Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
#

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

#

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

rust-secure-code / cargo-auditable Public

Notifications You must be signed in to change notification settings
Fork 29
Star 654

Code
Issues 12
Pull requests 1
Discussions
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Announcement blockers #73

Closed

9 of 10 tasks

Shnatsel opened this issue Sep 9, 2022 · 0 comments

Closed

9 of 10 tasks

Announcement blockers #73

Shnatsel opened this issue Sep 9, 2022 · 0 comments

Comments

Copy link

Member

Shnatsel commented Sep 9, 2022 •

edited

Loading

sscache bug preventing interop: Handle use of RUSTC_WORKSPACE_WRAPPER mozilla/sccache#1280
Binary scanning MVP in cargo audit: Binary scanning MVP rustsec/rustsec#635
Ship a cargo auditable release with binary scanning: Release cargo audit 0.17.1 rustsec/rustsec#709
JSON schema: Provide a JSON schema #72
Better docs on consuming the format: Document consuming the format better #74
GHSA fixing their non-compliance with OSV spec so that scanning with Trivy doesn't result in an avalanche of false positives: Support limit and last_affected range events github/advisory-database#470
Update documentation on auditable-extract and auditable-serde to point to the high-level wrapper crate auditable-info
Wait for GHSA-exported OSV data to be regenerated: Support limit and last_affected range events github/advisory-database#470 (comment)
Confirm that Trivy does in fact support the last_affected field from OSV 1.3 and consumes GHSA OSV advisories without false positives
Get confirmation from @tofay that the entire pipeline works properly, and that it's validated in prod

The text was updated successfully, but these errors were encountered:

repi reacted with thumbs up emoji

All reactions

👍 1 reaction

Shnatsel closed this as completed

# for free to join this conversation on GitHub. Already have an account? # to comment

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

No branches or pull requests

1 participant

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.