issues
search
jeremylong
/
DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
https://owasp.org/www-project-dependency-check/
Apache License 2.0
5.93k
stars
1.21k
forks
source link
issues
Recently updated
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Unable to find Dependency-Check reports to parse on Version 9.0.10
#6553
shekharclover
closed
7 minutes ago
1
NPE in h2 update on OpenJ9 JVM
#4797
pe4enko
closed
9 minutes ago
8
build(deps): bump azul/zulu-openjdk-alpine from 17 to 22
#6552
dependabot[bot]
opened
1 month ago
2
build(deps): bump golang from 1.22.2-alpine to 1.22.3-alpine
#6655
dependabot[bot]
closed
1 day ago
0
[FP]: Keycloak services for CVE-2021-3632
#6672
edward9944
opened
3 days ago
2
[FP]: Keycloak-services for CVE-2021-3513
#6671
edward9944
opened
3 days ago
5
build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.3 to 3.2.4
#6670
dependabot[bot]
closed
2 days ago
0
Scanner results on tomcat very verbose
#6673
tasso94
opened
3 days ago
1
The maven plugin does not take into account the vendor, hence many false positives
#6658
zenonwch
closed
2 days ago
10
Typescript monorepo project scan
#6674
stevieg27
opened
2 days ago
0
Could not perform Node Audit analysis. Invalid payload submitted to Node Audit API
#6669
xl32
opened
4 days ago
0
PE Analyzer Index 3968 out of bounds for length 3968
#4398
31deR
opened
2 years ago
4
[FP]: False positive for commons-configuration@1.10 for CVE-2024-29131 and CVE-2024-29133
#6665
jubui
closed
3 days ago
8
False Positive on com.itextpdf.licensing/licensing-base and com.itextpdf.licensing/licensing-remote
#3762
achifal
closed
3 days ago
7
override central.content.url and analyzer.central.retry.count
#6636
tadlakha9
opened
2 weeks ago
6
CVE-2023-44794 on spring_framework
#6612
vincenzo-scia
closed
4 days ago
4
build: Release 9.2.0
#6668
jeremylong
closed
4 days ago
0
build(deps): bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.12.0 to 3.13.0
#6656
dependabot[bot]
closed
4 days ago
0
[FP]: org.eclipse.jetty.toolchain/jetty-servlet-api@4.0.6 is misidentified as jetty 4.0.6 component (but is not) (wrong CPE)
#6666
aschank
closed
4 days ago
4
[FP]: Newtonsoft.Json.Bson@1.0.2
#6661
StavHayounNoiberg
opened
1 week ago
1
[FP]: CVE-2024-21907 FP for Newtonsoft.Json > 13.0.1
#6413
kiryl0277
opened
3 months ago
4
Report writing fails due to missing class: StringEscapeUtils
#6667
cirata-trev
opened
5 days ago
3
Version 8.0.0. KnownExploitedDataSource proxy HTTP 403
#5313
marwin1991
opened
1 year ago
29
[FP]: Custom package `openapi-generator-templates` != `openapi_generator`
#6663
DennisHartrampf
closed
5 days ago
6
What are all hostnames that CLI tool reaches out to on the internet?
#6600
alan-czajkowski
opened
1 month ago
5
[FP]: pkg:nuget/dbup-postgresql@5.0.40
#6662
scrocquesel-ml150
closed
5 days ago
3
nuspec parse exception
#6664
VeereshSSanthebennur
opened
5 days ago
1
docs: update logo per intellj
#6660
jeremylong
closed
1 week ago
0
Dependency check does not scan the package-lock.json for Typescript projects even if it says it does when the node_modules haven't been installed.
#6437
H4Xx0R-PC
opened
3 months ago
8
Getting exit code 13 as an error while running official dependency scanner on gitlab pipeline.
#6424
AppSecEr
closed
1 week ago
0
A lot of erors appears using dependency check in gitlab ci
#6650
yahia20456
opened
1 week ago
2
Go.mod toolchain directive gives error when running with Docker
#6258
jarno-rootz
closed
5 months ago
3
Removal of restrictions within the /cves/ 2.0 API schema
#6577
alinposho
closed
1 week ago
2
[FP]: CVE-2024-34447 for bcprov-jdk15on-1.60.jar
#6659
adam-siklosi
closed
1 week ago
5
Connection to proxy is not successed
#6657
tadlakha9
opened
1 week ago
0
Version 9.1.0 reporting issues on itself
#6651
johannes-wannenburg
opened
1 week ago
2
[FP]: togglz-mongodb-4.4.0.jar is mixed up with mongodb-4.4.0.jar
#6640
j-ferreira
closed
1 week ago
14
build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.4 to 4.8.5
#6653
dependabot[bot]
closed
1 week ago
0
build(deps): bump pnpm/action-setup from 3.0.0 to 4.0.0
#6654
dependabot[bot]
opened
1 week ago
0
build(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.1 to 3.1.2
#6652
dependabot[bot]
opened
1 week ago
0
build(deps): bump version.maven-plugin-plugin from 3.12.0 to 3.13.0
#6643
dependabot[bot]
closed
1 week ago
1
build(deps): bump jackson.version from 2.16.1 to 2.17.0
#6592
dependabot[bot]
closed
1 week ago
1
build(deps): bump jackson.version from 2.16.1 to 2.17.1
#6648
dependabot[bot]
opened
1 week ago
0
build(deps): bump maven-plugin-plugin
#6646
jeremylong
closed
1 week ago
0
build(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.2.2 to 3.2.5
#6649
dependabot[bot]
closed
1 week ago
0
feature request: add a markdown summary
#5824
efenderbosch-atg
opened
10 months ago
3
Recoverable I/O exception for https://services.nvd.nist.gov/
#6645
fmarot
closed
1 week ago
5
Getting started with mysql storage, batch processing is taking forever
#6647
kelfink
opened
1 week ago
0
build(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4.8.5.0
#6644
dependabot[bot]
closed
1 week ago
0
build(deps): bump version.maven-plugin-plugin from 3.11.0 to 3.12.0
#6591
dependabot[bot]
closed
1 month ago
1
Next