-
### Describe the bug
Docker Image of ORT stored in AWS ECR detected with security vulnerabilities
### Expected behavior
Resolve or have minimal vulnerabilities to be compliant from security …
-
I'm assuming this tool isn't maintained anymore or decided to target some other vuln other than XSS, which would make the its name kind of unfortunate.
That or somethings gone wrong with mine as it …
-
When I scan using an spdx sbom, I see:
```
osv-scanner scan --sbom=SBOM-report-testproject-habi-20240410_0131-clean-licenses.spdx.json --verbosity verbose
Scanned /home/paul/SBOM-report-testproje…
-
If you have a possible attack vector please make a comment or an issue and include the code like so
~~~
```js script
// execute code with an attack vector
console.log('window.secret', window.sec…
-
Implement security scanning for Golang code using GoSec, a security tool designed to analyze Go code and identify potential security vulnerabilities. The GoSec scan should be integrated into the CI pi…
-
## Finding vulnerable dependencies
Security vulnerabilities can cause a range of problems for your project or the people who use it. A vulnerability could affect the confidentiality, integrity, or a…
-
## Finding vulnerable dependencies
Security vulnerabilities can cause a range of problems for your project or the people who use it. A vulnerability could affect the confidentiality, integrity, or a…
-
## Finding vulnerable dependencies
Security vulnerabilities can cause a range of problems for your project or the people who use it. A vulnerability could affect the confidentiality, integrity, or a…
-
## Finding vulnerable dependencies
Security vulnerabilities can cause a range of problems for your project or the people who use it. A vulnerability could affect the confidentiality, integrity, or a…
-
## Finding vulnerable dependencies
Security vulnerabilities can cause a range of problems for your project or the people who use it. A vulnerability could affect the confidentiality, integrity, or a…