General

I suggest you ...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. Scan Gradle dependencies

    As most of the Organizations out there are using Gradle as their build tool for Java applications. It would be better if Gemnasium supports Gradle scans as well.

    1 vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

    • Support maven superpom

      I'd love to upload a maven super-POM, thus a so called "offline project".

      Currently gemnasium does not seem to support this and requires the project being hosted at github etc.

      I'd just want to get notifications whenever a new version for one of the dependencies of the superpom are available.

      Typically a superpom contains a <parent> project definition. That does not matter and should not be evaluated.

      Only the dependencies under <dependencyManagement> <dependencies> matter.

      Here is an example superpom:

      <?xml version="1.0" encoding="UTF-8"?>
      <project xmlns="http://maven.apache.org/POM/4.0.0&quot;
      xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance&quot;
      xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
      <modelVersion>4.0.0</modelVersion>

      <name>my-commons-parent</name>
      <description>super pom for all of…

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

      • Support branches

        Currently configure the branch to track is really not optimized :/

        It would be awesome to replace the text input by a selector with a simple filter input text (case insensitive) in the repository configuration.

        This feature could avoid typo errors on branch name.

        1 vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

        • Consider maven "plugins" as project dependencies

          It would be a great addition to make Gemnasium consider maven plugins as project dependencies too.

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

          • 4 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

            • Distinguish between acknowledged and open security alerts

              The interface shows the total number of open alerts, however does not distinguish between open and acknowledged alerts.

              Some use cases imply to keep an alert open but acknowledged to avoid repeated notifications. We don’t want to close them yet to be able to keep track of them.

              However the interface constantly shows them equally as open alerts and it is hard to distinguish severe issues from these acknowledged alerts.

              7 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

              • Allow users to comment when acknowledging or closing alerts

                It would be great to be able to add a note before acknowledging or closing an alert, so that we can keep track of the decision making behind it.

                8 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                • Support private packages on GitHub.com

                  Some packages are not published to public registries (Rubygems, Pypi, etc.), and the source code hosted on GitHub is used as a depenency.
                  Most package managers support git based packages (with a ref or defaulting to master branch).
                  Currently, Gemnasium does not support these packages, as there's no way to access them.

                  2 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Integration  ·  Admin →
                  • Considerate the PHP-Version

                    The php version of the project and the php version of dependencies are not considerated. Therefore there are dependencies which supposedly aren't up to date. But in fact your project uses e.g. php 7.1 and the dependency, which is suggested to update, is using php 7.2. So updating it is impossible but it's still suggested.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                    • 0 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Integration  ·  Admin →
                      • Add changelog for et-orbi

                        et-orbi currently doesn't have a changelog listed on gemnasium (see https://gemnasium.com/gems/et-orbi – "CHANGELOG FOR 1.0.7" says "No changelog available", as do some of the other releases)

                        The project does have a changelog, though, found on its github – https://github.com/floraison/et-orbi/blob/master/CHANGELOG.md

                        3 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                        • Support scoped packages (npm)

                          Support scopes packages. These have a name starting with "@".

                          See https://docs.npmjs.com/getting-started/scoped-packages

                          7 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                          • Support custom composer repositories

                            Support custom composer repositories

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Integration  ·  Admin →
                            • 3 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                              • Support Glide

                                Support "glide.yaml" dependency file.

                                See https://glide.sh and https://github.com/Masterminds/glide

                                5 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                • Add simple filtering / sorting project dashboard

                                  Add simple filtering / sorting project dashboard.

                                  I want to be able to
                                  Filter or sort on status, changelog, etc.

                                  When I have a bunch of green dependencies I want to be able to look at the ones that need my attention easier.

                                  3 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                  • Options for reports

                                    Some reports require to pass some arguments to command line.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                    • Support 2FA

                                      Gemnasium should support two-factor authentication through Google Authenticator, or something similar.

                                      7 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                      • Support extremely large GitHub organizations

                                        Hi! Per https://github.com/18F/omb-eregs/pull/7#issuecomment-274651340 we were asked to drop a note here.

                                        For extremely large organizations in GitHub, with hundreds of repos, the pagination in the Gemnasium UI times out, and results in a 500 error code.

                                        This can be worked around by invoking some direct jQuery to add a repo, but could also likely be fixed by more strict pagination via the interaction with the GitHub API.

                                        Thanks for your consideration!

                                        4 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Integration  ·  Admin →
                                        • 3 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Integration  ·  Admin →
                                          ← Previous 1 3 4 5 6
                                          • Don't see your idea?

                                          Feedback and Knowledge Base