Changes in Update Released on 29-November-2022
This Update includes the changes described in the following sections.
Issues/Bugs Addressed
The following issues were addressed in the Update:
| Issue ID | Issue Summary |
|---|---|
| SCA-44021 | Addition of Go vulnerability mapper to the list of our automated vulnerability mappers |
| SCA-44283 | Added the license Microsoft .Net Compiler Platform Redistributable Packages Preview to the data library |
| SCA-44290 | Updated the invalid urls of few Go forge components like Alamofire/AlamofireImage, BoltsFramework/Bolts-Swift and bitstadium/hockeykit. |
| SCA-44376 | Updating license information for the components jquery (id: 3526090) |
| SCA-44397, SCA-43635 | Fixed false positive vulnerability for the components like system.threading.tasks nuget package and MySQL NPM module. |
Enhanced License Detection Capability for Components
License detection capability and license evidence mechanism for the following components was updated/added:
-
Qt-GPL-exception-1.0.txt
-
SchemeReport.txt
-
SWL.txt
-
Universal-FOSS-exception-1.0.txt
-
X11-distribute-modifications-variant.txt
-
XSkat.txt
-
CECILL-1.0
-
CECILL-1.1
-
CECILL-2.0
-
CECILL-2.1
-
CECILL-B
-
CECILL-C
-
MPL-1.0
-
MPL-1.1
-
MPL-2.0
-
MPL-2.0-no-copyleft-exception
-
NPL-1.0
-
NPL-1.1
-
MIT License
-
MIT-open-group
-
X11
-
X11-distribute-modifications-variant
-
XSkat
-
SWL
-
SchemeReport
New/Update Component Requests
-
XIPH Flac
-
XORG XServer
Collector Status
The following table lists Collector Status information.
| Name | Date of Last Successful Run |
|---|---|
| crates | 8/25/2022 |
| npm | 10/11/2022 |
| pypi | 10/18/2022 |
| alpine | 11/8/2022 |
| gitlab | 11/19/2022 |
| cpan | 11/24/2022 |
| rubygems | 11/24/2022 |
| clojars | 11/24/2022 |
| github | 11/24/2022 |
| maven-google | 11/25/2022 |
| fedora-koji | 11/26/2022 |
| cran | 11/26/2022 |
| nuget gallery | 11/26/2022 |
| hackage | 11/27/2022 |
| packagist | 11/28/2022 |
| go | 11/28/2022 |
| maven2-ibiblio | 11/28/2022 |