helix plant

Hi @tomabai, we are currently looking into this!

Hi @tomabai. Thank you for your patience, we reached out to the CNA to confirm this information. While we have not heard back we’ve been able to validate your findings...

Thank you for raising this question and for highlighting the ambiguity around Go's standard library in our supported ecosystems list in this issue, https://github.com/github/advisory-database/pull/5761, and https://github.com/github/advisory-database/pull/5760. To clarify: while the...

The GitHub Global Advisory Database includes both reviewed and unreviewed advisories in its totality. Before 2022, we only showed advisories from supported ecosystems which was improved upon several years ago...

Hi @d-ellis, Thanks for bringing this to our attention. After reviewing the [commit](https://github.com/eslint/rewrite/commit/b283f64099ad6c6b5043387c091691d21b387805), [release notes](https://github.com/eslint/rewrite/releases/tag/plugin-kit-v0.3.4), and the [related PR](https://github.com/eslint/rewrite/pull/240), there does appear to be a discrepancy between the fix version...

Hi @aprendis543, We’re not able to accept these changes, as they are only slightly modified versions of the vulnerable examples already listed. We do appreciate you taking the time to...

Hi @fatmatrabelsi17, Thank you for taking the time to supply this data. This advisory did not receive broadcasting because it's not in one of the GitHub Advisory Database's [supported ecosystems](https://github.com/github/advisory-database?tab=readme-ov-file#supported-ecosystems)....

Gotcha! This means we cannot merge the proposed changes to the advisory since it is not within one of the supported ecosystems. Thank you for taking the time to supply...