Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitLab.com / gitlab-org/security-products/analyzers/nodejs-scan issues and pull requests

#138 - SASTBot: Monthly dependency updates for 16.0

Pull Request - State: merged - Opened by group_2452873_bot_aa678754a330f84d61c76a96786c08b7 over 1 year ago - 3 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#137 - Add myself as a maintainer

Pull Request - State: merged - Opened by jamesliu-gitlab over 1 year ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#136 - Bump nodejs-scan to next major version

Pull Request - State: merged - Opened by serenafang over 1 year ago - 14 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#135 - SASTBot: Monthly dependency updates for 15.11

Pull Request - State: merged - Opened by group_2452873_bot_aa678754a330f84d61c76a96786c08b7 over 1 year ago - 10 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance, workflow::in dev

#134 - Upgrade all packages to the latest version

Pull Request - State: merged - Opened by craigmsmith over 1 year ago - 9 comments
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#133 - SASTBot: Monthly dependency updates for 15.10

Pull Request - State: closed - Opened by ghost1 over 1 year ago - 2 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#132 - Refactor convert_test

Pull Request - State: merged - Opened by craigmsmith over 1 year ago - 7 comments
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::refactor, section::sec, type::maintenance

#131 - SASTBot: Monthly dependency updates for 15.10

Pull Request - State: closed - Opened by craigmsmith over 1 year ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#130 - SASTBot: Monthly dependency updates for 15.9

Pull Request - State: merged - Opened by ghost1 over 1 year ago - 8 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#129 - SASTBot: Monthly dependency updates for 15.8

Pull Request - State: merged - Opened by ghost1 almost 2 years ago - 10 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#128 - Log njsscan errors at the WARN level

Pull Request - State: merged - Opened by jamesliu-gitlab almost 2 years ago - 6 comments
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::usability, section::sec, type::maintenance

#127 - SASTBot: Monthly dependency updates for 15.7

Pull Request - State: merged - Opened by ghost1 almost 2 years ago - 3 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#126 - SASTBot: Monthly dependency updates for 15.6

Pull Request - State: merged - Opened by group_2564205_bot almost 2 years ago - 9 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, maintenance::dependency, section::sec, type::maintenance

#125 - SASTBot: Monthly dependency updates for %15.5

Pull Request - State: closed - Opened by vbhat161 about 2 years ago - 4 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance, workflow::in dev

#124 - Update common to v3.2.1 to fix gotestsum cmd

Pull Request - State: merged - Opened by adamcohen about 2 years ago - 4 comments
Labels: Category:SAST, backend, devops::secure, group::composition analysis, maintenance::pipelines, section::sec, type::maintenance

#123 - Fix error message parsing from report

Pull Request - State: merged - Opened by arpitgogia about 2 years ago - 6 comments
Labels: Category:SAST, bug::functional, devops::secure, group::static analysis, section::sec, type::bug

#122 - SASTBot: Monthly dependency updates for %15.4

Pull Request - State: merged - Opened by group_2564205_bot about 2 years ago - 2 comments
Labels: Category:SAST, automation:bot-authored, backend, devops::secure, group::static analysis, section::sec, type::maintenance, workflow::in dev

#121 - SASTBot: Monthly dependency updates for %15.3

Pull Request - State: merged - Opened by vbhat161 about 2 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance, workflow::in dev

#120 - bumping command version

Pull Request - State: merged - Opened by zrice about 2 years ago - 5 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#119 - Downgrade libsast to 1.5.0

Pull Request - State: merged - Opened by jamesliu-gitlab over 2 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::bug

#118 - [Bulk Update] Bump core deps

Pull Request - State: merged - Opened by jamesliu-gitlab over 2 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#117 - Draft: [Bulk Update] Bump core deps

Pull Request - State: closed - Opened by jamesliu-gitlab over 2 years ago
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#116 - Bump nodejs-scan to v3.0.0 for 15.0 release

Pull Request - State: merged - Opened by zrice over 2 years ago - 6 comments
Labels: devops::secure, group::static analysis, section::sec, type::maintenance

