Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Added report for three npm packages #724

Open
wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Added report for three npm packages #724

wants to merge 5 commits into from

Conversation

6mile
Copy link
Contributor

@6mile 6mile commented Jan 2, 2025

Added report for three malicious npm packages: lana-docs-site, grafana-sentry-datasource, and spectro-cloud-docs

@6mile
Added report for three npm packages lana-docs-site grafana-sentry-dat…
82f515f 
…asource spectro-cloud-docs

Signed-off-by: Paul McCarty <[email protected]>
@6mile
Copy link
Contributor Author

6mile commented Jan 2, 2025

heya @calebbrown there was a historical advisory report for spectro-cloud-docs package (MAL-2023-8700.json). I didn't know how you wanted to handle it so I just added a net new report and removed the historical one from my commit. IF this is not how you want to handle overlaps like this, lemme know and I'll adjust.

@calebbrown
Copy link
Contributor

heya @calebbrown there was a historical advisory report for spectro-cloud-docs package (MAL-2023-8700.json). I didn't know how you wanted to handle it so I just added a net new report and removed the historical one from my commit. IF this is not how you want to handle overlaps like this, lemme know and I'll adjust.

Hi @6mile, can you undelete the report MAL-2023-8700.json? The new file will be collapsed into the existing report. We have a policy of not deleting reports.

Thanks!

@6mile
Copy link
Contributor Author

6mile commented Jan 3, 2025

heya @calebbrown there was a historical advisory report for spectro-cloud-docs package (MAL-2023-8700.json). I didn't know how you wanted to handle it so I just added a net new report and removed the historical one from my commit. IF this is not how you want to handle overlaps like this, lemme know and I'll adjust.

Hi @6mile, can you undelete the report MAL-2023-8700.json? The new file will be collapsed into the existing report. We have a policy of not deleting reports.

Thanks!

Heya @calebbrown I've added MAL-2023-8700.json back in. Cheers

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@6mile @calebbrown