chore: OSV-Scanner Release 2.3.0 #2350
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #2350 +/- ##
=======================================
Coverage 67.80% 67.80%
=======================================
Files 171 171
Lines 13005 13005
=======================================
Hits 8818 8818
Misses 3502 3502
Partials 685 685 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
cuixq
approved these changes
Nov 18, 2025
another-rex
reviewed
Nov 19, 2025
81be1b9 to
c264e23
Compare
another-rex
approved these changes
Nov 19, 2025
Co-authored-by: Rex P <[email protected]>
michaelkedar
commented
Nov 19, 2025
CHANGELOG.md
Outdated
|
|
||
| - [Feature #2321](https://github.com/google/osv-scanner/pull/2321) Add support for license checks for RubyGems. | ||
| - [Feature #2294](https://github.com/google/osv-scanner/pull/2294) Replace `requirementsenhanceable` extractor with transitive enricher. | ||
| - [Feature #1417](https://github.com/google/osv-scanner/issues/1417) Add `packagedeprecation` enricher to check for deprecated packages. (`--experimental-plugins=packagedeprecation`) |
Member
Author
There was a problem hiding this comment.
I don't think this packagedeprecation result being diplayed in the osv-scanner output anywhere?
@another-rex @Ly-Joey ?
Collaborator
There was a problem hiding this comment.
Good point, let's hide this for now as well. I'll make an issue to track it here.
Collaborator
There was a problem hiding this comment.
Oh, thought it was just a feature request in osv-scalibr, not scanner. Ah well.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Tried to get Gemini to detect relevant changes in osv-scalibr to add to the changelog. Seems to have done a decent enough job (but required a decent amount of manual editing).