#115 - chore: Pin ruamel to fix broken master

Pull Request - State: merged - Opened by theoretick over 2 years ago - 4 comments
Labels: Category:SAST, devops::secure, group::static analysis, master:broken, section::sec, test

#114 - chore: fix group reference in CODEOWNERS

Pull Request - State: merged - Opened by theoretick over 2 years ago - 1 comment
Labels: Category:SAST, devops::secure, group::static analysis, maintenance::workflow, type::maintenance

#113 - Add ruleset override support

Pull Request - State: merged - Opened by rossfuhrman over 2 years ago - 2 comments
Labels: Category:SAST, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#112 - chore: drop `SEC_REGISTRY_IMAGE`

Pull Request - State: merged - Opened by theoretick over 2 years ago - 1 comment
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#111 - bump njsscan

Pull Request - State: merged - Opened by zrice over 2 years ago - 12 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#110 - Upgraded python version

Pull Request - State: merged - Opened by rpandini_wh almost 3 years ago - 14 comments
Labels: 1st contribution, Community contribution, devops::secure, group::dynamic analysis, section::sec, type::maintenance

#109 - Update to common v2.24.1

Pull Request - State: merged - Opened by adamcohen almost 3 years ago - 2 comments
Labels: Category:Dependency Scanning [DEPRECATED], Category:Software Composition Analysis, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, Stretch, backend, devops::secure, group::composition analysis, section::sec, secure:refinement-backend, type::bug

#108 - Adding rule pack synthesis support to nodejs-scan

Pull Request - State: merged - Opened by julianthome almost 3 years ago - 9 comments
Labels: Category:SAST, devops::secure, feature::addition, group::vulnerability research, section::sec

#107 - chore: Upgrade go to v1.17

Pull Request - State: merged - Opened by theoretick almost 3 years ago - 4 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#106 - chore: Use ruleset.ProcessPassthrough

Pull Request - State: merged - Opened by theoretick about 3 years ago - 7 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, section::sec, type::feature

#105 - Add SEC_REGISTRY_IMAGE

Pull Request - State: merged - Opened by dsearles about 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#104 - bump njsscan

Pull Request - State: merged - Opened by zrice about 3 years ago - 14 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#103 - Remove old MAJOR variable

Pull Request - State: merged - Opened by dsearles over 3 years ago
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#102 - Remove SAST_DEFAULT_ANALYZERS usage

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 1 comment
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#101 - chore: Prefer MAX_IMAGE_SIZE_MB over MAX_IMAGE_SIZE_BYTE

Pull Request - State: merged - Opened by theoretick over 3 years ago
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#100 - Move to SAST_EXCLUDED_ANALYZERS

Pull Request - State: merged - Opened by rossfuhrman over 3 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#99 - update CONTRIBUTING.md

Pull Request - State: merged - Opened by twoodham over 3 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#98 - Bump njsscan

Pull Request - State: merged - Opened by zrice over 3 years ago - 10 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis

#97 - Add CODEOWNERS

Pull Request - State: merged - Opened by twoodham over 3 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::workflow, section::sec, type::maintenance

#96 - Updating njsscan to 0.2.4

Pull Request - State: merged - Opened by zrice over 3 years ago - 10 comments
Labels: Category:SAST, SOX Reviewed, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#95 - Updating schema

Pull Request - State: merged - Opened by zrice over 3 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::maintenance

#94 - Updating njsscan

Pull Request - State: merged - Opened by zrice over 3 years ago - 10 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#93 - Revert "Merge branch 'master' into 'master'"

Pull Request - State: merged - Opened by zrice over 3 years ago - 3 comments

#92 - Bugfix For Empty Vulnerabilities Output File When Vulnerabilities Exist

Pull Request - State: merged - Opened by nathanl75 over 3 years ago - 8 comments
Labels: Category:SAST, Community contribution, backend, devops::secure, group::static analysis, section::sec, type::bug

#91 - Update Dockerfile

Pull Request - State: merged - Opened by zrice over 3 years ago - 4 comments
Labels: Category:SAST, backend, devops::secure, feature::enhancement, group::static analysis, type::feature

