-
Hi :)
With the goal of create relations between threat actors and vulnerabilities exploited/used, I would like to propose if it's possible include the field `cfr-vulnerabilities-exploited` as an of…
-
Tracing policies now support optional 'tags' https://tetragon.io/docs/concepts/tracing-policy/tags/, https://tetragon.io/docs/reference/grpc-api/#processkprobe including tracepoint and uprobes.
T…
-
CPE ID: cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
My env:
OS: RHEL 7 & 8
Build cve-search on Docker using "CVE Search Docker" project
Build number: 55b8795
Because I am using "CVE Search Docker…
-
We need to generate OSV records from historical and future CVE records in the NVD that we can determine to relate to Open Source Software.
These records will be keyed by commit.
A side-effect o…
-
Is your feature request related to a problem? Please describe.
When scanning images with trivy, there will be a report with all found CVEs. That's great. One can also decide to allow image distributi…
-
Elastic forked [`react-datepicker`](https://www.npmjs.com/package/react-datepicker) in order to add some accessibility improvements. It was forked on version 2.0.0, where the latest version is 4.8.0. …
-
Hi everyone! 👋
We are using the `docker/scout-action` in our CD pipeline, and we started getting 403 errors from the `cves` command today. The error looks like this:
```
Error: API operation fai…
velll updated
3 weeks ago
-
New check idea: Macaron can look for CVEs against the build platform/CI service version that builds an artifact.
The idea of this new check was originally motivated by this security update from GitLa…
-
In the KServe community, there are some users looking to use a newer Tensorflow and Python version to reduce the numbers of CVEs. Here is the related issue.
https://github.com/kserve/kserve/pull/2364
-
## CVE-2022-28388 - Medium Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.313
The Linux Kernel
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?wsslib=linux
F…