diff --git a/techstack.md b/techstack.md new file mode 100644 index 0000000..d676c3e --- /dev/null +++ b/techstack.md @@ -0,0 +1,98 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [johschmidt42/python-project-johannes](https://github.com/johschmidt42/python-project-johannes)![](https://img.stackshare.io/public_badge.svg "public") +

+|7
Tools used|02/29/24
Report generated| +|------|------| +
+ +## Languages (1) + + + + +
+ Python +
+ Python +
+ +
+ +## DevOps (4) + + + + + + + + + + +
+ Docker +
+ Docker +
+ +		 + Git +
+ Git +
+ +		 + GitHub Actions +
+ GitHub Actions +
+ +		 + PyPI +
+ PyPI +
+ +
+ + +## Open source packages (2) + +## PyPI (2) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[fastapi](https://pypi.org/project/fastapi)|v0.100.0|07/22/23|Johannes Schmidt |MIT|[](https://github.com/advisories/GHSA-qf9m-vfgh-m389) (High)
[CVE-2024-24762](https://github.com/advisories/GHSA-2jv5-9r88-3w3p) (High)| +|[httpx](https://pypi.org/project/httpx)|v0.24.1|07/22/23|Johannes Schmidt |BSD-3-Clause|N/A| + +
+
+ +Generated via [Stack File](https://github.com/marketplace/stack-file) diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 0000000..5e51313 --- /dev/null +++ b/techstack.yml @@ -0,0 +1,107 @@ +repo_name: johschmidt42/python-project-johannes +report_id: 9867cd64e5584b3ef544960252e91494 +version: 0.1 +repo_type: Public +timestamp: '2024-02-29T18:38:02+00:00' +requested_by: actions-user +provider: github +branch: main +detected_tools_count: 7 +tools: +- name: Python + description: A clear and powerful object-oriented programming language, comparable + to Perl, Ruby, Scheme, or Java. + website_url: https://www.python.org + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/993/pUBY5pVj.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes + detection_source: Repo Metadata +- name: Docker + description: Enterprise Container Platform for High-Velocity Innovation. + website_url: https://www.docker.com/ + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Virtual Machine Platforms & Containers + image_url: https://img.stackshare.io/service/586/n4u37v9t_400x400.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes + detection_source: Repo Metadata +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes + detection_source: Repo Metadata +- name: GitHub Actions + description: Automate your workflow from idea to production + website_url: https://github.com/features/actions + open_source: false + hosted_saas: true + category: Build, Test, Deploy + sub_category: Continuous Integration + image_url: https://img.stackshare.io/service/11563/actions.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes/blob/main/.github/workflows/actions_vars.yml + detection_source: ".github/workflows/actions_vars.yml" + last_updated_by: Johannes Schmidt + last_updated_on: 2023-01-08 11:11:01.000000000 Z +- name: PyPI + description: A repository of software for the Python programming language + website_url: https://pypi.org/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Hosted Package Repository + image_url: https://img.stackshare.io/service/12572/-RIWgodF_400x400.jpg + detection_source_url: https://github.com/johschmidt42/python-project-johannes/blob/main/pyproject.toml + detection_source: pyproject.toml + last_updated_by: Johannes Schmidt + last_updated_on: 2022-09-25 11:56:43.000000000 Z +- name: fastapi + description: FastAPI framework + package_url: https://pypi.org/project/fastapi + version: 0.100.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: PyPI Packages + image_url: https://img.stackshare.io/package/20520/default_ded6d17aa418fbd05ff28b85345c77ab878c6b37.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes/blob/main/poetry.lock + detection_source: pyproject.toml + last_updated_by: Johannes Schmidt + last_updated_on: 2023-07-22 12:15:55.000000000 Z + vulnerabilities: + - name: 'Duplicate Advisory: FastAPI Content-Type Header ReDoS' + cve_id: + cve_url: https://github.com/advisories/GHSA-qf9m-vfgh-m389 + detected_date: Feb 6 + severity: high + first_patched: 0.109.1 + - name: python-multipart vulnerable to Content-Type Header ReDoS + cve_id: CVE-2024-24762 + cve_url: https://github.com/advisories/GHSA-2jv5-9r88-3w3p + detected_date: Feb 17 + severity: high + first_patched: 0.109.1 +- name: httpx + description: The next generation HTTP client + package_url: https://pypi.org/project/httpx + version: 0.24.1 + license: BSD-3-Clause + open_source: true + hosted_saas: false + category: Libraries + sub_category: PyPI Packages + image_url: https://img.stackshare.io/package/20315/default_5f4e928dbcb1c4db4050881fc2e0229785fc931c.png + detection_source_url: https://github.com/johschmidt42/python-project-johannes/blob/main/poetry.lock + detection_source: pyproject.toml + last_updated_by: Johannes Schmidt + last_updated_on: 2023-07-22 12:15:55.000000000 Z