Security scans #2603
Labels
changelog-ignore
Don't in
8000
clude this issue in the release changelog
Comments
|
👋 Hi @JL-Tests would you be able to sent these over via https://github.com/anchore/grype/blob/main/SECURITY.md#reporting-a-vulnerability I've redacted and downloaded the report for now but we encourage responsible disclosure in this case 😄 |
|
I'm going to close this. These are hardening measures that we may want to do someday, but this issue is not where it will happen. Running tools and dumping the results into an issue is irresponsible and annoying. This was not reported to the address @spiffcs asked them to send this data to. We would love to see some PRs opened to resolve these issues. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi grype Team,
FYI security scans with semgrep (image capture and csv attached) and gosec (Html report zipped and attached).
........ [REDACTED]
JL
The text was updated successfully, but these errors were encountered: