Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitLab.com / gitlab-org/security-products/analyzers/brakeman issues and pull requests

#124 - SASTBot: Monthly dependency updates for 16.0

Pull Request - State: opened - Opened by group_2452873_bot_aa678754a330f84d61c76a96786c08b7 over 1 year ago - 1 comment
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#123 - Draft: Test command/v2@bump-version-go-mod (Fabien)

Pull Request - State: closed - Opened by fcatteau over 1 year ago - 2 comments
Labels: Category:SAST, devops::secure, group::composition analysis, section::sec, test, type::maintenance

#122 - Draft: Test command/v2@bump-version-go-mod (Serena)

Pull Request - State: closed - Opened by serenafang over 1 year ago - 5 comments
Labels: devops::secure, group::static analysis, section::sec

#121 - SASTBot: Monthly dependency updates for 15.11

Pull Request - State: merged - Opened by group_2452873_bot_aa678754a330f84d61c76a96786c08b7 over 1 year ago - 12 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance, workflow::in dev

#120 - Bump brakeman to v4.0.0 for 16.0 release

Pull Request - State: merged - Opened by serenafang over 1 year ago - 10 comments
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#119 - SASTBot: Monthly dependency updates for 15.10

Pull Request - State: merged - Opened by ghost1 over 1 year ago - 12 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#118 - SASTBot: Monthly dependency updates for 15.9

Pull Request - State: merged - Opened by ghost1 over 1 year ago - 4 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#117 - SASTBot: Monthly dependency updates for 15.8

Pull Request - State: merged - Opened by ghost1 almost 2 years ago - 3 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#116 - Draft: Break stuff, for science

Pull Request - State: closed - Opened by rossfuhrman almost 2 years ago - 2 comments
Labels: devops::secure, group::static analysis, section::sec

#115 - SASTBot: Monthly dependency updates for 15.7

Pull Request - State: merged - Opened by ghost1 almost 2 years ago - 7 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#114 - Replace downstream pipelines with integration-test for Brakeman

Pull Request - State: merged - Opened by vbhat161 almost 2 years ago - 6 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#113 - SASTBot: Monthly dependency updates for 15.6

Pull Request - State: merged - Opened by group_2564205_bot almost 2 years ago - 6 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#112 - Run VET only on ruby(.rb) files

Pull Request - State: merged - Opened by vbhat161 almost 2 years ago - 5 comments
Labels: Category:SAST, backend, devops::secure, feature::consolidation, group::static analysis, section::sec, type::feature

#111 - Upgrade gitlab.com/gitlab-org/security-products/analyzers/report to v3.15.5

Pull Request - State: merged - Opened by hacks4oats about 2 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::composition analysis, maintenance::dependency, section::sec, type::maintenance

#110 - SASTBot: Monthly dependency updates for %15.5

Pull Request - State: closed - Opened by vbhat161 about 2 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance, workflow::in dev

#109 - Update common to v3.2.1 to fix gotestsum cmd

Pull Request - State: merged - Opened by adamcohen about 2 years ago - 5 comments
Labels: Category:SAST, backend, devops::secure, group::composition analysis, maintenance::pipelines, section::sec, type::maintenance

#108 - SASTBot: Monthly dependency updates for %15.4

Pull Request - State: closed - Opened by group_2564205_bot about 2 years ago - 3 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance, workflow::in dev

#107 - Fix nil pointer deref

Pull Request - State: merged - Opened by julianthome about 2 years ago - 10 comments
Labels: Category:SAST, bug::functional, devops::secure, group::vulnerability research, priority::3, section::sec, type::bug

#106 - SASTBot: Monthly dependency updates for %15.3

Pull Request - State: closed - Opened by vbhat161 about 2 years ago - 6 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance, workflow::in dev

#105 - [Bulk Update] Bump core deps

Pull Request - State: merged - Opened by jamesliu-gitlab over 2 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#104 - Draft: [Bulk Update] Bump core deps

Pull Request - State: closed - Opened by jamesliu-gitlab over 2 years ago
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#103 - VET version upgrade

