oss/syft - syft - Sa' Rocí Solutions

oss/syft

mirror of https://github.com/anchore/syft.git synced 2025-11-17 16:33:21 +01:00

Author	SHA1	Message	Date
Alex Goodman	7a10cbae0c	Merge pull request #368 from anchore/fix-registry-auth-encode-issue Ensure credentials are not HTML encoded	2021-04-05 14:25:57 -04:00
Alex Goodman	7ec0e3785f	bump stereoscope ; pull in fix to ensure credentials are not HTML encoded Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-05 14:20:49 -04:00
Alex Goodman	9ec09add67	Add secrets search capability (#367 ) * add initial secrets cataloger Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update ETUI elements with new catalogers (file metadata, digests, and secrets) Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update secrets cataloger to read full contents into memory for searching Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * quick prototype of parallelization secret regex search Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * quick prototype with single aggregated regex Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * quick prototype for secret search line-by-line Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * quick prototype hybrid secrets search Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add secrets cataloger with line strategy Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * adjust verbiage towards SearchResults instead of Secrets + add tests Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update json schema with secrets cataloger results Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * address PR comments Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update readme with secrets config options Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * ensure file catalogers call AllLocations once Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-04-01 21:34:15 +00:00
Alex Goodman	557ad8be49	Merge pull request #366 from zhill/issue-331 Use sorted artifacts for consistent SBoM output in table, cyclonedx, and json presenters	2021-04-01 11:04:34 -04:00
Zach Hill	c332ba0867	Use cataloger Sorted() output instead of Enumerate() for stable result sorting in presenters. Fixes #331 Also adds artifact location to sort key for Sorted() to ensure consistent sorts when artifacts of same name, version, and type are found in different locations in the image. Location should be sufficient since we assume only one package of a given name and version can exist in one location, even if that location is an package-db like rpmdb. Signed-off-by: Zach Hill <zach@anchore.com>	2021-04-01 01:40:41 -07:00
Alex Goodman	485caa1ea3	Merge pull request #357 from anchore/enhance-file-metadata Add link destination to file metadata	2021-03-30 09:36:10 -04:00
Alex Goodman	cd925e5664	account for repoDigests data in power-user json testing Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-30 08:46:42 -04:00
Alex Goodman	db35186c7d	allow file metadata digests to be optional + add link destination Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-29 12:07:42 -04:00
Alex Goodman	8551168702	capitalize file type strings Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-29 12:07:41 -04:00
Alex Goodman	772613647c	Merge pull request #364 from anchore/allow-for-failures-of-benchmark-sticky-note Ignore failures on benchmark sticky comment	2021-03-29 12:03:10 -04:00
Alex Goodman	8658abc8c4	ignore failures on benchmark sticky comment Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-29 11:59:49 -04:00
Robert Prince	ab83b7f840	Merge pull request #350 from octarinesec/repo-digests Add repo digests if available from Stereoscope to the image metadata	2021-03-29 08:47:50 -07:00
Alex Goodman	0f26681ac5	Merge pull request #356 from anchore/dedup-pkg-index Ensure pkg.Catalog path index deduplicates real vs virtual paths	2021-03-28 14:06:25 -04:00
Alex Goodman	9abdb174d5	ensure pkg.Catalog path index deduplicates real vs virtual paths Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-26 13:27:24 -04:00
Alex Goodman	44cf7ccb44	Merge pull request #355 from anchore/move-docker-login-after-keychain-step Move docker login to after keychain creation	2021-03-26 11:05:47 -04:00
Alex Goodman	2a9b1b2680	move docker login after keychain creation Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-26 10:41:44 -04:00
Alex Goodman	cedf8cd6d7	Merge pull request #352 from anchore/enable-release-environment Enable manual release approval	2021-03-25 12:13:41 -04:00
Alex Goodman	cfec812804	enable release environment (manual approval for releases) Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-25 12:01:20 -04:00
