-
The Security SIG is looking to ensure that security tooling is setup consistently across the organization. As a result, we're asking maintainers to ensure the following tools are enabled in each repos…
-
## Expected Behavior
Dependencies should remain up-to-date to address potential security vulnerabilities.
## Current Behavior
uchiwa-web ships Angular 1.6.10
## Possible Solution
Up…
-
The [trivy-operator](https://github.com/aquasecurity/trivy-operator) is a really recent project (created last month) which seems to be taking off fast. Their goal seems tightly related to kciss.
Am…
-
```
=== npm audit security report ===
# Run npm install winston-daily-rotate-file@4.7.1 to re…
-
> An XML External Entity attack is a type of attack against an application that parses XML input. This attack occurs when XML input containing a reference to an external entity is processed by a weakl…
-
**Environment**
Platform: Kubernetes
Kubernetes/Platform Version(s): 1.22.9
NeuVector: 5.0.2 (deployed via Rancher's helm chart, no modification)
**Describe the bug**
NeuVector does not re-scan…
-
I just ran `npm audit fix` and not all problems could be resolved:
```
fixed 3497 of 3599 vulnerabilities in 2561 scanned packages
101 vulnerabilities required manual review and could not be up…
nuest updated
3 years ago
-
**Wazuh version : 4.9 update
Install type : Manual install
Platform : Debian 11**
Hello everyone,
I have questions about my wazuh installation and its vulnerability collection.
I have two s…
-
Right after running `npm install` and entering the library name this is what I got:
```
added 1737 packages from 1582 contributors and audited 37136 packages in 363.727s
found 326 vulnerabilities (…
apo91 updated
4 years ago
-
* **What are you trying to do?**
Scan dependencies determined by a requirements file without having to actually having these dependencies installed
* **What feature or behavior is this required fo…