-
Title: Building an Open-Source Network Scanning Tool
Description: We propose creating an open-source network scanning tool that combines essential features for security professionals and developers…
-
**Description of the issue**
I am trying to use code scanning in two of my projects (a [Java](https://github.com/Pabloo-ss/BazelJavaApp/blob/master/.github/workflows/codeql.yml) and a [Go](https://…
-
[copa](https://github.com/project-copacetic/copacetic) is a CLI tool written in Go and based on buildkit that can be used to directly patch container images given the vulnerability scanning results fr…
-
**Describe the improvement**
Hello Cohere team,
Currently, there is a lack of license information in the package metadata available on pypi. This can induce problems with multiple compliance too…
-
### Motivation
We use a few third-party tools which we need secrets for:
- DeepL
- SUMM.AI
- TextLab/HIX
- Firebase Cloud Messaging
In addition to the default secrets in our Django core base…
-
Support for this should really be added to home servers. This is actually something that CloudFlare supports although Cloud Flare is unlikely to fix the problem. There needs to be something for home s…
-
Enable CodeQL as static analysis tool for non-C/C++ code scanning.
GitHub Action example: https://github.com/intel/pcm/actions/runs/9637488979/job/26576790870
Doc: https://docs.github.com/en/code-…
-
**Description of the issue**
Whenever I execute code scanning and generate a SARIF file, I always read and parse it in standard JSON format, which makes it difficult to display. Are there any tools o…
-
Would it be possible to bump path-to-regexp to a more recent version that contains the fixes for CVE-2024-45296. The current dependency on 2.4.0 is causing our application to be flagged by our custome…
-
The CodeQL default setup for `C/C++` that GitHub rolled out automatically does not work on our repo.
The build command does not succeed and needs some manual tweaking.
See https://github.com/Cocka…