OpenSCA-cli icon indicating copy to clipboard operation
OpenSCA-cli copied to clipboard

verified publisher icon XmirrorSecurity

Metadata

OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the...

Results 20 OpenSCA-cli issues
Sort by recently updated
recently updated
newest added

fix invalid zip file error

luotianqi777 avatar luotianqi777

release

下载可执行文件后,设置了本地漏洞库,但感觉还是从云端检测的

12089897411 avatar 12089897411

Support for exporting multiple files

luotianqi777 avatar luotianqi777

源代码

源代码build失败,项目多出import报红

12089897411 avatar 12089897411

扫描Jar文件失败

1 comment

由于采用Golang标准archive/zip库解压jar文件。有许多jar文件,虽然是zip文件,但是这些jar文件开头含有一些标识符,导致go认为这不是个标准的zip文件。实际python、unzip等工具都可以正常解压。所以建议解压jar文件替换go标准库里的zip解压工具。详情见这个issue https://github.com/golang/go/issues/51337

yangyang-zhang avatar yangyang-zhang

Custom warehouse pull detection

Xmirror-DevSecOps avatar Xmirror-DevSecOps

Improve Python parsing ability

Improve Python parsing ability: resolve dependencies by calling the command of Package Manager installation dependency

Xmirror-DevSecOps avatar Xmirror-DevSecOps

本地漏洞库问题

1 comment

本地漏洞库不提供一个官方版的吗,还是说全都得用户自己写规则?

l0ners avatar l0ners

question

支持更多语言

3 comment

请问,何时可支持python、c、 go等更多语言类型?

npc7 avatar npc7

enhancement

jenkins插件

1 comment

后续有考虑以Jenkins插件形式运行吗

chauncyman avatar chauncyman

enhancement

Metadata

1.0k
Stars
116
Forks
Watchers

Owner

verified publisher icon XmirrorSecurity

Metadata

OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the...

Back