-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Security policy not enabled.
A SECURITY.md file can give users information about w…
-
Stored XSS vulnerability in Version 2.0 which allows remote attacker to inject arbitrary script or html. This being stored, will impact all users who have permissions to view the vulnerable page.
V…
-
**Github username:** --
**Twitter username:** itsabinashb
**Submission hash (on-chain):** 0xacee50e90397527cb53e289f6428f9902f3146dcc588a6d449d179f65adfe116
**Severity:** high
**Description:**
** De…
-
There was a CVE (High severity) on a dependency hashicorp/go-getter that is fixed in their version 1.7.5.
Using trivy to scan a container, we can see that this image contains the version v1.7.1.
If …
-
```
What steps will reproduce the problem?
1. Use warning level 3 on the attached file
What is the expected output? What do you see instead?
I expect this to run clean.
What version of the product a…
-
```
What steps will reproduce the problem?
1. Use warning level 3 on the attached file
What is the expected output? What do you see instead?
I expect this to run clean.
What version of the product a…
-
https://github.com/canonical/postgresql-operator/blob/602d9bc61010cdf5898eaa8069583b225b192fa6/README.md#L152-L153
The README suggests not to use this Github repository for reporting security issue…
-
There is High vulnerability reported with current dependency version of json-20230618.jar. Please bump json-20230618.jar to json-20240303.jar.
-
I have two problems with this tool
1- I think there is a problem with encoding because it does not display the output report correctly in languages other than English
![342074861-6905fc9b-9f0d-4dd…
-
Following the inclusion of your plugin within a NextFlow (24.04.2) container that I am building, a scan of the container detected an issue with the following packages:
- io.netty/netty-codec-http2 …