-
e.g., https://github.com/CycloneDX/bom-examples/tree/master/VEX/Use-Cases/Case-4
For false positives like:
- #1571
-
I am trying to find out if the Artifact Registry has vulnerability scanning enabled. I am not able to find this information via the project settings or repository details, but I'd like to be able to r…
-
Per [Information Integrity Procedure](https://docs.google.com/document/d/1KWBwFyWCbLVDKqUYmY05oh8XZRdI0ZSVhn64XytrjKw), SI-03:
Specify a procedure to address the receipt of false positives during mal…
-
* What problem are you trying to solve?
We are currently in the process of setting up vulnerability scanning of our software products, including our .NET applications.
Microsoft offers support for t…
-
**Is your feature request related to a problem? Please describe.**
Integrate Trivy code scanning in Github action
https://github.com/aquasecurity/trivy-action
**Describe the solution you'd like…
-
First of all, thanks for a great piece of software!
We had some problems with one of our clients not being able to access their website. Everything looked OK on our side and monitoring confirmed th…
-
**User Stories**
As a VIC Admin, I should be able to prevent containers based on vulnerable images from running in production environments
**Acceptance Criteria**
A set of sized user-stories …
-
### Host operating system: output of `uname -a`
n/a
### node_exporter version: output of `node_exporter --version`
1.8.2
### node_exporter command line flags
n/a
### node_exporter lo…
-
Document the plan of implementation for each component identified in the Component Definition Issue. Work content into a snippet for the OSCAL model.
-
Microsoft Defender for cloud on Azure has detected a vulnerability CVE-2022-44729 in apache-jmeter-5.6.3 Please find report below
`Critical and High severity vulnerabilities detected in your CN…