-
It would be helpful to scan commits in BitBucket for strings such as URLs and passwords to give users peace of mind before they push this code to GitHub to contribute to OpenDevStack.
Possible solu…
-
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Rate-Limited
These updates a…
-
### Current Behavior
I created a new project and imported an SBOM of an old version of debian-slim. Trivy reports vulnerabilities but dependencyTrack doesn't. I created a Sonatype OSS account and con…
-
My Security Team has run a scan on this extension that I love and found that the moment.js version have critical security problems.
Vulnerability Details:
The Moment JavaScript library (moment.js)…
-
Hello!
Forgive me if I am not using the extension correctly but I cannot seem to get it to work on 1.43.2 which is the latest version as of 31/03/2020.
I am able to install the plugin and run 'Sny…
-
**Is your feature request related to a problem? Please describe.**
3rd dependencies are vulnerable. Synk provides monitoring for 3rd party dependencies.
**Describe the solution you'd like**
Add s…
-
## The dependency [snyk](https://github.com/snyk/snyk) was updated from `1.230.5` to `1.230.6`.
🚨 [View failing branch](https://github.com/hikerpig/vue-classify/compare/master...hikerpig:greenkeeper…
-
Title: Snyk: snowflake-jdbc net.snowflake:snowflake-jdbc 3.9.2
Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/6d5c1943-5315-40d0-a…
-
## CVE-2022-24441 - High Severity Vulnerability
Vulnerable Library - snyk-1.316.1.tgz
snyk library and cli utility
Library home page: https://registry.npmjs.org/snyk/-/snyk-1.316.1.tgz
Path to depen…
-
- [x] I have read the [SECURITY.md](https://github.com/GoogleContainerTools/distroless/blob/main/SECURITY.md)
- [x] I understand that this repo tracks debian package releases and cannot fix debian CV…