steady
steady copied to clipboard
eclipse
Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclip...
There is a bug in KB-Importer. The nvd service does not work to get the description as the CVE URL is not configured. https://github.com/eclipse/steady/blob/bae49b39b3f82553d49c2d1c0480c3e44de1bf0a/lang/src/main/java/org/eclipse/steady/backend/BackendConnector.java#L1624
@copernico, is this plugin wrapping the CLI? If so we could update the included JAR binary with the latest CLI #### `TODO`s - [ ] Tests - [ ] Documentation
I got the error `2022-10-14 11:39:53,657 [vulas-memo] [INFO ] eady.shared.util.MemoryMonitor - Memory consumption (used/avg): [373.40 MB/370.02 MB], JVM (free/total/max): [954.60 MB/1328.00 MB/3944.00 MB]` when i use` java -jar steady-cli-3.2.4-jar-with-dependencies.jar -goal...
I want to konw how can I see/get the AST of a vulnerability? I use the kaybee `pull command` to get the bugs of kb. However, I just get the...
**Describe the bug** Problems occur in the packaging process of the three release versions. __IMPORTANT__: Error during goal execution Goal [id=MAVEN-APP-1665160419210-47447900, type=APP, ctx=[tenant=603EFBA1EA9B98ADB4B548682597E6D0, app=[com.example:demo:0.0.1-SNAPSHOT]]]: : Upload of goal execution failed,...
**Describe the bug** Problems occur in the packaging process of the release version. __IMPORTANT__: Execution default-cli of goal org.eclipse.steady:plugin-maven:3.2.4:app failed: Unable to load the mojo 'app' (or one of its...
**Describe the bug** Dependency conflicts in steady 3.2.1 and 3.2.5 __IMPORTANT__: 3.2.1: org.eclipse.steady:plugin-maven:pom:3.2.1; org.eclipse.steady:lang-java:jar-with-dependency:3.2.1 3.2.5: org.eclipse.steady:shared:3.2.5; org.eclipse.steady:lang-java:3.2.5**. **To Reproduce** Add the dependency of steady 3.2.1 or 3.2.5 into pom, and...
The change of the JSON view with commit 09292c4aaa232cd962e6cefa2b8c543a399aee0b breaks the mitigation tab in https://github.com/eclipse/steady/blob/6ea5fc17db84bceb78633ead15686d72a5e96e39/frontend-apps/src/main/webapp/view/ArchiveDetail.controller.js#L103, because the library property `constructTypeCounters`is not populated any more. As a result, the whole mitigation...
**Is your feature request related to a problem? Please describe.** I noticed that all the constructs of an application are set as entry points in the goal A2C, including private,...
**Describe the bug** I am trying to deploy steady backend on Mac 12.6.4 by running [setup-steady.sh](https://raw.githubusercontent.com/eclipse/steady/master/docker/setup-steady.sh). When I open http://localhost:8033/apps, it pops up a window said that "_The backend is...
