Skip to content

osv-scanner 2.3.2#262871

Merged
BrewTestBot merged 2 commits intomainfrom
bump-osv-scanner-2.3.2
Jan 15, 2026
Merged

osv-scanner 2.3.2#262871
BrewTestBot merged 2 commits intomainfrom
bump-osv-scanner-2.3.2

Conversation

@BrewTestBot
Copy link
Contributor

@BrewTestBot BrewTestBot commented Jan 15, 2026

Created by brew bump

Created with brew bump-formula-pr.

Details

release notes 
# v2.3.2

This release includes performance improvements for local scanning, reducing memory usage and avoiding unnecessary advisory loading. It also fixes issues with MCP's get_vulnerability_details tool, git queries in osv-scanner.json, and ignore entry tracking, along with documentation updates.


Fixes:


    

  • Bug #2415 Add more PURL-to-ecosystem mappings
    • 

  • Bug #2422 MCP error for get_vulnerability_id because type definition is incorrect.
    • 

  • Bug #2460 Enable osv-scanner.json git queries
    • 

  • Bug #2456 Properly track if an ignore entry has been used
    • 

  • Bug #2450 Performance: Avoid loading the entire advisory unless it will actually be used
    • 

  • Bug #2445 Performance: Don't read the entire zip into memory
    • 

  • Bug #2433 Allow specifying user agent in v2 osvscanner package
    • 



Misc:


    

  • Misc #2453 Switch from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3
    • 

  • Misc #2447 Include bun.lock as a supported lockfile
    • 

  • Misc #2444 Document GoVersionOverride in configuration.md
    • 



New Contributors



Full Changelog: google/osv-scanner@v2.3.1...v2.3.2

View the full release notes at https://github.com/google/osv-scanner/releases/tag/v2.3.2.

@github-actions github-actions bot added go Go use is a significant feature of the PR or issue bump-formula-pr PR was created using `brew bump-formula-pr` labels Jan 15, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Jan 15, 2026

🤖 An automated task has requested bottles to be published to this PR.

Caution

Please do not push to this PR branch before the bottle commits have been pushed, as this results in a state that is difficult to recover from. If you need to resolve a merge conflict, please use a merge commit. Do not force-push to this PR branch.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Jan 15, 2026
@BrewTestBot BrewTestBot enabled auto-merge January 15, 2026 03:35
@BrewTestBot BrewTestBot added this pull request to the merge queue Jan 15, 2026
Merged via the queue into main with commit f360f06 Jan 15, 2026
22 checks passed
@BrewTestBot BrewTestBot deleted the bump-osv-scanner-2.3.2 branch January 15, 2026 03:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stefanb stefanb stefanb approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. go Go use is a significant feature of the PR or issue

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@BrewTestBot @stefanb