Groups
Groups
Sign in
Groups
Groups
osv-discuss
Conversations
About
Send feedback
Help
osv-discuss
Contact owners and managers
1–30 of 50
Mark all as read
Report group
0 selected
Rangaswamy, Gayathri
,
Jess Lowe
3
Sep 21
Correction: CVE-2019-9153 (openpgpjs) fix available in v4.2.0
Hello Jess, Thank you for your response. To clarify, I was referring to https://github.com/google/osv
unread,
Correction: CVE-2019-9153 (openpgpjs) fix available in v4.2.0
Hello Jess, Thank you for your response. To clarify, I was referring to https://github.com/google/osv
Sep 21
Jess Lowe
Sep 15
[OSV users] Decoupling Alpine and Debian CVE trackers from main OSV CVE record
Hi all, on a similar but different tangent from our last email, we are letting you know that we will
unread,
[OSV users] Decoupling Alpine and Debian CVE trackers from main OSV CVE record
Hi all, on a similar but different tangent from our last email, we are letting you know that we will
Sep 15
Iris Iris
,
Jess Lowe
2
Sep 9
Incorrect affected range in OSV record for CVE-2024-24267
Hi! Thanks for the report, and your interest in OSV's data quality! We currently source this
unread,
Incorrect affected range in OSV record for CVE-2024-24267
Hi! Thanks for the report, and your interest in OSV's data quality! We currently source this
Sep 9
Rex Pan
Sep 9
[OSV users] Stopping enumeration of Alpine and Debian OSV versions
Hi folks, we are considering stopping version enumeration for Alpine and Debian OSV records. To be
unread,
[OSV users] Stopping enumeration of Alpine and Debian OSV versions
Hi folks, we are considering stopping version enumeration for Alpine and Debian OSV records. To be
Sep 9
Holly Gong
2
Jun 25
OSV Integration for Gentoo GLSAs
Hi, Just wanted to gently follow up on my email regarding the OSV data integration. We are looking
unread,
OSV Integration for Gentoo GLSAs
Hi, Just wanted to gently follow up on my email regarding the OSV data integration. We are looking
Jun 25
Indermeet Gandhi
, …
Oliver Chang
3
Jun 9
OSV and Custom Fixes to Open Source Packages
Even aside from the question on if the patches are publicly available, I wonder if OSV is the wrong
unread,
OSV and Custom Fixes to Open Source Packages
Even aside from the question on if the patches are publicly available, I wonder if OSV is the wrong
Jun 9
Egon Kocjan
2
Apr 29
unexpected results for a specific commit ID
Sorry for spam (I missed github repo), posted issue here instead: https://github.com/google/osv.dev/
unread,
unexpected results for a specific commit ID
Sorry for spam (I missed github repo), posted issue here instead: https://github.com/google/osv.dev/
Apr 29
David Fernandez Gonzalez
, …
Andrew Pollock
4
Feb 16
Schema proposal: ecosystem severities
For anyone else following along at home, this is being tracked in https://github.com/ossf/osv-schema/
unread,
Schema proposal: ecosystem severities
For anyone else following along at home, this is being tracked in https://github.com/ossf/osv-schema/
Feb 16
Aaron Bryson
,
Andrew Pollock
2
11/11/24
GitLab CI Template creation
Hi Aaron, Thanks for that link, I've added it to https://github.com/google/osv-scanner-action/
unread,
GitLab CI Template creation
Hi Aaron, Thanks for that link, I've added it to https://github.com/google/osv-scanner-action/
11/11/24
Andrew Pollock
11/3/24
Clarifying packages for AlmaLinux ecosystem
Hi Nikita, I hope you're well. With Red Hat's recent onboarding, we were doing some spot
unread,
Clarifying packages for AlmaLinux ecosystem
Hi Nikita, I hope you're well. With Red Hat's recent onboarding, we were doing some spot
11/3/24
Holly Gong
10/10/24
Changes to OSV Sub-ecosystem Exports to osv-vulnerabilities
Hello, Over the past year, OSV has had a big focus on Linux distribution support. As the OSV schema
unread,
Changes to OSV Sub-ecosystem Exports to osv-vulnerabilities
Hello, Over the past year, OSV has had a big focus on Linux distribution support. As the OSV schema
10/10/24
Arup Majumder
,
Andrew Pollock
2
8/30/24
Query Regarding : OSV Database
On Thu, 29 Aug 2024 at 23:21, Arup Majumder <arup...@googlemail.com> wrote: Hi, Hi, thanks
unread,
Query Regarding : OSV Database
On Thu, 29 Aug 2024 at 23:21, Arup Majumder <arup...@googlemail.com> wrote: Hi, Hi, thanks
8/30/24
Andrew Pollock
,
Marcus Meissner
3
7/15/24
Next steps with OpenSuSE importing into OSV.dev
Hi Marcus, My apologies for dropping the ball on a response to this. On Tue, 20 Feb 2024 at 02:33,
unread,
Next steps with OpenSuSE importing into OSV.dev
Hi Marcus, My apologies for dropping the ball on a response to this. On Tue, 20 Feb 2024 at 02:33,
7/15/24
Andrew Pollock
5/22/24
Defining the properties of a high quality OSV record (for import by OSV.dev)
Hello again, Following up from my previous email, the draft definition of the properties of a high
unread,
Defining the properties of a high quality OSV record (for import by OSV.dev)
Hello again, Following up from my previous email, the draft definition of the properties of a high
5/22/24
Andrew Pollock
5/8/24
OSV.dev's data quality initiatives in 2024
Hello, One of my areas of focus this year is on OSV.dev's data quality story, broadly bucketed
unread,
OSV.dev's data quality initiatives in 2024
Hello, One of my areas of focus this year is on OSV.dev's data quality story, broadly bucketed
5/8/24
Oliver Chang
,
Mustafa Gezen
11
5/6/24
gs://resf-osv-data not being updated?
