Oliver Chang
Oliver Chang
@Alan32Liu @jonathanmetzman thoughts?
> Not sure this is a good idea. I'm more interested in why this fails. I think this fix could potentially mess up results. If one fuzzer is messing with...
Thanks for the report! It looks like "lambdaisland:uri" lives in the Clojars repository, which we do not index. We only index Maven Central packages for serving query responses. I'll reword...
Hi! Thanks for the interest. @dodys from Canonical has been working on OSV support here: https://github.com/canonical/ubuntu-security-notices/tree/main/osv. We'll work on importing this into OSV.dev shortly.
Thanks @fviernau ! would you also be able to open an issue on https://github.com/github/advisory-database for this? It would be great to get consensus on this from the (currently only) database...
@darakian thoughts on this?
Our blog post announcing this has just been published: https://osv.dev/blog/posts/introducing-broad-c-c++-support/
Thanks for reporting this! You are right, and this is because of a TODO in our implementation here: https://github.com/google/osv.dev/blob/65872859881ef0dbe2656b0ad39237df38bceb7e/osv/impact.py#L180 If you pass `--detect_cherrypicks true`, you should get the correct result....
> Hello, I just checked and the --detect_cherrypicks true do not correct the problem related to multiple non-overalpping ranges on the same branch : #1898 > > Thanks! Romain Lefeuvre...