anthonyharrison
anthonyharrison
@mastersans This is going in the right direction. A few observations . 1. Ensure that the date fields also include the time as well 2. The report should include all...
Hello @mastersans Do you have an example of the new JSON file to share? I am keen that the JSON file includes as much information as possible. There are a...
@mastersans Looking good. I think the metadata section needs to capture more of the command line parameters which can be specified. e.g. the checkers which can be disabled, what data...
I think capturing the input data would also be useful as this indicates what has been scanned., Also whether exploits are being checked for.
Thanks @mastersans This is looking very good. I think it is simpler if we keep all the values at this stage as there is little overhead in including all the...
I think c/c++ support using the [Conan](https://conan.io/) ecosystem would be a great addition.
> Hello, my name is Jensen! I am new to open-source development, but I have extensive programming experience and a passion for cybersecurity. I would love to get involved with...
@terriko This is where the use of PURLs can really help. Looks like #2685 #2945 need prioritsing
@inosmeet @mastersans @terriko If we have don't have a purl or a vendor to be able to determine the type of component, then triage is the only way we can...
The check for 110 is to ensure that an out of range EPSS value is ignored. This should always be the case even if the EPSS values change. On Mon,...