issues
search
jeremylong
/
DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
https://owasp.org/www-project-dependency-check/
Apache License 2.0
5.93k
stars
1.21k
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Typescript monorepo project scan
#6674
stevieg27
opened
2 days ago
0
Scanner results on tomcat very verbose
#6673
tasso94
opened
3 days ago
1
[FP]: Keycloak services for CVE-2021-3632
#6672
edward9944
opened
3 days ago
2
[FP]: Keycloak-services for CVE-2021-3513
#6671
edward9944
opened
3 days ago
5
build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.3 to 3.2.4
#6670
dependabot[bot]
closed
2 days ago
0
Could not perform Node Audit analysis. Invalid payload submitted to Node Audit API
#6669
xl32
opened
4 days ago
0
build: Release 9.2.0
#6668
jeremylong
closed
4 days ago
0
Report writing fails due to missing class: StringEscapeUtils
#6667
cirata-trev
opened
5 days ago
3
[FP]: org.eclipse.jetty.toolchain/jetty-servlet-api@4.0.6 is misidentified as jetty 4.0.6 component (but is not) (wrong CPE)
#6666
aschank
closed
4 days ago
4
[FP]: False positive for commons-configuration@1.10 for CVE-2024-29131 and CVE-2024-29133
#6665
jubui
closed
3 days ago
8
nuspec parse exception
#6664
VeereshSSanthebennur
opened
5 days ago
1
[FP]: Custom package `openapi-generator-templates` != `openapi_generator`
#6663
DennisHartrampf
closed
5 days ago
6
[FP]: pkg:nuget/dbup-postgresql@5.0.40
#6662
scrocquesel-ml150
closed
5 days ago
3
[FP]: Newtonsoft.Json.Bson@1.0.2
#6661
StavHayounNoiberg
opened
1 week ago
1
docs: update logo per intellj
#6660
jeremylong
closed
1 week ago
0
[FP]: CVE-2024-34447 for bcprov-jdk15on-1.60.jar
#6659
adam-siklosi
closed
1 week ago
5
The maven plugin does not take into account the vendor, hence many false positives
#6658
zenonwch
closed
2 days ago
10
Connection to proxy is not successed
#6657
tadlakha9
opened
1 week ago
0
build(deps): bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.12.0 to 3.13.0
#6656
dependabot[bot]
closed
4 days ago
0
build(deps): bump golang from 1.22.2-alpine to 1.22.3-alpine
#6655
dependabot[bot]
closed
1 day ago
0
build(deps): bump pnpm/action-setup from 3.0.0 to 4.0.0
#6654
dependabot[bot]
opened
1 week ago
0
build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.4 to 4.8.5
#6653
dependabot[bot]
closed
1 week ago
0
build(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.1 to 3.1.2
#6652
dependabot[bot]
opened
1 week ago
0
Version 9.1.0 reporting issues on itself
#6651
johannes-wannenburg
opened
1 week ago
2
A lot of erors appears using dependency check in gitlab ci
#6650
yahia20456
opened
1 week ago
2
build(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.2.2 to 3.2.5
#6649
dependabot[bot]
closed
1 week ago
0
build(deps): bump jackson.version from 2.16.1 to 2.17.1
#6648
dependabot[bot]
opened
1 week ago
0
Getting started with mysql storage, batch processing is taking forever
#6647
kelfink
opened
1 week ago
0
build(deps): bump maven-plugin-plugin
#6646
jeremylong
closed
1 week ago
0
Recoverable I/O exception for https://services.nvd.nist.gov/
#6645
fmarot
closed
1 week ago
5
build(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4.8.5.0
#6644
dependabot[bot]
closed
1 week ago
0
build(deps): bump version.maven-plugin-plugin from 3.12.0 to 3.13.0
#6643
dependabot[bot]
closed
1 week ago
1
While running dependency in angular project we get [ERROR] java.lang.NullPointerException: null, can that be ignored
#6642
Amrin-Taj
opened
2 weeks ago
0
[Question] How use NVD Data feed argument
#6641
wilsoonjunior14
opened
2 weeks ago
1
[FP]: togglz-mongodb-4.4.0.jar is mixed up with mongodb-4.4.0.jar
#6640
j-ferreira
closed
1 week ago
14
build(deps): bump com.google.guava:guava from 32.1.3-jre to 33.2.0-jre
#6639
dependabot[bot]
opened
2 weeks ago
0
Wrong CPE for org.evolvis.tartools:background-jobs
#6638
mirabilos
closed
2 weeks ago
2
Solution to scan the environment.yml python dependencies using OWASP Dep Check in Jenkins pipeline
#6637
Aseem-DevOps
opened
2 weeks ago
1
override central.content.url and analyzer.central.retry.count
#6636
tadlakha9
opened
2 weeks ago
6
build(deps): bump org.eclipse.packager:packager-rpm from 0.19.0 to 0.20.0
#6635
dependabot[bot]
opened
2 weeks ago
0
build(deps): bump org.semver4j:semver4j from 5.2.3 to 5.3.0
#6634
dependabot[bot]
closed
2 weeks ago
0
build(deps): bump commons-codec:commons-codec from 1.16.1 to 1.17.0
#6633
dependabot[bot]
closed
2 weeks ago
0
[FP]: java-cfenv-boot detected as Spring Framework
#6632
aikebah
closed
2 weeks ago
4
[FP]: java-cfenv-jdbc detected as Spring Framework
#6631
aikebah
closed
2 weeks ago
3
fix: Ensure valid JSON output for gitlab report
#6630
aikebah
closed
2 weeks ago
1
build(deps): bump commons-cli:commons-cli from 1.6.0 to 1.7.0
#6629
dependabot[bot]
closed
2 weeks ago
0
java.lang.ClassNotFoundException: org.owasp.dependencycheck.App
#6628
vaparnab
opened
3 weeks ago
1
build(deps): bump amannn/action-semantic-pull-request from 5.4.0 to 5.5.2
#6627
dependabot[bot]
closed
3 weeks ago
0
[FP]: CVE-2023-5763 Eclipse Expressly
#6626
viktorgunnarson
closed
3 weeks ago
3
[FP]: Spring Security for CVE-2018-1258
#6625
githubuserVenkat
closed
3 weeks ago
2
Next