-
**What happened**: Grype is not detecting CVE-2022-24086
**What you expected to happen**: It looks like the file vulnerability.db is missing entirely the CVE.
**How to reproduce it (as minimall…
-
Vulnerable Library - strapi-3.6.5.tgz
An open source headless CMS solution to create and manage your own API. It provides a powerful dashboard and features to make your life easier. Databases suppor…
-
# Description of Problem / Feature Request
When I push [Google Distroless Images](https://github.com/GoogleContainerTools/distroless) to my Quay registry, I've got Unsupported security scan results…
-
We only query the OSV database for vulns on a commitSHA so we are extremely limited on the vulns we can report through Scorecard. There is a high possibility that we are rating a commitSHA as `10` on …
-
### Goal
Enable vulnerability detection to allow all users to easily discover and triage vulnerability software installed on their hosts.
### How?
- Turn on vulnerability detection for all exis…
-
Update Feb 6, 2024 - Released as part of Docker Desktop 4.27 - https://www.docker.com/blog/announcing-synchronized-file-shares/
Update Nov 9, 2023 - [As announced in June, Docker has acquired Mutag…
-
https://github.com/phoenixframework/phoenix/commit/6e7185b33a59e0b1d1c0b4223adf340a73e963ae committed today fixes a security vulnerability.
That vulnerability is currently not part of any vulnerabi…
-
**firebase-tools:** 10.6.0
**node:** 16.14.0
**npm:** 8.3.1
**Platform:** Windows 10 64bit
### [REQUIRED] Test case
Local installation in the project
```
$ npm i …
-
I ran the following commands to get openvas running:
```bash
sudo docker pull immauss/openvas
sudo docker volume create openvas
sudo docker run -i -t -p 9392:9392 -e PASSWORD='[redacted]' -v ope…
-
**What happened**:
This issue I've previously reported more than a year ago on https://github.com/anchore/anchore-engine/issues/606 when it wasn't using grype, but now I can reproduce it using grype …