-
**What happened**:
Running Grype on an Azure DevOps Pipeline task occasionally fails with the following error:
```
[info] checking github for the current release tag
[info] fetching release sc…
-
### Current Behavior
Currently, the database re-writes all vulnerabilities that are given, without checking if the value has changed or not. This results in an expensive and unnecessary operation.
#…
-
### Current Behavior
A vulnerability which exists in multiple databases are not linked so report as 2 issues (therefore doubling risk score)
### Steps to Reproduce
1.import BOM with vulnerability p…
-
As per https://nvd.nist.gov/developers/start-here I believe it would be easy to integrate updating CVEs using that rather than how the current build script does it, from what I can see. Again, happy t…
-
**What happened**:
`grype db status` does not validate `vulnerability.db` hash.
**What you expected to happen**:
`grype db status` fully validates the `vulnerability.db` and fails on an inval…
-
## Actual behavior
Vulnerabilities are linked to a project and are either created manually from scratch or imported from tools integration.
## Expected behavior
Having a vulnerability databas…
-
**What happened**:
trying to scan images like alpine \ ubuntu.
it starts to download grype-db and then hangs.
this issue started today.
**What you expected to happen**:
download the db
**How to …
-
Bulwark is lacking of the most important feature of them all: having a vulnerability database.
Dradis, Ghostwriter, PwnDoc, WriteHat, etc. all collaborative penetration test reporting platforms hav…
noraj updated
3 years ago
-
Do version looks against a database of known vulns. Easy for Apache (http://httpd.apache.org/security/vulnerabilities_20.html) and nginx (http://nginx.org/en/security_advisories.html), more difficult …
kura updated
12 years ago
-
|Wazuh version|Component|Install type|Install method|Platform|
|---|---|---|---|---|
| v4.8.0 | wazuh-modulesd - vulnerability scanner| Manager | Packages | TBD |
# Description
Members of th…