зеркало из https://github.com/golang/vulndb.git
internal/report, cmd/vulnreport, data/excluded: require excluded reports to have module information.
Modify report.Lint() so that it requires all excluded report (aside from Not Go Code) to also have module information. Also modifies createExcluded to be more robust against malformed and unreachable module paths in github issue titles. This (in addition to go/dev/cl/446868) allows us to add some module information to every report. Ideally, this will allow us to check if anyone is importing the modules mentioned in the excluded reports for our metrics. Change-Id: I783aea978760a70a0cccd30ad454d1fadfb85997 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/448837 Run-TryBot: Maceo Thompson <maceothompson@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Tatiana Bradley <tatiana@golang.org>
This commit is contained in:
Maceo Thompson
Родитель
f5fee51edf
Коммит
881b1e909f
|
|
@ -514,6 +514,9 @@ func parseGithubIssue(iss *issues.Issue, allowClosed bool) (*parsedIssue, error)
|
|||
switch {
|
||||
case strings.HasSuffix(p, ":") && p != "x/vulndb:":
|
||||
parsed.modulePath = strings.TrimSuffix(p, ":")
|
||||
parsed.modulePath = strings.ReplaceAll(parsed.modulePath, "\"", "")
|
||||
parsed.modulePath = report.FindModuleFromPackage(parsed.modulePath)
|
||||
|
||||
case strings.HasPrefix(p, "CVE"):
|
||||
parsed.cves = append(parsed.cves, strings.TrimSuffix(p, ","))
|
||||
case strings.HasPrefix(p, "GHSA"):
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: collectd.org
|
||||
cves:
|
||||
- CVE-2010-4336
|
||||
|
|
|
|||
|
|
@ -1,3 +1,7 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: std
|
||||
packages:
|
||||
- package: debug/gosym
|
||||
cves:
|
||||
- CVE-2012-2666
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2013-1909
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2013-4450
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitlab-shell
|
||||
cves:
|
||||
- CVE-2013-4546
|
||||
|
|
|
|||
|
|
@ -1,3 +1,7 @@
|
|||
excluded: NOT_A_VULNERABILITY
|
||||
modules:
|
||||
- module: std
|
||||
packages:
|
||||
- package: net
|
||||
cves:
|
||||
- CVE-2013-7423
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2014-4877
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2014-5445
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2014-6037
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2014-6287
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2014-9566
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2015-0779
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2016-2166
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2016-3094
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2016-4974
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: collectd.org
|
||||
cves:
|
||||
- CVE-2016-6254
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2016-7547
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2016-7552
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-13872
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-14705
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-14706
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitweb.gentoo.org/repo/gentoo.git
|
||||
cves:
|
||||
- CVE-2017-14730
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2017-15701
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2017-15702
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/channelcat/sanic
|
||||
cves:
|
||||
- CVE-2017-16762
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-17411
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-17560
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-18044
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitweb.gentoo.org/repo/gentoo.git
|
||||
cves:
|
||||
- CVE-2017-5677
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2017-7269
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitlab.com/graphviz/graphviz
|
||||
cves:
|
||||
- CVE-2018-10196
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: qpid.apache.org
|
||||
cves:
|
||||
- CVE-2018-17187
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-17552
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-17553
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitlab-pages
|
||||
cves:
|
||||
- CVE-2018-19572
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitlab-workhorse
|
||||
cves:
|
||||
- CVE-2018-19583
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-6849
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-7890
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-8065
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2018-9866
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2019-10123
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitlab.com/graphviz/graphviz
|
||||
cves:
|
||||
- CVE-2019-11023
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2019-12799
|
||||
|
|
|
|||
|
|
@ -1,3 +1,7 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: std
|
||||
packages:
|
||||
- package: runtime
|
||||
cves:
|
||||
- CVE-2019-19602
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2019-5624
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/rapid7/metasploit-framework
|
||||
cves:
|
||||
- CVE-2019-5645
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitlab-workhorse
|
||||
cves:
|
||||
- CVE-2019-6786
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: unit.nginx.org
|
||||
cves:
|
||||
- CVE-2019-7401
|
||||
|
|
|
|||
|
|
@ -1,3 +1,7 @@
|
|||
excluded: NOT_A_VULNERABILITY
|
||||
modules:
|
||||
- module: std
|
||||
packages:
|
||||
- package: net/http
|
||||
cves:
|
||||
- CVE-2019-9741
