Sneak Peak: The identification of using outdated components is coming in v3.1 (ETA June). Reduce risk of under-reported vulnerabilities and increase remediation response by keeping components updated. Supports RubyGems, npm, and Java repos. Another good use for #PackageURL

Native support for analyzing components with #OSSIndex is coming in a future release. Huge thanks to @sonatype for offering this service and to @sonatypeDev for creating it. #opensource #oss #sbom #PackageURL #appsec #owasp

Discover how Dependency-Track uses software bill-of-material specs such as @CycloneDX_Spec and #SPDX along with #PackageURL to identify known vulnerabilities and out-of-date components that are putting your apps at risk. Eradicate #OWASP #A9 #opensource

It’s a drop-In replacement anyway. PackageURL=". Send it.

CPAN: URI-PackageURL-1.00 (GDT) -

CPAN: URI-PackageURL-1.01 (GDT) -

CPAN: URI-PackageURL-1.02 (GDT) -

CPAN: URI-PackageURL-1.10 (GDT) -

ADF設定で指定されたPackageURLを入れて、それでOKじゃないのかな？　うーむ。.

Installing older versions of R packages: install.packages(packageurl.tar.gz, repos=NULL, type="source") #R #datascience #programming.

えええーー。iアプリのPackageURLってIPアドレス直に書いちゃだめなの？こまったな.

packageurl-python 0.3.0 #python.

packageurl-python 0.4.0 #python.

@dotnetjunky Too bad, the ClickOnce params dont seem to work :-( http://t.co/FedTXYZS.

オッケーー。windowsのhostsファイルに適当な名前つけてそれをつかってPackageURL書いたら通った。.

por alguna razon la variable PACKAGEURL de #nhopkg queda vacia. :S.

Dependency-Track uses the #PackageURL specification in a number of different ways. provides some insight into just how powerful (and simple) the spec is.

First release of "URI::PackageURL", a Perl module for Package URL (aka "purl"). pkg:cpan/URI/PackageURL. #perl #cpan #modernperl.#smilecoding.

package-url/packageurl-go (0.1.0): Go implementation of the package url spec

@smsunarto There is ghost everything in there. Use go get packageurl@commithash to try and unfuck.