-
**Description of feature/bug**
License scanners, for example [JFrog Xray](https://jfrog.com/xray/), needs license information in every pom.xml to be defined.
- For example [springdoc-openapi-web…
-
**Describe the bug**
A clear and concise description of what the bug is.
**Requirements for and issue**
- [x] A fully functioning terraform snippet that can be copy&pasted (no outside files or EN…
-
It seems as if the `find` command is missing from the `ubi-minimal:8.4-210` `initContainerImage` now used in Xray since the latest chart version.
The `copy-custom-certificates` container fails wit…
-
Integration with Projects not supported.
IntelliJ IDEA has the ability to link to a project key, but does not seem to be available in vs code.
-
**+++ Critical Security Issue +++**
MegaLinter Docker containers still ship a vulnerable version of Log4j.
Most likely the vulnerable component comes shipped by a base image this project uses.
…
-
Before we can add this plugin to the public registry, please see the following review comments -
1. How does the plugin know the Xray environment it should work with? Does it use the default config…
-
The docs say to set bin_mgr_id to 'default' in the watch resource. However when you do this it makes it so that policies will not actually trigger an Xray violation on the resources they're watching. …
-
This documentation link in the README.md is broken: https://registry.terraform.io/providers/jfrog/xray/latest/docs
-
Noticing a security vulnerability [CVE-2021-3807] when scanning the "npm" package with JFrog Xray as below:
The package cli-table3 and one of its dependency ansi-regex need to be bumped up in o…
-
Hey team,
The link in the README points to a dead-end - https://registry.terraform.io/providers/jfrog/xray/latest/docs