Skip to content

Pull requests: google/osv-scanner

New pull request New
21 Open 2,113 Closed
21 Open 2,113 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

datasource: reject non-HTTPS Maven registry URLs to prevent credential exfiltration via pom.xml
#2671 opened Mar 22, 2026 by djvirus9 Loading…
output: sanitize \r in gh-annotations to prevent GitHub Actions workflow command injection
#2669 opened Mar 22, 2026 by djvirus9 Loading…
3
fix: prevent path traversal in ParentPOMPath via relativePath validation
#2668 opened Mar 21, 2026 by johanr-8 Loading…
1
test: update snapshots
#2667 opened Mar 20, 2026 by osv-robot Loading…
1
Add a docker variant of the pre-commit hook
#2666 opened Mar 20, 2026 by pcastellazzi Loading…
fix: add a newline to separate "no issues found" from logs
#2665 opened Mar 19, 2026 by G-Rath Loading…
1
1
fix(output): remove second newline at end of vertical output
#2664 opened Mar 19, 2026 by G-Rath Loading…
1
feat: update osv-scalibr
#2662 opened Mar 19, 2026 by osv-robot Loading…
1
feat: support regex matching for package name overrides
#2658 opened Mar 19, 2026 by majiayu000 Loading…
1
8
test: update cassettes
#2652 opened Mar 16, 2026 by osv-robot Loading…
1
ci: rename Dependencies workflow to Update osv-scalibr
#2650 opened Mar 16, 2026 by cuixq Draft
3
fix: correctly output packages from osv-scanner.json source in spdx format
#2641 opened Mar 12, 2026 by Mananshah237 Loading…
1
3
feat: Add configuration option to disable scanning Go version from go.mod
#2637 opened Mar 11, 2026 by another-rex Loading…
7
refactor: use ScanResults.Inventory.Packages directly
#2617 opened Mar 7, 2026 by G-Rath Loading…
1
feat: deprecate --experimental- flags in favor of shorter --x- versions
#2589 opened Mar 4, 2026 by G-Rath Draft
4
feat: Move away from github-pages gem and add ruby 4 support for docs
#2588 opened Mar 4, 2026 by hopkincame Loading…
22
test: label snapshots
#2538 opened Feb 20, 2026 by G-Rath Draft
2
feat: add experimental support for updating config files
#2534 opened Feb 19, 2026 by G-Rath Loading…
8
feat: Scan Homebrew inventory using git repository metadata
#2510 opened Feb 11, 2026 by Avgor46 Loading…
8
feat: remove deprecated sbom flag
#2452 opened Jan 8, 2026 by G-Rath Loading…
1
1
feat: migrate guided remediation to osv-scalibr implementation
#2413 opened Dec 12, 2025 by michaelkedar Loading…
9
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.