-
cdnjs provides some interesting data in their GitHub repo which is originally used to power their website and provide SRI, could be used for component analysis and enhanced metadata.
SRI hash value…
-
[Registry v2](https://deno.land/posts/registry2) was released 2 days ago. Now deno/x/ requires proper versioning in modules, has an API and simplifies the distribution with their own cdn which should…
-
Edit, disclaimer:
> Our current objective is not to introduce type-unsafe features for inter-contract calls. In Version 1, we will continue to support the existing native import system and may pote…
-
* As a docker file maintainer,
* in order to automate bump of dependent github release binaries fetched using wget/curl
* I need github releases fetched from wget or curl to be bumped by dependa…
-
This is a suggestion to add support for `github` purl-type at snyk sbom enrichment of security vulnerabilities details.
-
-
**What language does this apply to?**
If it's a proto syntax change, is it for proto2 or proto3? Any
If it's about generated code change, what programming language? C++
**Describe the problem you…
-
...or maybe they do, idk. But these are some utility libraries that I'd like to have a "de facto" standard for.
- [x] URL
- `relude-url`
- fully typed
- easily append path, query strings, …
-
## Contents
- [CI/CD Repository Audit](#cicd-repository-audit)
- [Contents](#contents)
- [Administrative Audit Criteria](#administrative-audit-criteria)
- [Check Actions State](#check-actions…
-
### Current Behavior
I created a new project and imported an SBOM of an old version of debian-slim. Trivy reports vulnerabilities but dependencyTrack doesn't. I created a Sonatype OSS account and con…