-
The PURL of each package can be easily generated with the following formula: `pkg:maven/${project.groupId}/${project.artifactId}@${project.version}`. The library can add them as external references, m…
-
Hi team,
Trivy scanners is reporting this vulnerability in the JasperReports Server package
```
├─────────────────────────────────────────────────────────────┼─────────────────────┼──────────┤ …
-
**Describe the bug:**
When running vulnerabilities scanner on attu container image, it reports that `follow-redirects` should be upgraded.
Is there any plan for this ?
**Steps to reproduce:**
…
-
### Library name and version
Azure.MixedReality.Authentication
### Query/Question
I'm the current maintainer for `Azure.MixedReality.Authentication`. It currently depends on [System.IdentityM…
-
Current [V12.4.1](https://github.com/OWASP/ASVS/blob/master/4.0/en/0x20-V12-Files-Resources.md#v124-file-storage):
> Verify that files obtained from untrusted sources are stored outside the web ro…
-
**Environment info:**
* KrakenD version: 2.4.6
* System info: docker
**Describe the bug**
```
$ alias trivy_simple='mkdir -p /tmp/trivy-cache; docker run --rm -it -v /tmp/trivy-cache:/root/…
-
I would like to have a way to finetune humble in a way that only headers are checked according to my input.
e.g. if I don't want "NEL" to be implemented, I would like to skip it in the "missing HTTP…
-
Based on trying to run Mockito with a simple example project on JDK 21 (EA build) result into the following WARNING:
```
[INFO] Running com.soebes.jdk21.AFinalClassTest
OpenJDK 64-Bit Server VM w…
-
#### What happened:
Hi, we are getting CVE notifications from images
registry.k8s.io/build-image/distroless-iptables:v0.4.2
registry.k8s.io/build-image/distroless-iptables:v0.4.4
https://avd…
jwtty updated
9 months ago
-
Case #1: I ran the action in my workflows as below:
# Scan code with Checkmarx
- name: Checkmarx CxFlow Action
uses: checkmarx-ts/checkmarx-cxflow-github-action@master
with:
…