Pull Request - State: merged - Opened by julianthome over 2 years ago - 22 comments
Labels: Category:SAST, backend, devops::secure, group::vulnerability research, section::sec, type::maintenance

#102 - Bump brakeman to v3.0.0 for 15.0 release

Pull Request - State: merged - Opened by zrice over 2 years ago - 5 comments
Labels: devops::secure, group::static analysis, section::sec, type::maintenance

#101 - go mod tidy

Pull Request - State: merged - Opened by julianthome over 2 years ago - 3 comments
Labels: backend, devops::secure, group::vulnerability research, section::sec, type::maintenance

#100 - Upgrade brakeman to 5.2.2

Pull Request - State: merged - Opened by rossfuhrman over 2 years ago - 11 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#99 - chore: fix group reference in CODEOWNERS

Pull Request - State: merged - Opened by theoretick over 2 years ago - 1 comment
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::workflow, type::maintenance

#98 - Upgrade to 5.2.1

Pull Request - State: merged - Opened by rossfuhrman over 2 years ago - 12 comments
Labels: devops::secure, group::static analysis, section::sec, type::maintenance

#97 - chore: Update CODEOWNERS

Pull Request - State: merged - Opened by theoretick over 2 years ago - 2 comments
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#96 - Update tracking calculator

Pull Request - State: merged - Opened by rossfuhrman over 2 years ago - 4 comments
Labels: devops::secure, group::static analysis, section::sec, type::maintenance

#95 - chore: drop `SEC_REGISTRY_IMAGE`

Pull Request - State: merged - Opened by theoretick over 2 years ago
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#94 - Add ruleset override support

Pull Request - State: merged - Opened by rossfuhrman over 2 years ago - 6 comments
Labels: Category:SAST, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#93 - Bump vet

Pull Request - State: merged - Opened by julianthome almost 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::vulnerability research, section::sec, type::feature

#92 - chore: Bump post-analyzer/scripts version

Pull Request - State: merged - Opened by theoretick almost 3 years ago - 9 comments
Labels: Category:SAST, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#91 - chore: Upgrade go to v1.17

Pull Request - State: merged - Opened by theoretick almost 3 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, type::feature

#90 - Upgrade to brakeman v5.1.2

Pull Request - State: merged - Opened by rossfuhrman almost 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#89 - chore: Bump report/command to latest, corrects schemaver to v14.0.4

Pull Request - State: merged - Opened by theoretick almost 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::bug

#88 - chore: Bump scripts to latest

Pull Request - State: merged - Opened by theoretick about 3 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::bug

#87 - Bump VET version

Pull Request - State: merged - Opened by julianthome about 3 years ago - 10 comments
Labels: Category:SAST, devops::secure, group::vulnerability research, priority::2, section::sec, severity::2, type::bug

#86 - Bump stencils version

Pull Request - State: merged - Opened by julianthome about 3 years ago - 12 comments
Labels: Category:SAST, devops::secure, group::vulnerability research, section::sec

#85 - Upgrade to brakeman v5.1.1

Pull Request - State: merged - Opened by rossfuhrman about 3 years ago - 6 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#84 - Update tracking calculator and the docker registry

Pull Request - State: merged - Opened by dsearles about 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#83 - Add SEC_REGISTRY_IMAGE

Pull Request - State: merged - Opened by dsearles about 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#82 - chore: Update .gitlab-ci.yml

Pull Request - State: merged - Opened by zrice about 3 years ago
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::pipelines, section::sec, type::maintenance

#81 - Update VET to include a fix for a bug that disabled Tracking-Calculator

Pull Request - State: merged - Opened by zrice about 3 years ago - 6 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::bug

#80 - Bump VET to remove default `flags`

Pull Request - State: merged - Opened by zrice about 3 years ago - 4 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec

#79 - Enable False-Positive flags

Pull Request - State: merged - Opened by zrice about 3 years ago - 23 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#78 - Handle Vulnerabilities

Pull Request - State: closed - Opened by julianthome about 3 years ago
Labels: Category:SAST, devops::secure, group::vulnerability research, section::sec

#77 - Update tracking calculator

Pull Request - State: merged - Opened by dsearles over 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#76 - Draft: Test...

