chainguard-dev malcontent issues

chainguard-dev / malcontent

#supply #chain #attack #detection

Apache License 2.0

446 stars 31 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Add `make reformat-rules` target

#542 tstromberg closed 2 weeks ago
2
Improve findings for Mirai, vncjew, alfa, custom RAT

#541 tstromberg closed 2 weeks ago
3
Add additional Wolfi false positve overrides

#540 egibs closed 3 weeks ago
1
Remove HIGH findings from /etc on Ubuntu 24.04

#539 tstromberg closed 3 weeks ago
0
walk: log error instead of returning an error

#538 tstromberg closed 3 weeks ago
0
scan: include match strings (truncated)

#537 tstromberg closed 3 weeks ago
0
Scanning `-compat` packages breaks scanning

#536 egibs closed 5 days ago
2
Improve results when scanning Linux include files

#535 tstromberg closed 3 weeks ago
0
Add override for filebeat misp_sample.ndjson.log

#534 egibs closed 3 weeks ago
0
Update malcontent to v1.3.0

#533 octo-sts[bot] closed 3 weeks ago
2
Bump github.com/gabriel-vasile/mimetype from 1.4.5 to 1.4.6 in the all group

#532 dependabot[bot] closed 4 weeks ago
0
error if an invalid value is passed to --min-*risk

#531 tstromberg closed 1 month ago
0
Decrease false-positives across Ubuntu 24.04, add more OS-specific tagging

#530 tstromberg closed 1 month ago
0
programkind: quietly skip non-file files

#529 tstromberg closed 1 month ago
0
Update rancher pull-scripts rule

#528 egibs closed 1 month ago
1
Add mlflow pypi_package_index override rule, allow for multiple rules per override

#527 egibs closed 1 month ago
0
Address two instances of CWE-22

#526 egibs closed 1 month ago
0
Update malcontent to v1.2.0

#525 octo-sts[bot] closed 1 month ago
0
Improve macOS detection, particularly for AMOS/Poseidon and Cobaltstrike

#524 tstromberg closed 1 month ago
0
Fix --min-risk behavior re: overrides

#523 egibs closed 1 month ago
0
--min-risk=high breaks overrides

#522 tstromberg closed 1 month ago
2
Bump actions/checkout from 4.2.0 to 4.2.1 in the all group

#521 dependabot[bot] closed 1 month ago
0
Bump github.com/urfave/cli/v2 from 2.27.4 to 2.27.5 in the all group

#520 dependabot[bot] closed 1 month ago
0
improve detection of cipherbcryptors

#519 tstromberg closed 1 month ago
0
programkind: be quiet if EOF reached

#518 tstromberg closed 1 month ago
0
linux: alert tuning for k4spreader, injector, medusa, Sliver

#517 tstromberg closed 1 month ago
1
Add risk levels to simple output

#516 egibs closed 1 month ago
1
Add filesize condition to linux_multi_persist rule

#515 egibs closed 1 month ago
1
Add --file-risk-change and --file-risk-increase flags

#514 egibs closed 1 month ago
0
Remove errant nil check in switch statement

#513 egibs closed 1 month ago
0
Add risk values to simple output

#512 tstromberg closed 1 month ago
1
makefile: fail if xz is missing

#511 tstromberg closed 1 month ago
0
rule tuning: make severities more appropriate

#510 tstromberg closed 1 month ago
2
Add jaraco py_dropper_chmod override

#509 egibs closed 1 month ago
1
Update samples commit, refresh test data, fix refresh-test-data on macOS

#508 egibs closed 1 month ago
1
programkind: return MIME type & file extension, swap magic library

#507 tstromberg closed 1 month ago
0
Add platform-specific tag to rules

#506 r0binak opened 1 month ago
2
`make test` no longer runs sample tests

#505 tstromberg closed 1 month ago
2
README tuning: left-justify logo, boost scan placement, update images

#504 tstromberg closed 1 month ago
0
`make refresh-sample-testdata` does not refresh non-diff files on macOS

#503 egibs closed 1 month ago
1
New false positive rules

#502 egibs closed 1 month ago
0
Reduce some random Linux false positives

#501 tstromberg closed 1 month ago
0
diff: add --risk-change and --risk-increase flags

#500 tstromberg closed 1 month ago
0
processes: improve results on Linux

#499 tstromberg closed 1 month ago
0
processes test: fail if anything raises "HIGH" or "CRITICAL"

#498 tstromberg opened 1 month ago
0
action: refactor recursiveScan

#497 tstromberg opened 1 month ago
0
Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 in the all group

#496 dependabot[bot] closed 1 month ago
2
Bump golang.org/x/term from 0.24.0 to 0.25.0

#495 dependabot[bot] closed 1 month ago
0
Bump github.com/shirou/gopsutil/v4 from 4.24.8 to 4.24.9 in the all group

#494 dependabot[bot] closed 1 month ago
0
process: make non-existent paths non-fatal, sort scan paths

#493 tstromberg closed 1 month ago
0

Previous Next