-
Currently 92 missing advisories:
* [ ] 2021-09-01: https://github.com/advisories/GHSA-hw4v-5x4h-c3xm for ["frontier"]
* [ ] 2021-09-20: https://github.com/advisories/GHSA-mc22-5q92-8v85 for ["trem…
-
@CharliePatterson Please can you add some context to this ticket? 🙏🏻
-
Currently, we only enforce that a `csaf_security_advisory` has at least one `product_status`. That allows the production of CSAF security advisories with all products in status `fixed`. One might impl…
-
Why do you use `pg_try_advisory_lock` and not just simple `pg_advisory_lock` which will avoid polling in SQL?
You can plan with this example:
```ruby
def with_advisory_lock(lock_id)
exe…
-
See https://liferay.dev/portal/security/known-vulnerabilities
-
See https://www.siemens.com/global/en/products/services/cert.html#SiemensSecurityAdvisories
-
## Versions/Environment
What version of Rust are you using?
1.82.0
What versions of the driver and its dependencies are you using? (Run
`cargo pkgid mongodb` & `cargo pkgid bson`)
registry+ht…
-
Some package managers like Rust's provide a category to their issues' metadata. I think it really helps keep things organized. A given advisory could have multiple categories, even though I believe mo…
-
```
# npm audit report
async 2.0.0 - 2.6.3
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
Depends on vulnerable versions of lodash
fix available via …
-
### Current Behavior
Some commercial software vendors provide advisory information in CSAF 2.0 format. These include RedHat and Oracle, among others. There isn't currently a good way to identify vu…