issues
search
xeol-io
/
xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
https://www.xeol.io/
Apache License 2.0
348
stars
21
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Simplify apk commands and prevent Alpine cache in Dockerfile.dev
#442
PeterDaveHello
opened
3 days ago
0
Update Syft to v1.16.0
#441
xeol-actions[bot]
opened
1 week ago
0
Update xeol bootstrap tools to latest versions.
#440
xeol-actions[bot]
opened
1 week ago
0
Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1
#439
dependabot[bot]
opened
1 week ago
0
Feature Request: Check if GitHub Repository of Associated Language Dependency is Archived
#437
jspeed-meyers
opened
1 week ago
0
Bump docker from `03efb9f` to `bda6cf6`
#436
dependabot[bot]
closed
1 week ago
0
Bump distroless/static-debian12 from `69830f2` to `cc226ca`
#435
dependabot[bot]
closed
1 week ago
0
Bump github/codeql-action from 3.23.2 to 3.27.0
#434
dependabot[bot]
closed
1 week ago
0
Bump actions/setup-go from 4.1.0 to 5.1.0
#433
dependabot[bot]
closed
1 week ago
0
Bump actions/upload-artifact from 3.1.3 to 4.4.3
#432
dependabot[bot]
closed
1 week ago
1
Bump actions/checkout from 3.6.0 to 4.2.2
#431
dependabot[bot]
closed
1 week ago
1
Bump actions/cache from 4.0.0 to 4.1.2
#430
dependabot[bot]
closed
1 week ago
1
Bump github.com/gabriel-vasile/mimetype from 1.4.4 to 1.4.6
#429
dependabot[bot]
closed
1 week ago
1
Bump github.com/anchore/syft from 1.10.0 to 1.15.0
#428
dependabot[bot]
closed
1 week ago
1
Bump github.com/adrg/xdg from 0.5.0 to 0.5.3
#427
dependabot[bot]
closed
1 week ago
1
Bump github.com/docker/docker from 27.1.1+incompatible to 27.3.1+incompatible
#426
dependabot[bot]
closed
1 week ago
1
Bump gorm.io/gorm from 1.25.6 to 1.25.12
#425
dependabot[bot]
closed
1 week ago
1
Xeol doesn't detect EOL in Java library
#424
phlvphlv
opened
2 weeks ago
0
upgrade docker base images
#423
noqcks
closed
3 weeks ago
1
Xeol image itself EOL
#422
m-barthelemy
closed
3 weeks ago
0
upgrade github actions and go deps
#421
noqcks
closed
1 week ago
0
Upgrade slsa github generator to 2.0.0
#420
noqcks
closed
3 weeks ago
0
SLSA provenance missing from releases
#419
karends-cisco
closed
3 weeks ago
1
Update Syft to v1.14.2
#418
xeol-actions[bot]
closed
1 week ago
0
Update xeol bootstrap tools to latest versions.
#417
xeol-actions[bot]
closed
1 week ago
0
Bump docker from `03efb9f` to `8d50398`
#416
dependabot[bot]
closed
3 weeks ago
1
Bump github.com/charmbracelet/lipgloss from 0.12.1 to 0.13.0
#415
dependabot[bot]
closed
3 weeks ago
1
Bump github.com/notaryproject/notation-go from 1.0.0 to 1.2.1
#414
dependabot[bot]
closed
3 weeks ago
1
Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0
#413
dependabot[bot]
closed
3 weeks ago
1
Bump github.com/sigstore/sigstore from 1.8.4 to 1.8.9
#412
dependabot[bot]
closed
3 weeks ago
1
Bump oras.land/oras-go/v2 from 2.3.0 to 2.5.0
#411
dependabot[bot]
closed
3 weeks ago
1
Bump actions/checkout from 3.6.0 to 4.2.0
#410
dependabot[bot]
closed
3 weeks ago
1
Bump actions/upload-artifact from 3.1.3 to 4.4.0
#409
dependabot[bot]
closed
3 weeks ago
1
Bump peter-evans/create-pull-request from 5.0.2 to 7.0.5
#408
dependabot[bot]
closed
3 weeks ago
1
Bump step-security/harden-runner from 2.7.0 to 2.10.1
#407
dependabot[bot]
closed
3 weeks ago
1
Bump github/codeql-action from 3.23.2 to 3.26.10
#406
dependabot[bot]
closed
3 weeks ago
1
Update Syft to v1.11.1
#405
xeol-actions[bot]
closed
3 weeks ago
0
Update xeol bootstrap tools to latest versions.
#404
xeol-actions[bot]
closed
3 weeks ago
0
Bump github.com/opencontainers/runc from 1.1.12 to 1.1.14
#403
dependabot[bot]
closed
2 months ago
1
Bump docker from `03efb9f` to `f9f72ad`
#402
dependabot[bot]
closed
2 months ago
1
Bump github.com/notaryproject/notation from 1.0.0 to 1.2.0
#401
dependabot[bot]
closed
2 months ago
1
Bump github.com/hashicorp/go-getter from 1.7.4 to 1.7.6
#400
dependabot[bot]
closed
2 months ago
1
Bump github.com/gabriel-vasile/mimetype from 1.4.4 to 1.4.5
#399
dependabot[bot]
closed
2 months ago
1
Bump github.com/anchore/stereoscope from 0.0.3-0.20240725180315-50ce3be7aa1f to 0.0.3
#398
dependabot[bot]
closed
2 months ago
1
Bump github.com/gkampitakis/go-snaps from 0.5.6 to 0.5.7
#397
dependabot[bot]
closed
2 months ago
1
Bump actions/setup-go from 4.1.0 to 5.0.2
#396
dependabot[bot]
closed
2 months ago
1
Bump github/codeql-action from 3.23.2 to 3.26.6
#395
dependabot[bot]
closed
2 months ago
1
Bump peter-evans/create-pull-request from 5.0.2 to 6.1.0
#394
dependabot[bot]
closed
2 months ago
1
Bump step-security/harden-runner from 2.7.0 to 2.9.1
#393
dependabot[bot]
closed
2 months ago
1
Bump ossf/scorecard-action from 2.3.1 to 2.4.0
#392
dependabot[bot]
closed
2 months ago
1
Next