-
Hi,
I'm running into an issue while trying to scan my project for a casa tiers 2 assesments.
SAST and SCA scan are working fine but APK scan is not.
I'm using the latest docker image on Mac OS.
…
-
This looks like a good choice: https://github.com/OSSIndex/auditjs
-
Hi all,
I was updating a spring dependency recently to resolve a CVE. The dependency submission action ran on main. Now when I look at the dependency graph, I see two versions of the same dependenc…
-
We should look into the vulnerability scanning and our options compared to just dependabot.
@mykaul sugested to have a look at https://github.com/aquasecurity/trivy for example
-
### Expected Behavior
I want the list of dependencies but including the projects, basically the output should be similar to the result of this small shell script I keep in a `Makefile`
```
./grad…
-
Does anyone else see this issue on macOS 15? This was working on macOS 14.
```
$ sudo arp-scan -l
WARNING: Could not obtain IP address for interface ap1. Using 0.0.0.0 for
the source address, w…
-
Hi,
We're using 'grunt' v1.6.1 as a dependency in our project.
As a part of Black Duck scan, the below issue has been identified:
"**Node.js is vulnerable to a remote code execution (RCE). …
-
**Is your feature request related to a problem? Please describe.**
I want to run X-Ray scans without depending on either Artifactory or GitHub Actions.
**Describe the solution you'd like to see**
P…
-
should use a tests-requirements.txt file for pinning test dependencies and ensure versions/hashs are noted when possible.
Tracking issue for:
- [x] https://github.com/reactive-firewall/python-re…
-
The installation and use of *omtimize-matrix-GA* currently depends on RSAT for the sequence scanning tool *matrix-scan-quick*, implemented in C. This dependency imposes to have either an RSAT suite (e…