-
In our project, we often require additional arguments to customize the behavior of the package tool commands. For example:
- For our **npm** project, we need to pass arguments like `--force` when r…
-
### Current Behavior
Since the update to v1.31 our we have been getting the following error and workflow failure.
This issue seems to happen at random since it occurs in different repos and sometim…
-
### Description
Error in parsing version for `Eclipse Public License v2.0`, which trigger the wrong rule (rid=epl_no-version.RULE).
The correct rule ( rid=epl-2.0_7.RULE) is triggered for both `…
-
When using FortifyVulnerabilityExporter with tools that allow import of SCA findings from SSC/FoD allow Debricked information to be exported as well as Sonatype.
-
I don't know why, but if you go to [this answer](https://stackoverflow.com/a/68263704/839513) in StackOverflow and you look at the `BFJ` package, you will see its Debricked score is `0/100`.
Go to …
-
Hello there,
I have a very strange problem. I have a Evaluation-Kit for the i.MX6ul which is working perfectly fine with the imx_usart and imx_usb tools provided here. So that is working fine for ref…
-
Bulk vulnerability fix - Lockfile fix
This pull request will update your transitive dependencies within the allowed version intervals provided by your direct dependencies.
Fixed vulnerabilities:
…
-
This is a feature request to add support for running Sonatype scans. In addition to just running the Sonatype scan, maybe we can also incorporate some logic from the SourceAndLibScanner so that we can…
-
### Description
See https://github.com/debricked/debricked-cli/blob/master/symfony.lock
This likely is the same as a composer.lock
-
I tried out Debricked analysis tool with OPS4J as a trial to see what comes out of it.
https://debricked.com/app/en/repository/25903?tab=4
Shows that it found GPL and LGPL (various versions of b…