osv-detector
osv-detector copied to clipboard
G-Rath
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.[View this repository on the Mend.io Web Portal](https://developer.mend.io/github/G-Rath/osv-detector). ## Open The following updates have all...
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot] avatar"){kind=avatar}
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/BurntSushi/toml](https://redirect.github.com/BurntSushi/toml) | `v1.3.2` -> `v1.4.0` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/)...
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/setup-java](https://redirect.github.com/actions/setup-java) | action | minor | `v4.2.2` -> `v4.3.0` | | [actions/setup-python](https://redirect.github.com/actions/setup-python) |...
In addition to this shaving ~100kb off the binary, it also means GoLand understands there are string formatting functions since they follow the `Sprintf` pattern 🎉
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/checkout](https://redirect.github.com/actions/checkout) | action | patch | `v6.0.0` → `v6.0.1` | | [actions/setup-java](https://redirect.github.com/actions/setup-java) |...
This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [github.com/BurntSushi/toml](https://redirect.github.com/BurntSushi/toml) | `v1.5.0` → `v1.6.0` |  |  | | [github.com/gkampitakis/go-snaps](https://redirect.github.com/gkampitakis/go-snaps) |...
This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [github.com/google/osv-scalibr](https://redirect.github.com/google/osv-scalibr) | `v0.4.1-0.20251202121049-5e7e15f4a036` → `v0.4.1` |  |  | --- ### Release...
This introduces a new "smart" database for zips provided by osv.dev that uses the `modified_id.csv` file stored in the ecosystems bucket to selectively update advisories, effectively combining the zip and...
The extractors provided by `osv-scalibr` are descendants of the ones in `lockfile` and there are tons more of them so this switches to them as part of the long-term merging...