Forrest
This is the CORRECT implementation of the quick-view system, that I should have written from the start. The two main changes are: - to use a provider to hold this...
Generate pull requests for patching particular libraries to the latest version for developers (or even manually patch to a specific library version)
On the homepage of the app, we should have a few basic metrics, hopefully with some nice graphs, of the overall scan results. It would also be nice to show...
Use the output of the first party callsite analysis for this. Make sure that first party analysis is scoped to the manifest path that the vulnerability was discovered in, so...
Steps along our environmental journey: 1.) Implement a conditional CVSS system that runs at a project level of granularity. Ask a question or two about peoples projects and thats it....
think about what notification avenues we want to support (namely PR comments) and then build an engine that can serve notifications, show only new notifications, dismiss maybe, etc.
uncaught errors in graphql resolvers are not logged as such. It may be necessary to write a custom "envelop" handler and pass that to graphql yoga. Its completely hair-brained. Another...