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: gitlab.com/graphviz/graphviz
|
||||
cves:
|
||||
- CVE-2019-9904
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/schollz/rwtxt
|
||||
cves:
|
||||
- CVE-2021-20848
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/labkit
|
||||
cves:
|
||||
- CVE-2021-22166
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: github.com/cloudflare/cfrpki
|
||||
cves:
|
||||
- CVE-2021-3908
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/cloudflare/cfrpki
|
||||
cves:
|
||||
- CVE-2021-3909
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: github.com/cosmos/cosmos-sdk
|
||||
cves:
|
||||
- CVE-2021-41135
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/opencontainers/distribution-spec
|
||||
cves:
|
||||
- CVE-2021-41190
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2021-41244
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/fluxcd/kustomize-controller
|
||||
cves:
|
||||
- CVE-2021-41254
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/minio/console
|
||||
cves:
|
||||
- CVE-2021-41266
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/edgexfoundry/app-functions-sdk-go
|
||||
cves:
|
||||
- CVE-2021-41278
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/hyperledger/fabric
|
||||
cves:
|
||||
- CVE-2021-43667
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/hyperledger/fabric
|
||||
cves:
|
||||
- CVE-2021-43669
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/open-policy-agent/gatekeeper
|
||||
cves:
|
||||
- CVE-2021-43979
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/google/exposure-notifications-verification-server
|
||||
cves:
|
||||
- CVE-2021-22565
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/protocolbuffers/protobuf
|
||||
cves:
|
||||
- CVE-2021-22570
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2021-43798
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2021-43813
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2021-43815
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/containerd/containerd
|
||||
cves:
|
||||
- CVE-2021-43816
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/sourcegraph/sourcegraph
|
||||
cves:
|
||||
- CVE-2021-43823
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/kyma-project/kyma
|
||||
cves:
|
||||
- CVE-2021-38182
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/containers/podman
|
||||
cves:
|
||||
- CVE-2021-4024
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: github.com/spinnaker/spinnaker
|
||||
cves:
|
||||
- CVE-2021-43832
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: github.com/crypto-org-chain/cronos
|
||||
cves:
|
||||
- CVE-2021-43839
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/h2o/h2o
|
||||
cves:
|
||||
- CVE-2021-43848
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/minio/minio
|
||||
cves:
|
||||
- CVE-2021-43858
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/unicorn-engine/unicorn
|
||||
cves:
|
||||
- CVE-2021-44078
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: NOT_GO_CODE
|
||||
modules:
|
||||
- module: github.com/Ericsson/codechecker
|
||||
cves:
|
||||
- CVE-2021-44217
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/spinnaker/spinnaker
|
||||
cves:
|
||||
- CVE-2021-39143
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/owncast/owncast
|
||||
cves:
|
||||
- CVE-2021-39183
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitlab-runner
|
||||
cves:
|
||||
- CVE-2021-39939
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: gitlab.com/gitlab-org/gitaly
|
||||
cves:
|
||||
- CVE-2022-0090
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/authzed/spicedb
|
||||
cves:
|
||||
- CVE-2022-21646
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2022-21673
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/istio/istio
|
||||
cves:
|
||||
- CVE-2022-21679
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: NOT_IMPORTABLE
|
||||
modules:
|
||||
- module: github.com/github/gh-ost
|
||||
cves:
|
||||
- CVE-2022-21687
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/istio/istio
|
||||
cves:
|
||||
- CVE-2022-21701
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/sipcapture/homer-app
|
||||
cves:
|
||||
- CVE-2022-22845
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/navidrome/navidrome
|
||||
cves:
|
||||
- CVE-2022-23857
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/casdoor/casdoor
|
||||
cves:
|
||||
- CVE-2022-24124
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/argoproj/argo-cd
|
||||
cves:
|
||||
- CVE-2022-24348
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/agent
|
||||
cves:
|
||||
- CVE-2021-41090
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/foxcpp/maddy
|
||||
cves:
|
||||
- CVE-2021-42583
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/nats-io/nats-server
|
||||
cves:
|
||||
- CVE-2022-24450
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/go-gitea/gitea
|
||||
cves:
|
||||
- CVE-2021-45325
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/go-gitea/gitea
|
||||
cves:
|
||||
- CVE-2021-45326
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,4 +1,6 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/go-gitea/gitea
|
||||
cves:
|
||||
- CVE-2021-45327
|
||||
ghsas:
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2022-21702
|
||||
|
|
|
|||
|
|
@ -1,3 +1,5 @@
|
|||
excluded: EFFECTIVELY_PRIVATE
|
||||
modules:
|
||||
- module: github.com/grafana/grafana
|
||||
cves:
|
||||
- CVE-2022-21703
|
||||
|
|
|
|||
Некоторые файлы не были показаны из-за слишком большого количества измененных файлов Показать больше
Загрузка…
Ссылка в новой задаче