oss/syft - syft - Sa' Rocí Solutions

oss/syft

mirror of https://github.com/anchore/syft.git synced 2025-11-17 16:33:21 +01:00

Author	SHA1	Message	Date
Alex Goodman	2ca2f03501	Merge pull request #418 from anchore/add-all-pkg-metadata-types Add all package metadata types slice for use in downstream testing	2021-05-24 11:15:56 -04:00
Alex Goodman	1201ad6df0	add all package metadata types slice for use in downstream testing Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-05-24 10:20:14 -04:00
Alex Goodman	baa859d2ed	Merge pull request #414 from anchore/fix-leaky-fds Close all ReadClosers explicitly retrieved from resolvers v0.15.2	2021-05-12 17:28:52 -04:00
Alex Goodman	a6c798f438	close all ReadClosers explicitly retrieved from resolvers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-05-12 17:21:30 -04:00
Alfredo Deza	360eb74cc7	Merge pull request #410 from anchore/readme-grype update readme to point to grype	2021-05-06 15:09:09 -04:00
Alfredo Deza	92c20c885e	update readme to point to grype Signed-off-by: Alfredo Deza <adeza@anchore.com>	2021-05-06 14:03:38 -04:00
Alfredo Deza	284b0c20b0	Merge pull request #389 from anchore/issue-381 Support msrc types	2021-04-29 14:59:04 -04:00
Alfredo Deza	4cce32f5c9	tests: remove KbPkg from defined pkgs since it isn't parsed Signed-off-by: Alfredo Deza <adeza@anchore.com>	2021-04-23 10:17:16 -04:00
Alfredo Deza	26007db650	manually add msrc as an observed distro Signed-off-by: Alfredo Deza <adeza@anchore.com>	2021-04-23 10:17:16 -04:00
Alfredo Deza	5af2687022	support msrc types Signed-off-by: Alfredo Deza <adeza@anchore.com>	2021-04-23 10:17:16 -04:00
Alex Goodman	032cecbe7f	Merge pull request #406 from anchore/align-check-names-to-quality-gate Align check names to release quality gate v0.15.1	2021-04-22 16:38:09 -04:00
Alex Goodman	5e1e2628cf	align check names to release quality gate Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 16:20:21 -04:00
Alex Goodman	1632fdd85e	Merge pull request #405 from anchore/add-jenkins-filter Add for known bad CPE field combinations for jenkins package v0.15.0	2021-04-22 15:56:18 -04:00
Alex Goodman	18af21d2a5	add jenkins filter for known bad CPE field combinations Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 15:51:59 -04:00
Alex Goodman	1b62b10b2b	Merge pull request #403 from anchore/pom-persist-not-for-shaded-jars Update parent pom persistence with regard to shaded jars	2021-04-22 15:51:38 -04:00
Alex Goodman	170681943c	remove type assertion check in packageIdentitiesMatch fn Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 14:00:31 -04:00
Alex Goodman	46043510ae	update parent pom persistence with regard to shaded jars Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 14:00:31 -04:00
Alex Goodman	c34060d188	Merge pull request #404 from anchore/add-more-jenkins-plugin-group-ids Add additional cases for categorizing jenkins package type by group id	2021-04-22 13:33:17 -04:00
Alex Goodman	24a2f9344b	add additional string.contains case for jenkins package by group id Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 13:20:12 -04:00
Alex Goodman	d9de63c837	Enhance CPE generation for java GroupId and filtering (#402 ) * enhance cpe generation for group id and filtering Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * rename group id const + add doc comment for HasAnyOfPrefixes Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-22 12:22:56 +00:00
Alex Goodman	0c29090b42	Add hyphen replacement logic for CPE generation (#397 ) * add hyphen replacement logic for CPE generation Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * migrate "python-" vendor prefix to product candidate processing Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * bump linter timeout for CI Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update cpe candidate product tests Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-21 12:59:48 +00:00
Alex Goodman	6d2f139397	Merge pull request #401 from anchore/boostrap-gomod-tidy Ensure consistent go.sum state during release	2021-04-21 08:54:55 -04:00
Alex Goodman	9c7906364d	add go mod tidy to bootstrap make target Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-21 08:45:51 -04:00
