issues
search
jeremylong
/
DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
https://owasp.org/www-project-dependency-check/
Apache License 2.0
5.93k
stars
1.21k
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
build(deps): bump amannn/action-semantic-pull-request from 5.4.0 to 5.5.0
#6624
dependabot[bot]
closed
3 weeks ago
1
build(deps): bump com.google.guava:guava from 32.1.3-jre to 33.1.0-jre
#6623
dependabot[bot]
closed
2 weeks ago
1
Hope to provide a springboot solution
#6622
x-zim
closed
3 weeks ago
2
build(deps): bump org.apache.maven.plugins:maven-jar-plugin from 3.4.0 to 3.4.1
#6621
dependabot[bot]
closed
3 weeks ago
0
Getting unable to find valid certification path to requested target error
#6620
nomadme
opened
3 weeks ago
2
dependency-check-maven's yarnAuditAnalyzerEnabled doesn't work
#6619
dutoitns
closed
2 weeks ago
2
build(deps): bump org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12
#6618
dependabot[bot]
closed
3 weeks ago
0
build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.2.2 to 3.2.5
#6617
dependabot[bot]
closed
3 weeks ago
0
build(deps): bump org.apache.commons:commons-dbcp2 from 2.11.0 to 2.12.0
#6616
dependabot[bot]
closed
3 weeks ago
0
build(deps): bump org.apache.commons:commons-text from 1.11.0 to 1.12.0
#6615
dependabot[bot]
closed
3 weeks ago
1
feat: Carthage analyzer
#6614
alinradut
closed
2 weeks ago
0
[FP]: CVE-2019-3774 on spring-batch-excel@0.1.1
#6613
vincenzo-scia
closed
3 weeks ago
3
CVE-2023-44794 on spring_framework
#6612
vincenzo-scia
closed
4 days ago
4
java.lang.NoSuchMethodError: 'java.nio.charset.Charset org.apache.commons.io.Charsets.toCharset(java.nio.charset.Charset, java.nio.charset.Charset)'
#6611
rburgst
closed
3 weeks ago
3
build(deps): bump org.apache.maven.plugins:maven-assembly-plugin from 3.6.0 to 3.7.1
#6610
dependabot[bot]
closed
4 weeks ago
0
build(deps): bump org.semver4j:semver4j from 5.2.2 to 5.2.3
#6609
dependabot[bot]
closed
1 month ago
0
build(deps): bump commons-io:commons-io from 2.15.0 to 2.16.1
#6608
dependabot[bot]
closed
4 weeks ago
0
build(deps): bump org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1
#6607
dependabot[bot]
closed
1 month ago
0
Open Source License Compliance
#6606
sametr35
closed
2 weeks ago
3
build(deps): bump org.apache.maven.plugins:maven-jar-plugin from 3.3.0 to 3.4.0
#6605
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.codehaus.plexus:plexus-xml from 4.0.2 to 4.0.3
#6604
dependabot[bot]
closed
1 month ago
0
build(deps): bump se.bjurr.violations:violations-lib from 1.156.7 to 1.157.1
#6603
dependabot[bot]
closed
1 month ago
0
build(deps): bump com.github.package-url:packageurl-java from 1.4.1 to 1.5.0
#6602
dependabot[bot]
closed
1 month ago
0
build(deps): bump JamesIves/github-pages-deploy-action from 4.5.0 to 4.6.0
#6601
dependabot[bot]
closed
1 month ago
0
What are all hostnames that CLI tool reaches out to on the internet?
#6600
alan-czajkowski
opened
1 month ago
5
build(deps): bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.13.0
#6599
dependabot[bot]
closed
1 month ago
0
build(deps): bump commons-validator:commons-validator from 1.7 to 1.8.0
#6598
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.1.0 to 3.2.3
#6597
dependabot[bot]
closed
1 month ago
0
build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.0 to 4.8.4
#6596
dependabot[bot]
closed
1 month ago
0
[FP]:
#6595
Nitish1210
closed
1 month ago
3
Dependency Report shows no vulnerablities
#6594
alfstglo-fadv
opened
1 month ago
4
Gitlab format report has invalid syntax for dependencies
#6593
david-eyeee
closed
2 weeks ago
5
build(deps): bump jackson.version from 2.16.1 to 2.17.0
#6592
dependabot[bot]
closed
1 week ago
1
build(deps): bump version.maven-plugin-plugin from 3.11.0 to 3.12.0
#6591
dependabot[bot]
closed
1 month ago
1
build(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.2 to 3.6.3
#6590
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.codehaus.plexus:plexus-utils from 4.0.0 to 4.0.1
#6589
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.10.2 to 3.12.0
#6588
dependabot[bot]
closed
1 month ago
0
OSS Index rate limit exceeded, disabling the analyzer
#6587
Muskan-0618
opened
1 month ago
2
build: bump version for new feature
#6586
jeremylong
closed
1 month ago
0
build(deps): bump commons-codec:commons-codec from 1.16.0 to 1.16.1
#6585
dependabot[bot]
closed
1 month ago
0
build(deps): bump us.springett:cpe-parser from 2.0.3 to 2.1.0
#6584
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.5
#6583
dependabot[bot]
closed
1 month ago
0
build(deps): bump org.apache.maven.plugins:maven-artifact-plugin from 3.5.0 to 3.5.1
#6582
dependabot[bot]
closed
1 month ago
0
build(deps): bump apache.lucene.version from 8.11.2 to 8.11.3
#6581
dependabot[bot]
closed
1 month ago
0
feat: upgrade to dotnet 8.0
#6580
jeremylong
opened
1 month ago
1
CVE-2024-22259 not detected on spring-web@5.3.32
#6579
rafaeltc
closed
1 month ago
6
feat: Support Package.swift version 3 Specification
#6578
tx2
closed
1 month ago
2
Removal of restrictions within the /cves/ 2.0 API schema
#6577
alinposho
closed
1 week ago
2
Do not use inline styles, scripts and image in dependency-check-report.html due to CSP
#6576
robertoschwald
opened
1 month ago
3
Are we updating the .NET core dependencies of the Assembly Analyzer to latest version
#6575
dragon040
closed
1 month ago
3
Previous
Next