phylum-dev/vuln-reach
A library for building tools to determine if vulnerabilities are reachable in a code base.
RustAGPL-3.0
Issues
- 1
- 8
Reachability analysis failed for jest-environment-jsdom@28.1.3 and tough-cookie@4.0.0
#64 opened by dappelt - 1
- 1
Error downloading packages
#66 opened by dappelt - 0
- 0
- 0
- 0
- 0
- 3
Failing assertion in topological sorting
#25 opened by andreaphylum - 0
- 0
Implement discovery for `Project`
#11 opened by andreaphylum - 0
Move from assertions to `Result`
#26 opened by andreaphylum - 0
Improve comments
#28 opened by andreaphylum - 0
Fix variable declaration access graphs
#41 opened by cd-work - 0
Reachability is incorrect for assignments
#42 opened by cd-work - 0
- 0
Research (2023.8)
#13 opened by andreaphylum - 0
Improve documentation
#14 opened by andreaphylum - 0
Use expanded information in `VulnerableNode`
#30 opened by andreaphylum - 0
Skip processing modules with parse errors
#27 opened by andreaphylum - 0
- 0
- 0
Symbol table fails to parse functions with comments between formal parameters and body
#22 opened by andreaphylum - 0
Expose packages in `PackageResolver`
#16 opened by andreaphylum - 1
- 0
- 0
Add observability
#29 opened by andreaphylum - 0
Improve test coverage
#12 opened by andreaphylum - 0
Improve "access" concept
#10 opened by andreaphylum - 0
CommonJs is over-colored across packages
#9 opened by andreaphylum - 0
CommonJS reexports
#8 opened by andreaphylum - 0
- 0
Allow for multiple kinds of resolvers
#5 opened by andreaphylum - 0
- 0
- 0
Clarify license
#2 opened by kylewillmon