[Bug 283421] security/osv-scanner: Update to 1.9.2

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 19 Dec 2024 18:38:38 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=283421

            Bug ID: 283421
           Summary: security/osv-scanner: Update to 1.9.2
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: lcook@freebsd.org
          Reporter: khorben@defora.org
          Assignee: lcook@freebsd.org
             Flags: maintainer-feedback?(lcook@freebsd.org)

Created attachment 255957
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=255957&action=edit
0001-security-osv-scanner-Update-to-1.9.2.patch

This patch updates osv-scanner to the latest release, version 1.9.2.

This release only contains bug fixes:

* Parsing crash on malformed pnpm lockfile. (#1327)
* Warn if a vulnerability is ignored multiple times in the same config. (#1377)
* Guided remediation: handle extraneous/missing packages in package-lock.json
more leniently. (#1394)
* Go call analysis now works with Go version up to v1.23.4. (#1443)
* Only fetch Maven snapshots and releases when enabled. (#1436)
* Remove redundant calls from PreFetch. (#1456)

-- 
You are receiving this mail because:
You are the assignee for the bug.