Skip to content

Project Ideas VulnerableCode ScanCode.io CI integration

Philippe Ombredanne edited this page Mar 1, 2022 · 1 revision

ScanCode.io + VulnerableCode integrations

The goal is to create a ScanCode.io integration such that we can:

  • verify whether each of the packages of a project is vulnerable or not in VulnerableCode using API queries
  • store, report and display these results, and in particular if there is a vulnerable package detected.

See https://github.com/nexB/scancode.io/issues/101 for details

Clone this wiki locally