-
### Describe the bug
When reporting license violations, severity is not reported, both in the PR scan as well as Repo scan. Xray on-demand scans do include severity information for licenses. Also, a …
-
### Describe the bug
The current docs suggest that command options can be used to configure the url and auth options for the xray server when scanning. https://docs.jfrog-applications.jfrog.io/jfro…
-
### Describe the bug
the plugin currently only accepts global credentials that are available to all jenkins users/jobs/.. This poses a security risk as this credential can be read by any user. Instea…
-
### Describe the bug
Could you please help us to resolve below error: …
-
### Describe the bug
Using following command to publish a terraform module and want to exclude .git and .github directories. Published module zip file contains the excluded directories.
`jf terraf…
-
Hello!
I am researching on the JFrog XRay functionality for the SAST.
And I could not find any information on how JFrog XRay is performing its scans. Does it build out the whole environment in the…
-
Hello,
We're trying to scan a java license written in a java file using the xray analysis features.
To do this, we use jfrog cli for the maven build and for scan.
**To Reproduce**
```
jfrog…
-
### Describe the bug
JFrog CLI stops, after finding existing write protected file in the same location instead of prompting for action (overwrite/skip) in interactive mode and allow us to globally se…
-
### Describe the bug
If we try to authenticate with token Verify is greyed out and if you try with Basic Authentication user password and then go back to Token based it sometimes work - seems to be i…
-
### Describe the bug
`jf scan` failed to index tar file downloaded with `skopeo` as container image. I've tried that with oci and v2 format (see logs below). Also the command exits with `Scan compl…