Fix java scanning - Githubissues

lunasec-io / lunasec

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

https://www.lunasec.io/

Other

1.44k stars 164 forks source link

Fix java scanning #1068

Closed breadchris closed 1 year ago

breadchris commented 1 year ago

Java scanning was broken because of the semver matching not working for java versions. This was switched to fuzzy and grype/syft are updated to not use our fork, but anchore's latest.

CLAassistant commented 1 year ago

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 2 committers have signed the CLA.

:white_check_mark: breadchris
:x: github-actions[bot]
_{You have signed the CLA already but the status is still pending? Let us recheck it.}