-
Hi @ all,
first of all: We appreciate this community a all and would like to thank you for all the support. Our team heavily relies on scanning & analyzing projects using ORT.
Recently we came …
-
| | |
|------------------|-----------------|
|Previous ID | SR-12208 |
|Radar | rdar://problem/59496025 |
|Original Repo…
-
### Type(s) of account issue
I've lost my password
### Summary
I have an old password to the username `applitools` which doesn't work anymore. It was last updated in 2020 from something else.
I tr…
-
@minipli-oss wrote a [neat exploit](https://github.com/opensrcsec/same_type_object_reuse_exploits/blob/main/cve-2022-1043.c) for CVE-2022-1043, and it has the following advantages over your everyday L…
-
Umbrella issue for minor jvm issues
- runtime coverage functions is above reachable functions
- urls is missing some parts (apache-commons-cli is an example), including .java
-
Observed after moving from 6.5.3 to 7.0.0.
### Fault Description
Running ODC against a large Gradle project with several hundred sub-projects having nested cross-references (i.e. sub A depends o…
-
## Idea
Having "x or newer" dependencies (ex: `brightway2 >=2.4.2`) doesn't seem like a good practice as it can break everything on dependencies updates.
There is the discussion about versioning…
-
Hi, Is it possible to exclude file extension while running dependency-check since it can't process some of the file types. For example, I'm running into an error while scan a zip file that in the scan…
-
exiv2 has currently some medium to high opne CVEs in the latest release (like this 9.8 https://nvd.nist.gov/vuln/detail/CVE-2022-3717 ) which should be patched rather quickly in distros and software d…
-
# IMPORTANT NOTE
**Updating to Guava 30.0 does not fix this security vulnerability**. The method is merely deprecated. There currently exits no fix for this vulnerability.
https://github.com/go…