issues
search
sonatype-nexus-community
/
nancy
A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index
Apache License 2.0
549
stars
76
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Update README.md
#277
orsenthil
closed
4 months ago
1
Fails to install because of github.com/golang/dep
#275
arvenil
opened
9 months ago
0
Refactor tests to T.TempDir instead of os.MkdirTemp
#274
alexandear
closed
1 year ago
0
Wrongly reports runc 1.1.5 as vulnerable
#273
zepatrik
opened
1 year ago
0
Update README.md
#272
bcbarbosa
closed
1 year ago
1
Readme: Relation to govulncheck
#271
falco467
opened
1 year ago
3
Subpackages with different versions are incorrectly flagged
#270
breathbath
opened
1 year ago
8
Support additional exclude vulnerability files
#269
uvegla
closed
2 years ago
2
Task execution failure
#268
anilreddy789
opened
2 years ago
1
fix #264: restore v version prefix
#267
bhamail
closed
2 years ago
0
Normalize version when using go install
#266
jmdacruz
closed
2 years ago
2
Use build info when available (go install)
#265
jmdacruz
closed
2 years ago
7
Update version string to have "v" prefix expected by OSSIndex
#264
bhamail
closed
2 years ago
0
Is returning 500 error when accessing OSS Index
#263
JasonQuinn
closed
1 year ago
20
docs: update readme example
#262
adamdecaf
closed
1 year ago
7
Wrong brew tap on gonancy.dev
#261
jenslauterbach
opened
2 years ago
1
Install failed with go 1.18 on darwin
#260
DonRenando
closed
2 years ago
3
go install does not work - complains about replace directive
#259
esheri3
closed
2 years ago
3
Q. has any thought been given to scanning for core library vulnerabilities?
#258
dnwe
opened
2 years ago
2
re-read "path" when processing `replace` directive. fixes #256
#257
bhamail
closed
2 years ago
0
Replace directive is based on the to be replaced module path not the one which replacing it
#256
SzekeresB
closed
2 years ago
4
Respect go mod replace directive
#255
danieljmt
closed
2 years ago
4
Nancy does not respect replace directive
#254
danieljmt
closed
2 years ago
1
Running nancy in Azure DevOps requires bash to be present in the image
#253
mrooding
opened
2 years ago
4
Homebrew: Calling bottle :unneeded is deprecated
#252
SVilgelm
closed
2 years ago
3
False positive due to circular dependency
#251
harishkumarbalaji
closed
2 years ago
4
function to validate formatter fields for cleaner code
#250
MichelKazi
closed
2 years ago
3
Allow for base path of DB cache to be set
#249
DarthHater
closed
2 years ago
0
show number of ignored vulnerabilities in summary table
#248
MichelKazi
closed
2 years ago
5
Implement parsing of go list -deps -json ./... and maintain the rest
#247
DarthHater
closed
2 years ago
1
Do not output messages if we are being quiet!
#246
DarthHater
closed
2 years ago
0
Nancy produces invalid JSON again and again [bug]
#245
AndreyMZ
closed
2 years ago
1
TLS Handsake Timeout error
#244
nurulakbartanjung
closed
2 years ago
2
Update mac setup instruction in readme
#243
kishaningithub
closed
2 years ago
0
fixes #241 - add maintainer field
#242
bhamail
closed
3 years ago
0
fix dpkg warning: missing 'Maintainer' field
#241
bhamail
closed
3 years ago
0
Add new sarif formatter
#240
zendern
opened
3 years ago
3
Add SARIF support
#239
markusthoemmes
opened
3 years ago
1
228 - support for go list -deps
#238
SirMaster
closed
2 years ago
3
README typo
#237
bradcupit
closed
3 years ago
0
[DepShield] (CVSS 7.5) Vulnerability due to usage of golang.org/x:net:0.0.0-20181023162649-9b4f9f5ad519
#236
sonatype-depshield[bot]
closed
3 years ago
0
[DepShield] (CVSS 7.5) Vulnerability due to usage of golang.org/x:net:0.0.0-20190503192946-f4e77d36d62c
#235
sonatype-depshield[bot]
closed
3 years ago
0
[DepShield] (CVSS 7.5) Vulnerability due to usage of golang.org/x:net:0.0.0-20190522155817-f3200d17e092
#234
sonatype-depshield[bot]
closed
3 years ago
0
fix: SONATYPE-2019-0890 in github.com/pkg/sftp v1.10.1
#233
bhamail
closed
3 years ago
0
Summary should show the number or list of ignored vulnerabilities
#232
SVilgelm
closed
2 years ago
2
As part of #195 I moved this file... it broke things
#231
zendern
closed
3 years ago
0
do not publish Dockerfile.alpine image
#230
bhamail
closed
3 years ago
1
brew install fails on Mac with M1 chip
#229
SVilgelm
closed
3 years ago
13
Suggested `go list -m json all` vulnerability checks swathes of dependencies that never end up in a binary
#228
dnwe
closed
2 years ago
8
resolve CVE-2020-26160 in github.com/dgrijalva/jwt-go via ignore
#227
bhamail
closed
3 years ago
1
Next