chheda-deshaw
chheda-deshaw
First, I'd like to express my appreciation for the work you've done with OSV-Scanner. It's a valuable tool for our projects, especially the Call Analysis for Go and Rust We...
### Summary I'm relatively new to Go and have been learning as I go along. I noticed a potential issue with gosec and wanted to bring it to your attention....
I'm trying to use OSV-Scanner in the offline mode with the command: ```bash osv-scanner --offline-vulnerabilities --download-offline-databases --sbom=bom.json ``` Output: ``` Scanned path/to/bom.json file and found 137 packages Filtered 3 local/unscannable...
I'm using the tool in an air-gapped environment where access to ghcr.io is restricted and goes through artifactory. I downloaded the VDB manually using steps mentioned here: https://github.com/appthreat/vdb/pkgs/container/vdbxz-app But when...