Omer Finger
Omer Finger
**What would you like to be added**: I would like to add an option to exclude dev dependencies of being scanned. **Why is this needed**: For ecosystems like NodeJs, there...
Currently OSV supports a few operating system ecosystems like Debian & Alpine. We would like to open a feature request for supporting RedHat ecosystem vulnerabilities. Thanks, have a nice day.
Hi, it seems like the `summary` field of every OS ecosystem is "{pacakgeName} - security update". **Example:** ``` curl --location 'https://api.osv.dev/v1/query' \ --header 'Content-Type: application/json' \ --data '{ "package": {...
SafeQl recognizes fields as nullable when inner joining with a materialized view:  **The View:** ``` CREATE MATERIALIZED VIEW issues_base AS SELECT issue.id AS issue_id, issue.cve_code, image.name AS image_name, image.id...
Today SafeQL supports only raw SQL migration files. (In the `migrationsDir`) As a TypeORM user, I would like to also have a support of TS migrations files. Their structure simple:...
Hi, is there a way to set a minimum CVSS for failing the reusable PR scanner workflow? For example, new package with CVE of 2.1 CVSS, only print log, but...
I'd like to raise a modeling question regarding CVE-2025-55183 and CVE-2025-55184, [currently associated with the upstream React RSC packages](https://osv.dev/vulnerability/GHSA-925w-6v3x-g4j4) (react-server-dom-*). In practice, Next.js is affected even when those packages do...