Joynext Cybersecurity Incident Response Team

icon indicating a website link www.joynext.com

icon company Joynext icon location Dresden, Germany

Results 5 issues of Joynext Cybersecurity Incident Response Team

New Repositories are required: Github and Sourceforge

Many of FOSS SW components we are using for your internal services are placed on Github and Sourceforge repositories. In accordance with Standards we have to look for ALL known...

enhancement

GHSA - Github Security Advisories - Multiple mirroring updates of GHSA

1 comment

We are subscribes to GHSA and getting many mirroring updates of the GHSA in log: 2022-07-27 23:41:04,684 INFO [GitHubAdvisoryMirrorTask] Starting GitHub Advisory mirroring task 2022-07-27 23:41:07,456 INFO [GitHubAdvisoryMirrorTask] Updating datasource...

enhancement
p3

Add GitHub as repository

4 comment

We work with OSS sources placed in Github. So we need to check the Package for actuality and for security issues. Is it planned to integrate GitHub as Repository to...

question

Notifications subjects - add additional information (e.g. Project/Component/Severity) into Subject string

7 comment

### Current Behavior: The notification email's subject are hard coded right now. ### Proposed Behavior: add the notification subject configuration to the notification template and use same params as there...

enhancement
p3
good first issue
needs milestone

After Component update, only CVEs related to updated CPE should be available

4 comment

### Current Behavior If we update the version and CPE of an existing component, all old CVEs not related to the new CPE and their audit histories are still available...

defect
in triage