search

oss-review-toolkit / ort

A suite of tools to automate software compliance checks.
https://oss-review-toolkit.org
Apache License 2.0
1.59k stars 308 forks source link

Osv: Integrate with SwiftPM #7841

Closed fviernau closed 5 months ago

fviernau commented 11 months ago

OSV now has vulnerability data for swift, see https://osv.dev/list?ecosystem=SwiftURL&q=.

Extend createRequest() in Osv.kt to handle it.

fviernau commented 9 months ago

It's not yet clear which package identifier format OSV.dev expects, see https://github.com/google/osv.dev/issues/1923.

fviernau commented 9 months ago

See also https://github.com/github/advisory-database/issues/3333.