Project Ideas VulnerableCode ScanCode.io CI integration - aboutcode-org/aboutcode GitHub Wiki

ScanCode.io + VulnerableCode integrations

The goal is to create a ScanCode.io integration such that we can:

verify whether each of the packages of a project is vulnerable or not in VulnerableCode using API queries
store, report and display these results, and in particular if there is a vulnerable package detected.