-
See [GSoC 2022 Start here](#1462) and [GSoC 2022 Ideas](#1379 )
Currently the cve-bin-tool uses the NVD database as its only source of vulnerabilities. However not all vulnerabilities are capture…
-
### Current Behavior:
A version 1557 of a project is uploaded to our internal DependencyTrack on August 19 2022. It is a maven project with snakeyaml:1.29 which is included in the uploaded bom. It …
-
deploying with docker in Intranet,
Intranet can not connect to the Internet,when i upload SBOM,get 0 vulnerabilities:
![橙讯图片_1662688706881](https://user-images.githubusercontent.com/113153957/189256…
-
### Steps to reproduce
`Post.all.order('random()')`
### Expected behavior
It should silently work, invoking postgres's `random()` function for determining order
### Actual behavior
I ge…
-
## New feature motivation
Late Saturday evening I was thinking about lovely ... npm dependencies and their security in particular. And my thoughts seem to be either unusual or simply foolish becaus…
-
## Description
The following issue aims to run the specified test for the current release candidate, report the results, and open new issues for any encountered errors.
## Test information
| …
-
## CVE-2021-22880 - High Severity Vulnerability
Vulnerable Libraries - rails-6.0.0.gem, activerecord-6.0.0.gem
rails-6.0.0.gem
Ruby on Rails is a full-stack web framework optimized for programmer …
-
## CVE-2022-32224 - High Severity Vulnerability
Vulnerable Library - activerecord-6.0.0.gem
Databases on Rails. Build a persistent domain model by mapping database tables to Ruby classes. Strong con…
-
The following issue aims to run the specified test for the current release candidate, report the results, and open new issues for any encountered errors.
## Test information
| …
-
Original KeePass has {PICKCHARS} placeholders for entering partial password, would be nice if it was implemented.
## Expected Behavior
When entry has {PICKCHARS} placeholder, window is opene…