prabhu
prabhu
Noticed that we currently do not capture the sbt plugins at all. The command `sbt plugins` doesn't list the package names and versions. Since plugins can influence what gets built...
- repo tests is too slow and inadequate - We are only testing against the [latest](https://github.com/CycloneDX/cdxgen/blob/master/.github/workflows/repotests.yml#L85-L86) node `23.x` and not against a matrix of node, deno, bun combinations. - For...
Document the command to use blint via the container image. ``` ghcr.io/owasp-dep-scan/blint ```
Waiting for LIEF to support 3.14 https://github.com/lief-project/LIEF/blob/69ade85c098be012a6ab012cc6ecd5adf9bd6b10/.github/workflows/linux-x86-64.yml#L189
The JSON has inadvertently become a list instead of an object when we introduced the page split feature to store 1,000 reachable flows per JSON. The docs need updating.
Can be reproduced for angular repo after `pnpm install` and with `export ASTGEN_INCLUDE_NODE_MODULES_BUNDLES=true`
Fixes https://github.com/CycloneDX/specification/issues/674 With inspiration from the Node.js [PRs](https://github.com/nodejs/node/pull/59259) and [this](https://github.com/nodejs/node/pull/59461), this pull request adds three new post-quantum algorithms: "ML-DSA-44", "ML-DSA-65", and "ML-DSA-87" to better future-proof BOM signature validity. The hypothetical...
## Describe the feature The specification currently supports the following JWA [RFC7518] and RFC8037 [RFC8037] asymmetric key algorithms: ``` "RS256", "RS384", "RS512", "PS256", "PS384", "PS512", "ES256", "ES384", "ES512", "Ed25519", "Ed448",...
My workflow has setup-python step followed by setup-ruby. Noticed that the python from msys64 directory is getting invoked, due to it appearing before the Python directory in the PATH. ```shell...
We stopped building Single Executable binaries for depscan from version 5.2.14 onwards. However, the historic versions (>= 0.0.1 = 6.0.0) using the build scripts available in the depscan-bin repo. pyinstaller...