-
### Description
Our application is net8.0-android and customer is sending us a MobSF static analysis that gives security alerts related to Stack Canary.
I'm not an expert in this fields, so I simp…
-
### Current Behavior
When we upload **SBOM** file in **CycloneDX ( 1.5 version)** format to the tool, we do not get any results. Instead, we receive a parse error from your API.
Once we examine fur…
-
- GitHub analysis (fake profiles, OSINT):
- [gitxray](https://github.com/kulkansecurity/gitxray): A multifaceted security tool that leverages Public GitHub REST APIs for OSINT, Forensics, Pentest…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Spring Beans
Description | Spring Beans
Language | JAVA
Vulnerability…
-
Introduced through: react-scripts@5.0.1
Fixed In: nth-check@2.0.1
Please upgrade internal package nth-check (v1.0.2 to v2.0.1) of react-scripts
![Screenshot 2024-03-01 at 6 07 21 PM](https://…
-
### Package URl
pkg:maven/dnsjava/dnsjava@2.1.7
### CPE
null
### CVE
CVE-2024-25638
### ODC Integration
{"label"=>"Maven Plugin"}
### ODC Version
10.0.3
### Description
https://github.co…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | mysql-connector-java
Description | MySQL java connector
Language | JAVA…
-
## Tests information
| | |
|--------------------------------------|--------------------------------------------|
| …
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | jstl
Description | null
Language | JAVA
Vulnerability | XML External …
-
**Is your feature request related to a problem? Please describe.**
I'm looking to reduce the number of false positives from SCA vulnerabilities by performing function-level reachability analysis. How…