-
I'm using [dependency-check==0.6.0](https://pypi.org/project/dependency-check/0.6.0/) from pypi to perform a scan with command`dependency-check --scan /my/scan/path --format JSON`. The scan process s…
-
### What happened + What you expected to happen
Hi, I'm using vllm's latest image vllm/vllm-openai:latest which is using ray 2.37.0. The twistlock scan showed it contained high severity security vul…
-
Running a gradle task 'allTests' (kotlin-multiplatform) the dependency check is run without us actually wanting this.
I assume the task is not part of the test-group and thus not skipped.
Thus t…
-
### Summary:
`osv-scanner` fails to identify multiple third-party projects in the WebKit project while scanning for vendored code dependencies.
### Steps to Reproduce:
1. Check out WebKit (at com…
-
**Describe the bug**
I follow the instructions to install and run from the readme
**To Reproduce**
```
python -m venv venv
.\venv\Scripts\activate
python -m pip install --upgrade pip
pip inst…
-
Hi, I was trying to scan the site and came across this error. I don't know what the problem is, it's an exchange folder with an external product accounting system, maybe the file was deleted during th…
-
### Which @angular/* package(s) are relevant/related to the feature request?
_No response_
### Description
Automating the import of necessary component dependencies would significantly enhance deve…
-
I would like `safety` to be able to read dependencies from a `poetry.lock` file. It is written in TOML format.
Here is an example of how a dependency is written:
```toml
[[package]]
category =…
-
There are lots of high and critical vulnerabilities that were scanned by [trivy](https://github.com/aquasecurity/trivy).
The scanning result of cluster-autoscaler:v1.23.0 is as follows, v1.22.0 and v…
-
I encountered an error after downloading the dependencies and starting the project. I checked three.js version 1.66 and could not find LinearEncoding. Is there an issue with the version of three.js I …