-
I suspect `Versions.is_vulnerable` should be called something more neutral, like `is_affected` or `is_applicable`, because it can be on `Advisory` that is about maintenance, and that's not a vulnerabi…
-
WARNING: For users that download and sync Fleet's vulnerability feeds manually, there are required adjustments or else vulnerability processing will stop working.
Users with the default vulnerabil…
-
After the feedback yesterday, it was clear that even though the goal of SponsorLink is to make it easier for library developers to get sponsored, the fact that a part of an OSS project referenced a no…
-
I create a project that has nuget package : Microsoft.EntityFrameworkCore.Sqlite.Core(5.0.0), I then run the code snippet to get the database version **3.28.0**.
`SqliteConnection connection = new …
-
* safety version: `1.10.3`
* Python version: `3.10.2`
* Operating System: `MacOS 11.7`
### Description
Hello 👋
`safety` currently requires [`cryptography>=39.0.0`](https://pypi.org/project…
-
Access to Tesorería General de la República, the General Treasury of the Republic of Chile (TGR) may be up for sale on a popular hacking forum. A forum post claiming that tesorería.cl and tgr.cl ha…
-
Vulnerable Library - rails-6.0.0.gem
Ruby on Rails is a full-stack web framework optimized for programmer happiness and sustainable productivity. It encourages beautiful code by favoring convention …
-
**Fleet version**: 4.17.0
**Operating system**: Kubernetes 1.21.5
### 💥 Actual behavior
I deployed the Fleet instance by using K8S with the following deployment:
```
apiVersion: apps/v1
…
-
### Template Information:
CVE-2019-20933: InfluxDB before 1.7.6 has an authentication bypass vulnerability
- Reads {{token}} var from file
An example `admin` user token with an empty shared sec…
c-sh0 updated
2 years ago
-
**Jetty version(s)**
9.4.6
**Java version/vendor** `(use: java -version)`
java -version
java version "1.8.0_144"
Java(TM) SE Runtime Environment (build 1.8.0_144-b01)
Java HotSpot(TM) 64-Bit S…