This is incredible. Thanks Mustafa! -- Oliver On Tue, 7 May 2024 at 09:55, Mustafa Gezen <mustafa@
unread,
gs://resf-osv-data not being updated?
This is incredible. Thanks Mustafa! -- Oliver On Tue, 7 May 2024 at 09:55, Mustafa Gezen <mustafa@
5/6/24
Andrew Pollock
, …
Mustafa Gezen
9
4/20/24
Including binary packages in Rocky Linux's OSV records
Hi folks, I've been shifting focus and don't do a lot of work on the errata system anymore
unread,
Including binary packages in Rocky Linux's OSV records
Hi folks, I've been shifting focus and don't do a lot of work on the errata system anymore
4/20/24
Andrew Pollock
,
Martin Prpič
2
4/3/24
Re: Explicit listing of vulnerable versions
Awesome! Exactly what I was looking for, thanks! Martin On Wed, Apr 3, 2024, 17:25 Andrew Pollock
unread,
Re: Explicit listing of vulnerable versions
Awesome! Exactly what I was looking for, thanks! Martin On Wed, Apr 3, 2024, 17:25 Andrew Pollock
4/3/24
Andrew Pollock
,
Mustafa Gezen
4
2/22/24
Version enumeration for Rocky Linux
Ah that explains it, so the contribution would be into the osv.dev enumeration code. Thanks for the
unread,
Version enumeration for Rocky Linux
Ah that explains it, so the contribution would be into the osv.dev enumeration code. Thanks for the
2/22/24
Andrew Pollock
, …
Oliver Chang
17
1/15/24
Re: regarding OSV / SUSE
Hey Marcus, Happy New Year! Hope you had a nice holiday break. We're still really excited to get
unread,
Re: regarding OSV / SUSE
Hey Marcus, Happy New Year! Hope you had a nice holiday break. We're still really excited to get
1/15/24
Khai Tran
,
Oliver Chang
3
11/27/23
OSV Scanner Remediation Feature
Hi Oliver, Thanks for getting back to me. We're looking at tools that can help us generate pull
unread,
OSV Scanner Remediation Feature
Hi Oliver, Thanks for getting back to me. We're looking at tools that can help us generate pull
11/27/23
Furkan Sayım
,
Rex Pan
2
10/30/23
OSV Scanner
Hello! Thanks for your interest! > - I checked the OSV.DEV list and there are few packages that
unread,
OSV Scanner
Hello! Thanks for your interest! > - I checked the OSV.DEV list and there are few packages that
10/30/23
Nikita Ivanov
, …
Holly Gong
26
10/24/23
AlmaLinux integration
Looks great, thank you! On Tue, Oct 24, 2023 at 7:29 AM Holly Gong <go...@google.com> wrote: `
unread,
AlmaLinux integration
Looks great, thank you! On Tue, Oct 24, 2023 at 7:29 AM Holly Gong <go...@google.com> wrote: `
10/24/23
Andrew Pollock
, …
Oliver Chang
29
9/13/23
Have you considered publishing Rocky Linux security errata in OSV format?
Thank you Mustafa!! -- Oliver On Thu, 14 Sept 2023 at 06:45, Mustafa Gezen <mus...@rockylinux.org
unread,
Have you considered publishing Rocky Linux security errata in OSV format?
Thank you Mustafa!! -- Oliver On Thu, 14 Sept 2023 at 06:45, Mustafa Gezen <mus...@rockylinux.org
9/13/23
Andrew Pollock
7/27/23
Red Hat Linux Security Advisories in OSV
Hi Martin and Rogue, It was nice to virtually cross paths today at the VEX and CSAF Summit. We've
unread,
Red Hat Linux Security Advisories in OSV
Hi Martin and Rogue, It was nice to virtually cross paths today at the VEX and CSAF Summit. We've
7/27/23
Christopher Halbersma
,
Oliver Chang
3
3/24/23
OVAL vs. OSV
So here is an example of of a Red Hat Security Advisory that has an update for a security update to
unread,
OVAL vs. OSV
So here is an example of of a Red Hat Security Advisory that has an update for a security update to
3/24/23
Andrew Pollock
3/2/23
OSV's data quality work at import time
Hi Kris and Chandan, It's been great to meet you both this week at the AWG and QWG meetings, and
unread,
OSV's data quality work at import time
Hi Kris and Chandan, It's been great to meet you both this week at the AWG and QWG meetings, and
3/2/23
Nikita Ivanov
,
Andrew Pollock
4
2/27/23
Guidelines for opensource projects which would like to be added to database
On Mon, 27 Feb 2023 at 20:06, Nikita Ivanov <niv...@cloudlinux.com> wrote: Hi! Thanks for your
unread,
Guidelines for opensource projects which would like to be added to database
On Mon, 27 Feb 2023 at 20:06, Nikita Ivanov <niv...@cloudlinux.com> wrote: Hi! Thanks for your
2/27/23
pavel mark
1/12/23
Fwd[7]:
Dear Buyer or Mandate Buyer I am *Mark pavel* from Russia *Official Mandate Russian Refinery* with
unread,
Fwd[7]:
Dear Buyer or Mandate Buyer I am *Mark pavel* from Russia *Official Mandate Russian Refinery* with
1/12/23
Sourabh SP
,
Andrew Pollock
3
1/4/23
Limitations of OSV DB API
For anyone trawling through the archives, this was also filed as https://github.com/google/osv.dev/
unread,
Limitations of OSV DB API
For anyone trawling through the archives, this was also filed as https://github.com/google/osv.dev/
1/4/23