nix-community/vulnix

Issues

• leverage third-party databases in order to map packages to CVEs

  #94 opened 8 months ago by lolbinarycat
  5

• Looking for a new maintainer

  #95 opened 8 months ago by zimbatm
  7

• Vulnix introduces its own version of nix into any shell it ends up in

  #100 opened 5 months ago by NorfairKing
  0

• Vulnix fails because feed data is not found

  #93 opened 6 months ago by matthiasdotsh
  2

• Looking for a new maintainer for vulnix

  #87 opened a year ago by ckauhaus
  6

• error: store path starts with illegal character '.'

  #98 opened 8 months ago by Theaninova
  0

• UnicodeDecodeError: 'utf-8' codec can't decode byte

  #97 opened 8 months ago by ztmr
  0

• Cannot build vulnix with sandbox on

  #92 opened a year ago by j-baker
  1

• False positive: Bolt from Freedesktop

  #91 opened a year ago by fabianhjr
  0

• Optionally enforcing reproducility specifying which NVD archive to use

  #88 opened 2 years ago by aciceri
  0

• Feature Request: `stdin` support

  #85 opened 2 years ago by cyntheticfox
  0

• Consider using OSV

  #76 opened 4 years ago by FRidh
  3

• what to do around frequent false positives (might be a case of me needing to learn to triage better with nix)

  #81 opened 3 years ago by 06kellyjac
  1

• Add `--upgradable` option to Vulnix to show only packages for which an update exists.

  #82 opened 3 years ago by Riscky
  0

• Support TOML list syntax

  #44 opened 6 years ago by ckauhaus
  1

• Improve/document confusing exit codes

  #79 opened 3 years ago by EggBaconAndSpam
  1

• nix show-derivation finds derivers nix-store -qd doesn't

  #69 opened 3 years ago by chkno
  1

• Scan user environments

  #33 opened 3 years ago by ckauhaus
  0

• Wait rather than fail when lock is held

  #60 opened 3 years ago by chkno
  1

• Failure to recognize applied CVE patch in lua

  #52 opened 3 years ago by ckauhaus
  1

• Feature request: In-memory roots from currently-running processes

  #70 opened 4 years ago by chkno
  0

• Ability to blacklist CPE patterns for specific Nixpkgs packages?

  #62 opened 5 years ago by primeos
  58

• vulnix reports issues in glibc-2.32 that are only present before 2.32

  #67 opened 4 years ago by ckauhaus
  1

• WSL: Not supported?

  #66 opened 4 years ago by MartinThoma
  3

• Backport vulnix 1.9.x to 19.09

  #59 opened 4 years ago by dR3b
  6

• NixPkgs: FLAKE8-check failure

  #65 opened 4 years ago by keidrych
  2

• Feature request: Mention package maintainers

  #63 opened 4 years ago by primeos
  3

• [feature] Automatically create PR adding knownVulnerabilities

  #38 opened 5 years ago by matthewbauer
  1

• Database error while updating to 1.9.2: _pickle.UnpicklingError: invalid load key, '_'.

  #58 opened 5 years ago by ckauhaus
  0

• XML data feed discontinued, use JSON feed instead

  #55 opened 5 years ago by ckauhaus
  5

• Cannot write out whitelist: AttributeError: 'str' object has no attribute 'cve_id'

  #57 opened 5 years ago by ckauhaus
  0

• Fails to match "rsync-3.1.3pre1" version

  #34 opened 5 years ago by ckauhaus
  1

• Add CVSS score(s) to the opened issues

  #53 opened 5 years ago by Ekleog
  1

• Issue running vulnix 1.8.2

  #56 opened 5 years ago by PsyanticY
  2

• docker support?

  #54 opened 5 years ago by bbigras
  1

• Fail to start scan

  #48 opened 5 years ago by robinp
  2

• False positive: WildMIDI 0.4.2

  #35 opened 5 years ago by ckauhaus
  1

• flake8 failure on latest master nixpkgs

  #46 opened 6 years ago by delroth
  4

• Allow whitelisting a CVE "terminally"

  #45 opened 6 years ago by ctheune
  1

• Incorrect processing of "until" field in whitelist

  #43 opened 6 years ago by ckauhaus
  0

• Improved whitelist merging

  #42 opened 6 years ago by ckauhaus
  1

• Don't report whitelisted CVEs again

  #41 opened 6 years ago by ckauhaus
  1

• BTrees (unittest.loader._FailedTest) ... ERROR

  #39 opened 6 years ago by samrose
  3

• Latest release is outdated

  #40 opened 6 years ago by mboelen
  2

• Support globbing on versions

  #30 opened 7 years ago by frlan
  3

• Fails to parse derivations with __structuredAttrs

  #37 opened 7 years ago by ckauhaus
  0

• man page

  #29 opened 7 years ago by ckauhaus
  0

• Feature request: List unused whitelist entries

  #31 opened 7 years ago by rickynils
  2

• Whitelist handling broken

  #36 opened 7 years ago by ckauhaus
  1

• CVE mentioned twice

  #25 opened 7 years ago by frlan
  0