Changes in Update Released on 11-November-2022
This Update includes the changes described in the following sections.
Issues/Bugs Addressed
The following issues were addressed in the Update:
| Issue ID | Issue Summary |
|---|---|
| SCA-44237 | Addition of missing vulnerabilities for junit(componentId: 437385) |
| SCA-44183 | Addition of missing vulnerabilities for xercesimpl and spring-data-mongodb |
| SCA-44075 | Update license text for the license Microsoft .NET Library License |
| SCA-44065 | Fixing license evidences for net-tools component |
| SCA-41333 | Addition of Alpine forge to list of our forge data collection |
Enhanced License Detection Capability for Components
License detection capability and license evidence mechanism for the following components was updated/added:
-
mplus.txt
-
MulanPSL-1.0.txt
-
MulanPSL-2.0.txt
-
NAIST-2003.txt
-
NCGL-UK-2.0.txt
-
NIST-PD-fallback.txt
-
NIST-PD.txt
-
NTP-0.txt
-
O-UDA-1.0.txt
-
ODC-By-1.0.txt
-
OpenJDK-assembly-exception-1.0.txt
-
OPUBL-1.0.txt
-
MIT-0
-
MIT-CMU
-
MIT-enna
-
MIT-feh
-
MIT-Modern-Variant.txt
-
MIT-open-group.txt
New/Update Component Requests
-
Google Play Services Android
-
android-support-library-v13
-
TrafficWatcher
-
ata-project
-
Telerik UI for ASP.NET MVC Components
-
Microsoft.Data.SqlClient.SNI.runtime
-
microsoft.aspnet.webapi.tracing
-
Microsoft SQL Server Compact 3.5 Service Pack 2
Collector Status
The following table lists Collector Status information.
| Name | Date of Last Successful Run |
|---|---|
| alpine | 11/8/2022 |
| crates | 8/25/2022 |
| npm | 10/11/2022 |
| pypi | 10/18/2022 |
| cran | 10/22/2022 |
| maven2-ibiblio | 10/27/2022 |
| clojars | 11/3/2022 |
| rubygems | 11/3/2022 |
| maven-google | 11/4/2022 |
| cpan | 11/4/2022 |
| nuget gallery | 11/5/2022 |
| hackage | 11/6/2022 |
| packagist | 11/7/2022 |
| go | 11/9/2022 |
| github | 11/9/2022 |
| gitlab | 11/9/2022 |
| fedora-koji | 11/10/2022 |