News

heise online3mon
Google's vulnerability scanner checks container layers and Maven projects - heise online
The scanner now also detects vulnerabilities in other formats of project and container dependencies: Node modules, Python wheels, Java Uber jars and Go binaries as well as lock and manifest files ...
ZDNet4y
Minion privilege escalation exploit patched in SaltStack Salt project
The Salt Project resolved the vulnerability in a February security release.The group also patched other high-impact bugs including CVE-2021-3197, a shell injection flaw in Salt-API's SSH client ...
InfoWorld3y
How to detect the Log4j vulnerability in your applications
Scanning the same sample Java project with Grype finds the Log4j vulnerability and identifies it as a critical severity. Anchore Syft and Grype have the ability to scan your applications no matter ...