-
**Describe the issue**
Similar to https://github.com/git-lfs/git-lfs/issues/5348 , upgrading to go version 1.20.7 will remove any vulnerability to https://nvd.nist.gov/vuln/detail/CVE-2023-39533 whic…
-
I have an ASP.Net Core / Angular 5 application that is logging errors to the Windows Event Log in our production environment. The following error is getting logged frequently but intermittently in pr…
-
I cannot say for sure if this is a serious issue or not so posting it here for comment. Close if not an issue.
The sonatype folks report the following in version 6.9.9. They likely have some sca…
-
### Discussed in https://github.com/aquasecurity/trivy/discussions/6184
Originally posted by **navzen2000** February 22, 2024
### Description
Trivy 0.49.1 does not detect CVE-2023-52428 aga…
-
Hello,
When running the binary contained in web-cache-vulnerability-scanner_1.2.0_windows_amd64.zip , it is detected as malware by Windows Defender as well as other engines on Virus Total. Also, wh…
-
A [critical geoserver vulnerability](https://github.com/geoserver/geoserver/security/advisories/GHSA-6jj6-gm7p-fcvv) has been reported and a patched version is available for versions: 2.24.4, 2.25.2, …
-
### Which image/versions are related to this issue/feature request?
node:latest
### Issue/Feature description
How is that possible? I thought they should have zero, and they had it in the past...…
-
The current Maven ecosystem definition is "The Maven Java package ecosystem. The name field is a Maven package name.", which is a little vague.
We should clarify that this is referring to Maven Ce…
-
So, looking at https://github.com/prometheus-community/helm-charts/blob/main/charts/kube-prometheus-stack/templates/prometheus-operator/clusterrole.yaml, there are three wildcards (*) (lines 27, 33, 4…
-
### Discussed in https://github.com/aquasecurity/trivy/discussions/6343
Originally posted by **weili-jiang** March 19, 2024
### Description
Scanning some Docker images using 0.50.0 crashes …