-
Each time bomber is run, the vulnerability database is downloaded. For multiple scans of SBOMs, this is not ideal and it would be good if the database download could be controlled particularly if the …
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0xc454e59a3a6bcded06ae61257c38a5cf98255737ede752b8a7c454efb38dab97
**Severity:** medium
**Description:**
**Descriptio…
-
We're currently stuck on OpenSearch 2.7 and OpenSearch Dashboards 2.7.
The official 2.7 image on dockerhub hasn't been updated in 10 months and has several critical vulnerabilities in the Linux ope…
-
Received an email from Joshua Quiring (Sr. Security Administrator in PSA) regarding vulnerabilities in our application. See link for details: https://bcgov.sharepoint.com/:x:/r/teams/02915/Shared%20Do…
-
### 🔖 Summary
OWASP DefectDojo is an open-source application vulnerability management tool designed to help organizations manage and track the security testing efforts of their software projects, a p…
-
These are the links to the process which i was provided by the VRM team: https://intranet.gov.bc.ca/thehub/ocio/ocio-enterprise-services/information-security-branch/vulnerability-and-risk-management/w…
-
Hi,
I would congratulate with you because that is a great project but I'm going to describe some "usability problems" that for me needs an improvement to make this project even better:
Our environ…
-
[//]: # (Copyright Siemens AG, 2021. Part of the SW360 Portal Project)
[//]: # (This program and the accompanying materials are made)
[//]: # (available under the terms of the Eclipse Public License…
-
License Endpoint Central
https://github.com/crackmanageengine
-
I would like to understand what is the Security and Vulnerability management on this repository. Is there a policy in place documented? Currently I don't see one [here](https://github.com/usebruno/bru…