github google/osv-scanner v1.4.0
on GitHub

latest releases: v1.9.1, v1.9.0, v1.8.5...
14 months ago

v1.4.0:

Features

  • Feature #183 Add (experimental) offline mode! See our documentation for how to use it.
  • Feature #452 Add (experimental) rust call analysis, detect whether vulnerable functions are actually called in your Rust project! See our documentation for limitations and how to use this.
  • Feature #484 Detect the installed go version and checks for vulnerabilities in the standard library.
  • Feature #505 OSV-Scanner doesn't support your lockfile format? You can now use your own parser for your format, and create an intermediate osv-scanner.json for osv-scanner to scan. See our documentation for instructions.

API Features

  • Feature #451 The lockfile package now support extracting dependencies directly from any io.Reader, removing the requirement of a file path.

Fixes

  • Bug #457 Fix PURL mapping for Alpine packages
  • Bug #462 Use correct plural and singular forms based on count

New Contributors

Full Changelog: v1.3.6...v1.4.0

Check out latest releases or
releases around google/osv-scanner v1.4.0

Don't miss a new osv-scanner release

NewReleases is sending notifications on new releases.

Get notifications