notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine

Bot filter coming soon

To deter bots pegging the database CPU to 100%, a bot testing filter to be added to the website. This should not affect newsfeeds etc. Anubis seems light-weight - it is already in use within the FreeBSD Project. This notice is just a heads up in case you see something odd. This notice will be updated after Anubis is installed.

Port details on branch 2025Q1
osv-scanner Vulnerability scanner written in Go which uses the OSV database
1.9.1_1 security on this many watch lists=0 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 1.9.1_1Version of this port present on the latest quarterly branch.
Maintainer: lcook@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2025-01-21 23:33:48
Last Update: 2025-01-21 23:28:02
Commit Hash: 3a64e04
License: APACHE20
WWW:
https://github.com/google/osv-scanner
Description:
Use OSV-Scanner to find existing vulnerabilities affecting your projects dependencies. OSV-Scanner provides an officially supported frontend to the OSV database that connects a projects list of dependencies with the vulnerabilities that affect them. Since the OSV.dev database is open source and distributed, it has several benefits in comparison with closed source advisory databases and scanners: * Each advisory comes from an open and authoritative source. * Anyone can suggest improvements to advisories, resulting in a very high quality database. * The OSV format unambiguously stores information about affected versions in a machine-readable format that precisely maps onto a developers list of packages. The above all results in fewer, more actionable vulnerability notifications, which reduces the time needed to resolve them.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb - no subversion history for this port

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (4 items)
Collapse this list.
  1. bin/osv-scanner
  2. /usr/local/share/licenses/osv-scanner-1.9.1_1/catalog.mk
  3. /usr/local/share/licenses/osv-scanner-1.9.1_1/LICENSE
  4. /usr/local/share/licenses/osv-scanner-1.9.1_1/APACHE20
Collapse this list.
Dependency lines:
  • osv-scanner>0:security/osv-scanner
To install the port:
cd /usr/ports/security/osv-scanner/ && make install clean
To add the package, run one of these commands:
  • pkg install security/osv-scanner
  • pkg install osv-scanner
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: osv-scanner
Flavors: there is no flavor information for this port.
distinfo:
TIMESTAMP = 1730742574 SHA256 (go/security_osv-scanner/osv-scanner-v1.9.1/v1.9.1.mod) = 8b46b0c469e2129a38fec377cbdf7ac43380afd538094fe23bd69d2267eb7c61 SIZE (go/security_osv-scanner/osv-scanner-v1.9.1/v1.9.1.mod) = 5009

Expand this list (2 items)

Collapse this list.

SHA256 (go/security_osv-scanner/osv-scanner-v1.9.1/v1.9.1.zip) = bdb4a6864eacd826398b2cb80a7e0dfc24faaa87171293cbe4f99eef8266afd0 SIZE (go/security_osv-scanner/osv-scanner-v1.9.1/v1.9.1.zip) = 7477512

Collapse this list.

No package information for this port in our database
Sometimes this happens. Not all ports have packages. Perhaps there is a build error. Check the fallout link: pkg-fallout
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. go123 : lang/go123
Fetch dependencies:
  1. go123 : lang/go123
  2. ca_root_nss>0 : security/ca_root_nss
There are no ports dependent upon this port
Configuration Options:
===> The following configuration options are available for osv-scanner-1.9.1_1: DOCS=on: Build and/or install documentation ===> Use 'make config' to modify these settings
Options name:
security_osv-scanner
USES:
go:1.23,modules zip
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. https://proxy.golang.org/github.com/google/osv-scanner/@v/
Collapse this list.

Number of commits found: 1

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
1.9.1_1
21 Jan 2025 23:28:02
commit hash: 3a64e0451bcb42e64229934ac549b029e5e07cc9commit hash: 3a64e0451bcb42e64229934ac549b029e5e07cc9commit hash: 3a64e0451bcb42e64229934ac549b029e5e07cc9commit hash: 3a64e0451bcb42e64229934ac549b029e5e07cc9 files touched by this commit		 Ashish SHUKLA (ashish) search for other commits by this committer 
all: Bump after lang/go123 update

MFH:		2025Q1
(cherry picked from commit ca07a602a8c6a47d062fe404167c2f3a1f91e3e9)

Number of commits found: 1
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
mod_securityJun 06
mod_securityJun 06
firefoxJun 05
firefoxJun 05
firefoxJun 05
firefoxJun 05
firefox-esrJun 05
firefox-esrJun 05
firefox-esrJun 05
firefox-esrJun 05
chromiumJun 04
electron34*Jun 04
electron35*Jun 04
electron36*Jun 04
roundcubeJun 03

31 vulnerabilities affecting 276 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2025-06-06 18:03:49 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 33309
Broken 120
Deprecated 309
Ignore 239
Forbidden 1
Restricted 2
No CDROM 1
Vulnerable 32
Expired 25
Set to expire 253
Interactive 0
new 24 hours 1
new 48 hours3
new 7 days20
new fortnight47
new month136
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2025 Dan Langille. All rights reserved.