search

sonatype-nexus-community / oysteR

Create purls from the filtered sands of your dependencies, powered by OSS Index
https://sonatype-nexus-community.github.io/oysteR/
Apache License 2.0
40 stars 9 forks source link

Provide a means of displaying vuln info in Rmd #2

Closed hrbrmstr closed 3 years ago

hrbrmstr commented 4 years ago

Posit:

Provide a function like cloc::cloc_pkg_md() which can be placed in Rmd block (e.g. in README.Rmd)):

image

that would enable visually appealing display of vuln status (like that cloc function does here):

image

(you can see that source and display here: https://git.rud.is/hrbrmstr/ssdeepr)

I can PR ^^ into this pretty easily.

Separate posit (I can make it a sep issue):

Provide an RStudio addin with the pkg that folks can set a keybinding to for a quick vuln check.

I've pre-signed the CLA, too.

DarthHater commented 4 years ago

Send a PR over for sure! The relationship of package to vulnerability is 1:0-many, in case that helps!

hrbrmstr commented 4 years ago

gotcha. will do later this week.

many thanks for Sonatype adding in the R ecosystem despite the fact that virtually nobody is looking at vulns there (besides myself and Colin :-)

csgillespie commented 3 years ago

@hrbrmstr I've made a few updates to this package.

I'm not quite sure I understand what you are after (sorry). Can you provide more details?

csgillespie commented 3 years ago

Not really sure what this means, so closing.