-
Given a sample Suse score https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml:
```
CVE-2024-35255:
cvss:
- version: 3.1
score: 5.5
vector: CVSS:3.1/AV:L/AC:…
-
I am not convinced this is something we should fix in the JSON schema, or even if we want to be bothered with it.
But strongly typed languages interpret "1" and "1.0" differently and can cause erro…
-
Looking at a Package details in the API, https://public.vulnerablecode.io/api/packages/?purl=pkg:pypi/django@5.0
It seems that we could do a better job at providing a `reference_id` in some cases:
…
-
For a recent Vulnerability report of approximately 250 purl-CVE vulnerabilty combinations almost half were missing a Severity score (field value = NA) which is a critical deficiency for prioritizing i…
-
The TC voted on June 29th, 2022 to add a new field to CSAF 2.1, as requested per Feng Cao in the following email:
https://www.oasis-open.org/apps/org/workgroup/csaf/email/archives/202206/msg00006.htm…
-
### Current Behavior
![Audit](https://github.com/DependencyTrack/dependency-track/assets/11981532/5dd64d66-415c-4491-b3dc-62b0421b86fd)
Add EPSS score and EPSS Percentile to column list (fronten…
-
## Disclaimer
While generating the Venn Diagram is programmatic and the value plotted is obtained from calculation, but the step from calculated data to Venn Diagram is still manual, i.e. we eyebal…
-
[search](https://search.nix.gsc.io/?q=connect&i=fosho&repos=NixOS-nixpkgs), [files](https://github.com/NixOS/nixpkgs/search?utf8=%E2%9C%93&q=connect+in%3Apath&type=Code)
* [ ] [CVE-2017-11291](https:…
-
The API for a vulnerability returns score like this:
```JSON
{
"reference_url": "https://github.com/log4js-node/streamroller/pull/87",
"reference_id": "",
…
-
One of my checks failed due to CVE-2024-8391 being above my threshold of 7. Yet, when I checked https://nvd.nist.gov/vuln/detail/CVE-2024-8391 I saw the score reported as 6.9. Only at second glance di…