Matthew Lorimor
Matthew Lorimor
In order to meet the spirit of doing this, would integrating something like [Aqua's Trivy scanner](https://github.com/aquasecurity/trivy#features) be more desirable? It's fairly easy to integrate it into SDLC/CI systems, so I...
@abeer91, @arhea - Echoing @duncaan's sentiment. Is there something still holding this up?
@mynkow I apologize for taking sooooooo incredibly long to even look at this. It looks pretty good to me. Releasing to nuget is new to me, so help with it...
@mynkow - This is definitely still on the roadmap. It's not a huge deal to have to go in and hit "build" in AppVeyor, but it'd be way more convenient...
Thanks for the PRs, @ilnarag. I'll get this and #22 looked at hopefully in the next couple of days.
The way TopK is implementing its heap property now is really crappy. Should seek out a better solution.
The repository needs to be public before this can be done.
Amazon Linux package version numbers can also be different enough that looking at NVD to try to cross reference against Amazon Linux package versions is not straightforward. I would prefer...
> Could you tell me more about your use cases for the Inspector agent? - @iliana As @rverma-jm suggested: in addition to other compliance frameworks, obtaining and maintaining a FedRAMP...
@iliana As a minor follow-up to the thoughts in my previous comment... > As far as vulnerability reporting, we’re initially looking at using GitHub’s security advisories, to keep things open...