-
cc @javoire
My organization maintains an internal package that was recently discovered to have a couple of high security vulnerabilities in transitive dependencies (namely, [lodash.template ](https…
-
### What happened?
Security vulnerability scanners like Twistlock and Snyk are reporting security vulnerabilities as terrajet uses
Point the [Snyk](https://app.snyk.io/login?cta=html-button-c…
-
ORT could also apply [LFX Security Platform](https://security.lfx.linuxfoundation.org), to do so we need to provide below data:
- Project Name: OSS Review Toolkit
- Project Accent Color: Hex color…
-
***
☝️ **Important announcement:** Greenkeeper will be saying goodbye 👋 and passing the torch to Snyk on June 3rd, 2020! [Find out how to migrate to Snyk and more at greenkeeper.io](https://greenkeep…
-
Hello!
I have installed the docker scan utility as described here:
https://docs.docker.com/engine/scan/#known-issues
I have used docker scan against the "vulnerable" CVE-2021-44228 docker …
-
**Description**
docker scan command fails with local image after docker build step.
```
docker scan kubernetes-template:202201130950
10:53:07 Failed to scan image "kubernetes-template:202201…
-
I think it's a good idea to take a look at the Docker image in general in aspects of security measurements.
Some good ideas to improve security and quality:
- [ ] Change container user to a less p…
-
### Description
Hello,
According to snyk.io, video js present a security issue cause by xmldom@0.7.6 imported by mpd-parser, updating to 0.7.7 would fix it.
Introduced through : video.js@8.2.0 …
-
Code Review for the following files:
- post_contact.php
- SMTP.php
-
# Question/Comment on the Forest Service RFP
## Name and affiliation
Thomas Delrue, Lead Software Architect, VariQ Corporation
## Section of RFP documents
[Epics](https://github.com/18F/its70-…