Pull Request - State: closed - Opened by theoretick over 3 years ago - 1 comment

#75 - Remove old MAJOR variable

Pull Request - State: merged - Opened by dsearles over 3 years ago
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#74 - Remove SAST_DEFAULT_ANALYZERS usage

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 5 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#73 - chore: Prefer MAX_IMAGE_SIZE_MB over MAX_IMAGE_SIZE_BYTE

Pull Request - State: merged - Opened by theoretick over 3 years ago
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#72 - Move to SAST_EXCLUDED_ANALYZERS

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#71 - Update Dockerfile

Pull Request - State: closed - Opened by zrice over 3 years ago - 1 comment
Labels: Category:SAST

#70 - Update docker to use UBI8 minimal as a base image

Pull Request - State: closed - Opened by dsearles over 3 years ago - 7 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#69 - Update brakeman to v5.0.1

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#68 - Run downstream QA for the ruby-generic project

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 2 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#67 - update CONTRIBUTING.md

Pull Request - State: merged - Opened by twoodham over 3 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#66 - Add Julian to CODEOWNERS

Pull Request - State: merged - Opened by twoodham over 3 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance, workflow::in review

#65 - Add CODEOWNERS

Pull Request - State: merged - Opened by twoodham over 3 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#64 - Upgrade tracking-calculator to v2.0.3

Pull Request - State: merged - Opened by theoretick over 3 years ago - 9 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#63 - Update downstream expectations

Pull Request - State: merged - Opened by theoretick over 3 years ago
Labels: devops::secure, group::static analysis, test, type::maintenance

#62 - feat: Rename fingerprints to signatures

Pull Request - State: merged - Opened by theoretick over 3 years ago - 4 comments
Labels: Category:SAST, devops::secure, group::static analysis, type::maintenance

#61 - Update schema

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 5 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::maintenance

#60 - Update gl-sast-report.json with expected sast vulnerability

Pull Request - State: closed - Opened by willmeek over 3 years ago - 2 comments
Labels: Category:SAST

#59 - Update expectation for ruby-bundler-rails

Pull Request - State: merged - Opened by theoretick over 3 years ago - 1 comment
Labels: Category:SAST, devops::secure, group::static analysis, type::maintenance

#58 - Add SAST report for ruby-generic project

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 4 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#57 - Use split common packages directly

Pull Request - State: merged - Opened by theoretick over 3 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#56 - integration of the tracking calculator

Pull Request - State: merged - Opened by julianthome over 3 years ago - 36 comments
Labels: devops::secure, feature::addition, group::vulnerability research, section::sec, type::feature

#55 - Update brakeman to 5.0.0

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 13 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#54 - Upgrade to common v2.22.1

Pull Request - State: merged - Opened by gitlab-bot almost 4 years ago
Labels: Category:SAST, Deliverable, Enterprise Edition, GitLab Ultimate, backend, devops::secure, group::composition analysis, section::sec, type::maintenance

#53 - Update webrick gem, apk packages

Pull Request - State: merged - Opened by twoodham almost 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#52 - Bump urfave/cli with common to v2.3.0

Pull Request - State: merged - Opened by gitlab-bot almost 4 years ago
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#51 - Use multistage docker build

Pull Request - State: merged - Opened by theoretick about 4 years ago - 4 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#50 - Updating common

Pull Request - State: merged - Opened by zrice about 4 years ago - 14 comments
Labels: devops::secure, group::static analysis, section::sec

#49 - Feat: Reclassify Confidence as Severity

Pull Request - State: merged - Opened by theoretick about 4 years ago - 7 comments
Labels: Category:SAST, devops::secure, feature::addition, group::static analysis, section::sec, type::feature

#48 - Update brakeman to v4.10.0; update golang dependencies

Pull Request - State: merged - Opened by twoodham about 4 years ago - 6 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#47 - Programmatically enforce scanner version

