google / osv-scanner

Vulnerability scanner written in Go which uses the data provided by https://osv.dev
https://google.github.io/osv-scanner/
Apache License 2.0
6.24k stars 361 forks source link

SARIF: add guidance on remediation #548

Open oliverchang opened 1 year ago

oliverchang commented 1 year ago

We should add some remediation guidance to the OSV-Scanner SARIF output to let users know to remediate their vulnerabilities.

github-actions[bot] commented 3 months ago

This issue has not had any activity for 60 days and will be automatically closed in two weeks

github-actions[bot] commented 3 months ago

Automatically closing stale issue