Jason Shepherd
Jason Shepherd
Could this be caused by [this line](https://github.com/russross/blackfriday/blob/abb995c4663497048a1c452db9c45842c729a8ee/block.go#L1298) calling block instead of inline func?
Hi Chris, I spent a bit of time on this today, and added support for calling Runtime.exec() with String[] instead of a single String. This will be more useful on...
My upgrade got stuck due to missing gpg key for a custom repo. I was able to get it unstuck by restarting rpm-ostreed and trying the upgrade again. `systemctl restart...
We going to publish the records at a new REST endpoint `https://access.redhat.com/security/data/osv/` [Add Red Hat Ecosystem in osv-schema repo.](https://github.com/ossf/osv-schema/pull/257)
I guess we don't need to adjust purl_helpers because we include purls with our OSV records.
I think perhaps an SBOM might be the way to go. Eg. [SPDX](https://spdx.dev/)
I'm having trouble getting the hints to work. Appreciate some help with that @david-a-wheeler
Makes sense to me. A reference implementation of comparing RPM versions can be found in the [RPM source code](https://github.com/rpm-software-management/rpm/blob/master/rpmio/rpmvercmp.c). For clients using Go there is an implementation here: https://github.com/knqyf263/go-rpm-version
Seems like a valid proposal to me.
Can probably copy and adapt this one: https://github.com/kubescape/kubescape/blob/master/docs/environment-dependencies-policy.md