#90 - Use split common packages directly

Pull Request - State: merged - Opened by theoretick almost 4 years ago - 11 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::maintenance

#89 - Upgrade to common v2.22.1

Pull Request - State: merged - Opened by gitlab-bot almost 4 years ago - 1 comment
Labels: Category:SAST, Deliverable, Enterprise Edition, GitLab Ultimate, backend, devops::secure, group::composition analysis, section::sec, type::maintenance

#88 - Update njsscan to v0.1.9

Pull Request - State: merged - Opened by twoodham almost 4 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#87 - fix: Correct report `scanner.id` as nodejs-scan

Pull Request - State: merged - Opened by theoretick almost 4 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, section::sec, type::bug

#86 - Bump urfave/cli with common to v2.3.0

Pull Request - State: merged - Opened by gitlab-bot almost 4 years ago - 2 comments
Labels: backend, devops::secure, group::static analysis, section::sec, type::maintenance

#85 - Adds missing comma to readme

Pull Request - State: merged - Opened by zrice almost 4 years ago - 6 comments

#84 - Update njsscan to v0.1.8

Pull Request - State: merged - Opened by twoodham almost 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#83 - Add better error handling and fix some bugs

Pull Request - State: merged - Opened by dsearles almost 4 years ago - 17 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::bug

#82 - Update common

Pull Request - State: merged - Opened by zrice about 4 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::feature

#81 - Remove SAST_DISABLE_DIND

Pull Request - State: merged - Opened by fcatteau about 4 years ago
Labels: Category:SAST, QA, backend, devops::secure, group::composition analysis, maintenance::pipelines, type::maintenance

#80 - Njsscan update

Pull Request - State: merged - Opened by zrice about 4 years ago - 83 comments
Labels: Category:SAST, backend, devops::secure, feature::addition, group::static analysis, section::sec

#79 - Warn if no files match instead of returning error

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 3 comments
Labels: Category:Dependency Scanning [DEPRECATED], Category:Software Composition Analysis, Deliverable, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, backend, customer, devops::secure, group::composition analysis, priority::2, regression, regression:12.10, section::sec, severity::3, type::bug

#78 - Upgrade to common v2.19.1

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 1 comment
Labels: backend, devops::secure, section::sec

#77 - Fix bug which prevented writing ADDITIONAL_CA_CERT_BUNDLE value to /etc/gitconfig

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 2 comments
Labels: Category:SAST, customer, devops::secure, group::composition analysis, priority::3, section::sec, severity::2, type::bug

#76 - Update common library and golang deps

Pull Request - State: merged - Opened by twoodham about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#75 - Update base docker image

Pull Request - State: merged - Opened by twoodham about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#74 - Upgrade to common v2.18.0

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 2 comments
Labels: backend, devops::secure

#73 - Upgrade to common v2.17.0

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago - 2 comments
Labels: backend, devops::secure, section::sec

#72 - Update node and supporting JS dependencies

Pull Request - State: merged - Opened by twoodham about 4 years ago - 10 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, security, type::maintenance

#71 - Remove old reference to common package

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 1 comment
Labels: Category:SAST, Enterprise Edition, GitLab Ultimate, backend, devops::secure, group::composition analysis, section::sec, type::feature

#70 - Add start_time/end_time/status to reports

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 7 comments
Labels: Category:Container Scanning, Category:Dependency Scanning [DEPRECATED], Category:SAST, Category:Software Composition Analysis, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, Stretch, backend, devops::secure, group::composition analysis, quad-planning::complete-action, section::sec, security reports integration, type::feature

#69 - Release new version to upgrade go

Pull Request - State: merged - Opened by dsearles about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#68 - Move downstream QA expectations into the project

Pull Request - State: merged - Opened by theoretick about 4 years ago - 3 comments
Labels: Category:SAST, devops::secure, group::static analysis, type::maintenance

#67 - Update node and supporting dependencies

Pull Request - State: merged - Opened by twoodham about 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, section::sec, type::maintenance

#66 - Upgrade to common v2.14.0

Pull Request - State: closed - Opened by gitlab-bot about 4 years ago
Labels: backend, devops::secure, section::sec

