devguard

fix/policy-association

fix/secret-update

844-license-risks

748-write-tests-using-containers-for-different-functions

fix/fixedversion-name

add-information-to-activity-stream

change-user-id-by-detected-events

768-add-addtional-infos-to-vex

611-add-language-column-to-organization---we-might-need-to-translate-created-github-and-gitlab-tickets

fix/risks-search

check-admin-token-first

fix/metadata-nil

feature-upload-vex

fix/firstparty-vulns-calculatehash-function

fix/badge

fix/get-org-by-firstparty-vulnID

add/artifact-name-input-to-scan-commands

vuln-report

673-mockeryyaml-is-wronlgy-formatted

710-add-docs-link-to-created-tickets

copy-vuln-events

946-add-new-state-for-dependencies-licences-users-do-not-understand-async-fetch

main

fix/handling-empty-slice-components

feature/add-prometheus-metrics

feature/sast-integration

integration-tests

feautre/jira-integration

slug-unique

wrong-link-in-devguard-attest-action

744-webhook-is-created-with-to-many-triggers

fix/ticket-id/url-naming

add-integrations-tests

chore/terms

feature/webhook-events

fix/valid-sboms

fix/list-projects-with-the-saved-slug

803-normalize---ref-and---defaultref-paramter

541-add-sbom-scanning-to-daemons-currently-we-only-recalculate-the-risks-but-do-not-detect-new-ones

434-ensure-we-sanitise-sarif-reports---especially-secret-scanning-eg-obfuscate-high-entropy-strings-from-secret-scans

fix-lint-main

linting-standard

delete-fail-on-cvss-flag-from-pipeline

delete-not-active-asset-verions

fix/do-update-colums-by-conflict

0.12.3

0.11.0 659-license-overwrite

558-scan-daemon-scans-asset-versions-from-deleted-assets

629-add-last-scan-information-to-asset-version-dto

676-wrong-link-in-devguard-scanner

fix-clientfactory

ci-updates

distroless

894-hide-option-for-user-removal-for-any-owner

535-add-information-about-the-amount-of-vulnerabilities-with-known-exploits-to-the-dashboard

add/search-function-to-projectslist

update-badge-api

777-error-message-that-an-account-with-the-e-mail-address-already-existss

update-ticket-scannerids-label

fix/maven-licenses

glitchtip-soft-errors

add-basic-risk-handling-information-sharing-inside-org

background-sync-external-entity

678-overhaul-the-looks-of-a-ticket-generated-by-devguard

903-initial-pipeline-run-build-image-fails-due-to-foreign-key-constraint-violation-related-to-in-toto-links

Hubtrick-Git-patch-1

fix/default-scanner-id-tag

feature/sbom-report

fix/firstparty-vulns-gitlab-webhook-events

565-add-webhook_secret-column-to-assets

948-ensure-that-link-in-the-scanner-output-that-point-to-devguard-are-directed-to-the-correct-instance-based-on-the-given-devguard-api

disable-webhook-usage-without-secret

838-Add-basic-risk-handling-information-sharing-inside-org

fix/scan-result-vulns-amount

troubleshooting-sast

fix/nil-old-risk-assessment

fix/dependency-graph

522-add-config-file-endpoints-to-asset-project-and-organization

attest-integration

dates-in-vulnerability-events

0.11.1 838-add-basic-risk-handling-information-sharing-inside-org

601-remove-first-party-scan-results-log

validate-webhook-secret

update-vuln-badge-by-zero-values

add-scannerids-label

glitchtip

928-change-identity.schema.json-and-remove-manual

604-first-party-vuln-tickets-have-the-wrong-filelink-the-line-should-actually-be-included-in-the-link

fix/defaultbranch-tag

lookup

742-assets-do-not-get-deleted-when-pressing-delete

fix/jira-integration

790-feature-request-upload-vex

add-mechanical-justification

0.12.0 fix-nil-pointer

gitlab-oauth2

simplify-ticket-creation

Devguard-Pipeline

Badge API Documentation

Badge API

Badge API Programm ZenDiS

quay.io/jetstack/cert-manager-acmesolver

ghcr.io/l3montree-dev/devguard-operator

ghcr.io/l3montree-dev/devguard-postgresql

ghcr.io/l3montree-dev/devguard

docker.io/oryd/kratos

DevGuard Operator

Devguard Postgresql

devguard-documentation

devguard-scanner

 Devguard-Pipeline

devguard-web

devguard-action

Devguard

Robot User

Badge-API

Lars Hermges

Patrick Rissmann

Sebastian Kawelke

Tim Bastin

David Luhmer

Refaei Shikho

Frédéric Noppe

refoo0

timbastin

seb-kw

Frederic-Kenji

devguard-bot-dev[bot]

L3montree Cybersecurity

The documentation for the DevGuard Project

The scanner component of the devguard project

This is a scan for Devguard CI/CD components in a GitLab project, aimed at testing whether these components function correctly.

Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

/Devguard
Group
/devguard
Repository

CVE-2025-22870

Reopen this vulnerability

Affected component

Quick Fix