-
Range versions are problematic in context of financial applications. Suppose some package is specified in dependencies as `^1.0.0`. This means that on `npm install`, when `1.0.1` is released, it would…
-
If we're intent on making the "write a swift app, use some java libs" workflow real we're going to need to handle dependencies. Very few libraries are just one jar, and managing this by hand is not re…
ktoso updated
3 weeks ago
-
### This ticket is manly for Nuvla setup
Hi, I've been testing the performance and even though it seems like it writes in parallel at the end when I select with reports the cpus don't work at 100% d…
-
Hi there,
just noticed the plugin has been deprecated but no further information was given.
Could someone please elaborate why this decision was made and if there will be an alternative provided…
-
Vulnerable Library - github.com/dgriJalva/jwt-go-v3.2.0+incompatible
ARCHIVE - Golang implementation of JSON Web Tokens (JWT). This project is now maintained at:
Library home page: https://proxy.gol…
-
### Describe the issue
When I have a profile that includes the Trusty ruletype
And I create a PR that adds a dependency
Then Minder comments on the PR stating that the Trusty score is 0
This can…
-
Hello Athom,
I am trying to develop an app to bridge homey devices to Matter, like Homekitty or you Homekit experiment.
Right now I have a very low amount of memory to work with, I am using proj…
-
Vulnerable Library - expo-51.0.32.tgz
Path to dependency file: /package.json
Path to vulnerable library: /node_modules/execa/node_modules/cross-spawn/package.json
Found in HEAD commit: c13b3dabe…
-
- added bower_components because of broken links to css and js libraries but this really bloated the project with unnecessary files
- try to find hosted versions of the angular related files. http:/…
-
### Description
The results of the refactoring shall be made measurable and presentable.
### Acceptance Criteria
- [X] For each latest major version, Workflow Analyzer results are availab…