closed - Opened by v6ak over 7 years ago - 4 comments

#79 - Missing latest releases on Chocolatey

Issue - State: closed - Opened by majkinetor over 7 years ago - 4 comments

#78 - DevAudit on Mono <4.8 fails with "SecureChannelFailure (The authentication or decryption has failed.)" using Vulners data source.

Issue - State: closed - Opened by allisterb over 7 years ago
Labels: wontfix

GitHub / sonatype-nexus-community/DevAudit issues and pull requests