-
## CVE-2016-10006 - Medium Severity Vulnerability
Vulnerable Library - antisamy-1.5.3.jar
The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML
…
-
## CVE-2017-3523 - High Severity Vulnerability
Vulnerable Library - mysql-connector-java-5.1.25.jar
MySQL JDBC Type 4 driver
Library home page: http://www.oracle.com
Path to dependency file: /pom.xm…
-
### Summary
When the sarif output is used it will use the schema https://json.schemastore.org/sarif-2.1.0-rtm.5.json which is apparently now deprecated because a final version was released. The cor…
-
**Description**
Right now we don't fully reset Spring context between concrete executions when generating integration tests with fuzzer, because it's too time consuming (can take several seconds pe…
-
Curious if anyone has used sqlfmt with [reviewdog](https://github.com/reviewdog/reviewdog). A pretty nifty tool that automatically creates PR comments for format changes.
It likely won't be too tri…
-
### Is your feature request related to a problem? Please describe.
When I want to do some refactoring on a legacy project, there're so many warnings, want to propose a feature that could export the…
-
Using the python library, loading a sarif file that contains errors, then using "get_result_count_by_severity()" will display zero erros and give the number of warnings as number of warnings + number …
-
Proper stdout output , sarif and cleanup
Zero findings != Zero policies scanned
-
Found the core issue in a real codebase and made this minimal repo case from it so that this is more convenient to reproduce
```csharp
public class Program : IDisposable
{
public static void M…
-
For example add `clang-analyzer-unix.MismatchedDeallocator` check to Diagnostics ClangTidy section, no effects with clangd, but it works with clang-tidy checks.
Seems only *-Wmismatched-new-delete*…
timxx updated
2 years ago