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 2 comments
Labels: Category:Container Scanning, Category:Dependency Scanning [DEPRECATED], Category:SAST, Category:Software Composition Analysis, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, backend, devops::secure, group::composition analysis, quad-planning::complete-action, section::sec, security reports integration, type::maintenance

#46 - Remove SAST_DISABLE_DIND

Pull Request - State: merged - Opened by fcatteau about 4 years ago
Labels: Category:SAST, QA, backend, devops::secure, group::composition analysis, maintenance::pipelines, type::maintenance

#45 - Switch to master for QA

Pull Request - State: merged - Opened by fcatteau about 4 years ago - 5 comments
Labels: Category:SAST, QA, backend, devops::secure, group::composition analysis, maintenance::pipelines, type::maintenance

#44 - Upgrade to common v2.19.1

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 1 comment
Labels: backend, devops::secure, section::sec

#43 - Update ScannerVersion to match brakeman version

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::composition analysis, section::sec, type::maintenance

#42 - Update golang dependencies

Pull Request - State: merged - Opened by twoodham about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#41 - Upgrade to common v2.18.0

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 2 comments
Labels: backend, devops::secure, section::sec

#40 - Update brakeman to v4.9.1; update golang dependencies

Pull Request - State: merged - Opened by twoodham about 4 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#39 - Add start_time/end_time/status to reports

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 3 comments
Labels: Category:Container Scanning, Category:Dependency Scanning [DEPRECATED], Category:SAST, Category:Software Composition Analysis, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, Stretch, backend, devops::secure, group::composition analysis, quad-planning::complete-action, section::sec, security reports integration, type::feature

#38 - Change to alpine linux

Pull Request - State: merged - Opened by twoodham about 4 years ago - 13 comments
Labels: Category:SAST, Dogfooding, backend, devops::secure, feature::addition, group::static analysis, section::sec, type::feature

#37 - Release new version to upgrade go

Pull Request - State: closed - Opened by dsearles about 4 years ago - 7 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature, type::maintenance

#36 - Upgrade to common v2.14.0

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 1 comment
Labels: backend, devops::secure, section::sec

#35 - Update CONTRIBUTING.md

Pull Request - State: merged - Opened by dsearles about 4 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::maintenance

#34 - Add scan object to report

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 1 comment
Labels: Category:Container Scanning, Category:Dependency Scanning [DEPRECATED], Category:SAST, Category:Software Composition Analysis, Deliverable, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, backend, devops::secure, group::composition analysis, quad-planning::complete-action, security reports integration, type::feature, workflow::in dev

#33 - Bump brakeman to v4.9.0

Pull Request - State: merged - Opened by twoodham about 4 years ago - 3 comments
Labels: Stretch, backend, devops::secure, group::static analysis, type::maintenance

#32 - Update downstream QA job

Pull Request - State: merged - Opened by twoodham over 4 years ago - 8 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::pipelines, type::maintenance

#31 - Upgrade to common v2.10.4

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#30 - Update debug with a better description of command

Pull Request - State: merged - Opened by dsearles over 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::refactor

#29 - Standardize logging with logrus

Pull Request - State: merged - Opened by dsearles over 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::refactor

#28 - Switch to the MIT Expat license

Pull Request - State: merged - Opened by rossfuhrman over 4 years ago - 22 comments
Labels: Category:SAST, devops::secure, group::static analysis

#27 - Use a slim base image

Pull Request - State: merged - Opened by J0WI over 4 years ago - 3 comments
Labels: Community contribution, backend, backstage [DEPRECATED], devops::secure, group::static analysis

#25 - WIP: Run DIND and non-DIND QA

Pull Request - State: closed - Opened by rossfuhrman over 4 years ago

#22 - Use an Alpine base image

Pull Request - State: closed - Opened by J0WI over 4 years ago - 20 comments
Labels: Category:SAST, Community contribution, backend, backstage [DEPRECATED], devops::secure, group::static analysis