-
## CVE-2023-2976 - Medium Severity Vulnerability
Vulnerable Library - guava-31.1-jre.jar
Guava is a suite of core and expanded libraries that include
utility classes, Google's collections, I/O c…
-
Enable CodeQL as static analysis tool for non-C/C++ code scanning.
GitHub Action example: https://github.com/intel/pcm/actions/runs/9637488979/job/26576790870
Doc: https://docs.github.com/en/code-…
-
Currently, the Helm Chart sets by default no security context, and users who want to set it to something specific can do so through the values options. Ideally, we would want to set the context to mat…
-
### Is your feature or enhancement related to a problem? Please describe.
At the current time there is no way to integrate a virus scanner like ClamAV to file upload process, malicious users can up…
-
I am trying to check for object-level delete permission on a custom object before performing a DML delete operation on it.
The check is performed as it is shown in documentation here: https://devel…
-
[//]: # (Copyright Siemens AG, 2021. Part of the SW360 Portal Project)
[//]: # (This program and the accompanying materials are made)
[//]: # (available under the terms of the Eclipse Public License…
-
## Expected outcome
Investigate if SQL Password is needed in connection strings. Can we use entra-id in stead? What must be set up in azure, and how to set up radix.
Following keyvaults are us…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Security policy not enabled.
A SECURITY.md file can give users information about w…
-
Vulnerable Library - spring-boot-starter-oauth2-client-3.1.5.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-s…
-
Hey ciur, thank you for this amazing project ! Maybe im too simple to understand but im trying to set papermerge up and create a folder which will be used by my scanner to upload scanned files into pa…