-
### Describe the bug
Disclaimer: Strictly speaking, this is probably a mixture of a bug and a feature request. But since it does cause unexpected error messages in the output, I'll qualify it as a …
-
Usage of cryptography might be liable to export control checks. Maybe ORT (or more specifically, its Analyzer) could be leveraged to semi-automate those checks on dependencies with the help of a tool …
-
### Describe the bug
I have my own `config.yml`. ORT recognizes it but does not apply the values given in it.
My config:
```yml
ort:
addAuthorsToCopyrights: true
```
### To Reproduce
…
-
I'm trying to install `minr` in RHEL server but get the below error when run `minr -Y ./xxx`. Could you provide some hints on how I can fix it?
```
# minr -v
minr-2.5.19
```
```
*** Error in…
-
### Describe the bug
The error occurs while attempting to generate a 'SpdxDocument' report, resulting in an OutOfMemoryError. The specific error message states: "UTF16 String size is 1310357935, sh…
-
### Describe the bug
Since Upgrading to ORT v22.8, SBOM files are empty for NPM (and NuGet) projects. This happens silently, no exit code is thrown.
### To Reproduce
Create a NPM Project …
mawl updated
2 months ago
-
* Related #3550
# cve-bin-tool: Product Mapping using PURLs
## Project description
CVE Binary Tool needs to identify components in order to scan for vulnerabilities, but uniquely identifying …
-
**Describe the bug**
When searching for CVE-2022-30187, there is only a single result belonging to GHSA being presented.
https://osv.dev/vulnerability/GHSA-64x4-9hc6-r2h6
The GHSA entry doesn't…
-
Please add PURL as a unique identifier to the schema as there is currently no way to identify software component vulnerabilities without a PURL lookup. https://github.com/package-url/purl-spec
-
## Bug Report
**Description:**
There is an exception arises in lpvs docker container when triggering webhook by openning Pull Request with empty commit
**Steps to Reproduce:**
1. Create empty …