Comments (4)
Related to my comment here: #3 (comment)
from deps.dev.
See also #16
from deps.dev.
I'll try to rephrase this feature request, and please correct me if I misunderstand:
In the GetPackage response, include the keys for all advisories that affect any version of that package, and denote which versions are affected by which advisories.
If we were to do that then we should probably do the inverse in the GetAdvisory endpoint.
This is on our roadmap. 👍
from deps.dev.
See also #16
Doesn't that issue actually duplicate this one exactly?
from deps.dev.
Related Issues (20)
- how to get the checksum information or some type of hash value of the package through the API HOT 1
- Unresolved dependency tree in go HOT 1
- The maven component query return data is missing the publishedAt field. HOT 1
- license ids do not always correspond to the official SPDX list HOT 2
- Commercial use of deps.dev HOT 1
- Compatibility v3 - v3alpha HOT 2
- Missing version for Go package github.com/cncf/xds/go
- Missing Go package github.com/docker/cli HOT 1
- Missing version for Go package github.com/opencontainers/image-spec
- Support Go standard library package
- Missing version for Go package github.com/asaskevich/govalidator
- Frequent missing publishedAt element for versions where default = true HOT 1
- Python (PyPi) version numbers padded with '.0' HOT 2
- REST API similarlyNamedPackages returns no results HOT 2
- How to choose the default version of a package HOT 1
- Surface deprecation warnings that appear in the UI HOT 2
- PurlLookup does not work for Go module names containing uppercase letters HOT 7
- Support PEP 639 for PyPI licenses HOT 2
- Add dependent counts to the API HOT 7
- purlLookupBatch Fails Entire Batch If Any Repo Is Missing HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from deps.dev.