-
Hi I'm trying to scan my Gitlab project using owasp/dependency-check:latest open source
without success, the json file I'm trying to get was not created and in the test phase the following output is…
-
Hello!
Was checking out the project and think it's cool. If this does what I think it does, i.e. it can scan a certain line for secrets using regexes / checks, are you planning to make a crate for it…
-
**Describe the bug**
Not a bug per-se but a package dependency update request. Our AWS vuln scanning (Wiz.io) is picking up signatures for this CVE from file system builds and package dependencies…
-
### Current Behavior
From my testing Artifact transforms for external modules are exectued in parallel. Artifact transforms for project dependencies are executed sequential. This can cause severe p…
-
We are not using a pull requests, we tried using it for normal push as follows, however it seems to be not working as we want it to be.
Here is our usecase:
- We want to ensure no one is pushin…
-
### Expected Behavior
I should be able to make unrelated changes to my local build configuration without invalidating all Artifact Transforms from external plugins.
### Current Behavior
When I use …
-
Listing unnecessary libraries in the `(libraries ...)` field of executables and libraries is not harmless at the moment due to the way dependencies are computed in Dune: this can cause potentially a l…
-
### Is there an existing issue for this problem?
- [X] I have searched the existing issues
### Operating system
Windows
### GPU vendor
Nvidia (CUDA)
### GPU model
3090
### GPU VRAM
24gb
### …
-
CodeQL: https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning
Dependabot: https://docs.github.com/en/code-security/dependabot/dependabot-version-upd…
-
**Is your feature request related to a problem? Please describe.**
Knot.x Dependencies groups most of the dependencies versions that whole Knot.x ecosystem is using. I'd like to automate those depend…