#65 - Update CONTRIBUTING.md

Pull Request - State: merged - Opened by dsearles about 4 years ago - 1 comment
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::maintenance

#64 - Add scan object to report

Pull Request - State: merged - Opened by adamcohen about 4 years ago - 7 comments
Labels: Category:Container Scanning, Category:Dependency Scanning [DEPRECATED], Category:SAST, Category:Software Composition Analysis, Enterprise Edition, GitLab Ultimate, SCA:Dependency Scanning, backend, devops::secure, group::composition analysis, quad-planning::complete-action, security reports integration, type::feature

#63 - Update SAST configuration to not use DinD

Pull Request - State: merged - Opened by twoodham over 4 years ago - 2 comments
Labels: Category:SAST, Quality, backend, devops::secure, group::static analysis, maintenance::pipelines, type::maintenance

#62 - Upgrade to common v2.10.4

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago - 1 comment
Labels: backend, devops::secure, section::sec

#61 - Update JS dependencies to latest versions

Pull Request - State: merged - Opened by twoodham over 4 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::maintenance

#60 - Switch to the MIT Expat license

Pull Request - State: merged - Opened by dsearles over 4 years ago - 2 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, type::feature

#59 - Standardize logging with logrus

Pull Request - State: merged - Opened by dsearles over 4 years ago - 3 comments
Labels: Category:SAST, backend, devops::secure, group::static analysis, maintenance::refactor

#58 - Add option to disable babel scan

Pull Request - State: merged - Opened by zrice over 4 years ago - 14 comments
Labels: Category:SAST, backend, group::static analysis, type::feature

#57 - WIP: Verify issue 199731

Pull Request - State: closed - Opened by thiagocsf over 4 years ago
Labels: devops::govern

#56 - Upgrade to common v2.10.0

Pull Request - State: merged - Opened by gitlab-bot over 4 years ago - 8 comments
Labels: Category:SAST, backend, backstage [DEPRECATED], devops::secure, group::static analysis

#55 - Upgrade to common v2.9.2

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#54 - Upgrade to common test-tag-1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#53 - Upgrade to common v2.9.2

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#52 - Upgrade to common v2.9.2

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#51 - Update third-party dependencies to latest versions

Pull Request - State: merged - Opened by twoodham over 4 years ago - 5 comments
Labels: Category:SAST, Deliverable, devops::secure, group::static analysis, type::feature

#50 - Trigger test projects using multi-pipeline

Pull Request - State: merged - Opened by rossfuhrman over 4 years ago - 2 comments
Labels: Category:SAST, backend, backstage [DEPRECATED], devops::secure, group::static analysis

#49 - Move test-custom-ca-bundle to dev include

Pull Request - State: merged - Opened by dsearles over 4 years ago - 1 comment
Labels: Category:SAST, backend, backstage [DEPRECATED], devops::secure, group::static analysis

#48 - Upgrade to common v2.9.1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#47 - Upgrade to common v2.9.1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#46 - Upgrade to common v2.9.1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#45 - Upgrade to common v2.9.1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, devops::secure

#44 - Upgrade to common v2.9.1

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago

#43 - Add job to upgrade common library

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, backstage [DEPRECATED], devops::secure, group::composition+analysis

#42 - Upgrade common library

Pull Request - State: closed - Opened by gitlab-bot over 4 years ago
Labels: backend, backstage [DEPRECATED], devops::secure, group::composition+analysis

#39 - WIP: Test ci-template for nodejs

Pull Request - State: closed - Opened by ssarka over 4 years ago - 3 comments

#24 - Remove babel loop

Pull Request - State: merged - Opened by plafoucriere almost 5 years ago - 24 comments
Labels: Category:SAST, devops::secure, group::static analysis, static code analysis, type::bug

#7 - Add babel-plugin-transform-decorators-legacy

Pull Request - State: closed - Opened by maxjbo about 6 years ago - 9 comments
Labels: Category:SAST, Community contribution, backend, backstage [DEPRECATED], devops::secure, group::static analysis