Changes in Update Released on 01-March-2024
This update includes the changes described in the following sections.
Issues/Bugs Addressed
The following issues were addressed in the Update:
| Issue ID | Issue Summary |
|---|---|
| SCA-52077 | Fixed False Negative Vulnerability for PostGres SQL driver |
| SCA-51813, SCA-51823, SCA-51828 | Updated license detection and license evidence mechanism for licenses like CDDL , Public Domain, BSD, GPL-2.0 |
| SCA-51814 | Updated component detection mechanism for libtommath component |
| SCA-51907 | Added/Updated components, versions and license mappings for components like Json in Java, async etc |
| SCA-52018 | Fixed license mappings for component "justmock" from Nuget forge |
Enhanced License Detection Capability for Components
License detection capability and license evidence mechanism for the following components was updated/added:
-
CDDL-1.0
-
CDDL-1.1
-
GPL-2.0
-
BSD-Style
-
Public Domain
New/Update Component Requests
-
libtommath
-
async
-
Json in Java
New/Update License Requests
- Added a new license from https://www.telerik.com/purchase/license-agreement/kendo-ui -Telerik Kendo End User License Agreement
Collector Status
The following table lists Collector Status information.
| Name | Date of Last Successful Run |
|---|---|
| npm | 2/26/2024 |
| crates | 8/25/2022 |
| cpan | 2/22/2024 |
| clojars | 2/22/2024 |
| rubygems | 2/22/2024 |
| maven-google | 2/23/2024 |
| cran | 2/24/2024 |
| hackage | 2/25/2024 |
| packagist | 2/25/2024 |
| go | 2/26/2024 |
| pypi | 2/26/2024 |
| nuget gallery | 2/22/2024 |
| maven2-ibiblio | 2/14/2024 |
| github | 2/27/2024 |
| fedora-koji | 2/23/2024 |
| alpine | 2/28/2024 |
| gitlab | 6/6/2023 |
| debian | 2/26/2024 |