Alex Goodman	7b25237cea	Merge pull request #354 from anchore/fix-benchmark-sticky-comment Fix sticky benchmark comment on PRs	2021-03-25 12:00:32 -04:00
Alex Goodman	ac4b653721	fix sticky benchmark comment on PRs Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-25 11:53:05 -04:00
Alex Goodman	8464d9766a	Merge pull request #353 from anchore/fix-docker-login Manually login to docker via cli during release	2021-03-25 11:49:10 -04:00
Haim Helman	13a066ea18	Add repo digests if available from Stereoscope to the image metadata Signed-off-by: Haim Helman <hhelman@vmware.com>	2021-03-25 05:57:23 -07:00
Alex Goodman	51bf9f9e05	manually login to docker via cli during release Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 17:57:41 -04:00
Alex Goodman	e256e86888	Merge pull request #339 from anchore/add-file-metadata-indexer-invert-control Add file metadata cataloger	2021-03-23 17:02:10 -04:00
Alex Goodman	1b7c755536	add file-type mix as golden image Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 16:50:57 -04:00
Alex Goodman	8854d83934	cache mac acceptance image Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 15:03:25 -04:00
Alex Goodman	3ef30f99be	pull in stereoscope cache fix + add test cache makefile target helpers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 14:31:59 -04:00
Alex Goodman	12f419111e	remove docker layer cache from validation pipeline Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 13:04:13 -04:00
Alex Goodman	68c4bf8bbe	update documentation to reflect root vs packages subcommand Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 13:00:25 -04:00
Alex Goodman	929b78efbf	remove prealloc nolint rule in catalogers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 12:56:00 -04:00
Alex Goodman	d420368ba9	add tests around new file metadata cataloger Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 11:00:59 -04:00
Alex Goodman	40199096e9	stabilize json file metadata presenter order Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 11:00:36 -04:00
Alex Goodman	0e9c1c1d86	arrange power-user tasks ahead of parsing the source image Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 10:29:38 -04:00
Alex Goodman	77e4c89a5a	bump coverage threshold + use ubuntu for snapshot builds Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 10:28:57 -04:00
Alex Goodman	e3b1522394	upgrade goreleaser + constrain pipeline tool cache Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-23 06:58:30 -04:00
Alex Goodman	46636ccb3c	simplify command alias logic + remove deprecation warning for root command Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 15:25:04 -04:00
Alex Goodman	36e4af1953	adjust jsom schema version + adopt java pom properies test fixtures Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 11:27:01 -04:00
Alex Goodman	abca2c5f0b	remove token usage from benchmark sticky comment action Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:58:09 -04:00
Alex Goodman	f180d1c537	improve config parsing + fix command deprecation warning Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:58:09 -04:00
Alex Goodman	b1b57f6ba6	remove benchmark test event filter in validations pipeline Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:58:08 -04:00
Alex Goodman	4bde850f04	add file-metadata config options to docs Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:58:08 -04:00
Alex Goodman	1d87f07da1	update pipeline with new levels of testing Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:58:07 -04:00
Alex Goodman	cf516add95	add cli testing Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:18 -04:00
Alex Goodman	68d698e9f2	remove inline-compare testing Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:18 -04:00
Alex Goodman	efcd8a8b9a	update integration and acceptance tests for new resolvers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:18 -04:00
Alex Goodman	ae32942a18	update import to require patching image metadata source field Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:18 -04:00
Alex Goodman	18dd2950ac	update event handlers relative to new command structure Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:18 -04:00
Alex Goodman	6a960ec1f3	update json schema with optional poweruser data shape Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:56:16 -04:00
Alex Goodman	97f0f83544	add poweruser command and alias root to packages subcommand Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:53:53 -04:00
Alex Goodman	a6cba5d9db	remove multi* content fetching from resolvers Signed-off-by: Alex Goodman <alex.goodman@anchore.com>	2021-03-22 10:53:51 -04:00

1 2 3 4 5 ...

572 Commits