Dan Luhring	7ae4504182	Merge pull request #399 from anchore/java-cpe-group-id-handling Don't use pom groupId for Jenkins and Jira plugins	2021-04-21 08:06:33 -04:00
Dan Luhring	060e60b6dd	Add more tests to CPE generation Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-20 20:42:40 -04:00
Dan Luhring	33e6be0b74	Identify Jenkins plugin upstream of CPE generation Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-20 19:36:34 -04:00
Dan Luhring	fa7fd718cb	Refactor Java archive parsing logic Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-20 19:34:59 -04:00
Dan Luhring	65e4e17590	Pin gradle builder container image Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-20 19:34:59 -04:00
Dan Luhring	091fd1f0b0	Improve CPE generation for Jenkins/Jira plugins Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-20 19:34:53 -04:00
Alex Goodman	b301b56db1	add nomatch_inclusion engine mechanism in cpe generation logic (#394 ) Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-20 19:57:04 +00:00
Alex Goodman	676bdf9816	refactor pom properties to modify parent pkg less often (#392 ) Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-20 16:19:28 +00:00
Alex Goodman	c06ee1ecc2	Merge pull request #388 from anchore/add-apk-extra-fields Use the standard file.Digest for apk checksums	2021-04-19 16:46:41 -04:00
Alex Goodman	136e439dc2	use the standard file.Digest for apk checksums Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-19 16:42:17 -04:00
Alex Goodman	ecb16b6a34	Merge pull request #387 from anchore/add-rpmdb-extra-fields Expand RPM DB fields	2021-04-19 16:41:05 -04:00
Alex Goodman	6edbae08e5	update json schema with extra rpm fields Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-16 10:25:47 -04:00
Alex Goodman	0c7706f254	add extra RPM file record fields (user, group, flags) Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-16 10:25:46 -04:00
Alex Goodman	11866ab69e	Merge pull request #391 from anchore/cache-acceptance-mac-image Change mac acceptance test image.tar path	2021-04-16 10:16:49 -04:00
Alex Goodman	0c100c4037	change mac acceptance test image.tar path Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-16 09:57:13 -04:00
Alex Goodman	cca9d33b36	Merge pull request #390 from anchore/bump-go-mod-go-version Bump go.mod minimum required go version to 1.16	2021-04-16 09:03:05 -04:00
Alex Goodman	8b315367e8	fix validations badge Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-16 08:59:07 -04:00
Alex Goodman	b771d7bfd3	bump go.mod minimum required go version Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-16 08:53:03 -04:00
Alex Goodman	0c9eca4a30	Merge pull request #386 from anchore/add-safe-join Safely join paths derived from archive headers	2021-04-15 08:59:39 -04:00
Alex Goodman	484730435b	safely join paths derived from archive headers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-15 08:55:29 -04:00
Alex Goodman	d5dfaaba53	Merge pull request #384 from anchore/add-registry-follow-up Modify registry credential verification	2021-04-14 16:03:32 -04:00
Alex Goodman	9fb79bfa2e	dont append registry auth if potentially empty Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-14 10:28:21 -04:00
Alex Goodman	2a5207ec88	Merge pull request #382 from anchore/add-manifest-to-registry-source Add manifest + repo digests on registry source	2021-04-14 08:03:04 -04:00
Alex Goodman	2ff3f58730	pull in stereoscope manifest + repo digests on registry source Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-13 18:29:12 -04:00
Dan Luhring	8c178c497e	Merge pull request #379 from anchore/fix-column-mismatch Expose column index for UI handler consumers	2021-04-13 10:08:27 -04:00
Dan Luhring	4abffc8fbc	Expose column index for UI handler consumers Signed-off-by: Dan Luhring <dan.luhring@anchore.com>	2021-04-13 09:32:38 -04:00
Alex Goodman	c363b2b532	Add ability to pull images directly from a registry (#378 ) * add registry image source Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * use explicit source for fetching image + add scheme and registry tests Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * adjust test variable name and add credential helper function Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-13 13:30:57 +00:00

1 2 3 4 5 ...

694 Commits