vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Review how we create PURL namespaces in the GitHhub importer

Open pombredanne opened this issue 1 year ago • 0 comments

The code at https://github.com/nexB/vulnerablecode/blob/3b3ea6d3e3a64a8504733c9fe5298f8d4734993b/vulnerabilities/importers/github.py#L116 needs some love.

  1. npm has a namespace.
  2. we should avoid if possible to single out a list of package type
  3. golang may have a namespace

pombredanne avatar Jul 16 '24 10:07 pombredanne