Single version in ghsa was creating false positives

AppThreat / vulnerability-db

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.

MIT License

88 stars 22 forks source link

Closed prabhu closed 1 month ago

prabhu commented 1 month ago

Reproducible with:

python vdb/cli.py --search "pkg:maven/org.springframework/spring-core@6.0.13"