oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2025-11-19 17:33:18 +01:00
Code Issues Packages Projects Releases Wiki Activity
2,920 Commits 64 Branches 244 Tags
Commit Graph

1199 Commits

Author SHA1 Message Date
Alex Goodman
46c74865e5 add render unicode in gemspec parser 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-10-08 10:52:14 -04:00
Alex Goodman
1f0f6fa3e5 more gemspec tests 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-10-08 10:52:03 -04:00
Alex Goodman
abdd00cd24 rename gem parsers and catalogers 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-10-08 10:23:24 -04:00
Alex Goodman
10b44f5311 split catalogers into two sets, one for images another for directory scans 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-10-08 10:23:24 -04:00
Alex Goodman
1c320a8382 defer to GenericCataloger instances for pkg catalogers 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-10-08 10:23:24 -04:00
Toure
7a8a5419b8 adding ruby gemspec support. 
Signed-off-by: Toure Dunnon <toure.dunnon@anchore.com>
 2020-10-08 10:19:33 -04:00
Dan Luhring
b6dfdf16b6
Remove and update TODOs (#194) 
* Remove and update TODOs

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>

* Update TODO with link

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>
 2020-09-29 11:53:19 -04:00
Alex Goodman
b5ce187ba7
replace modfile with stdlib (#187) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-28 17:25:04 -04:00
Alex Goodman
26855a2a9e
ignore apk xattr file checksum + remove log.Errorf error wraps (#192) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-28 17:22:17 -04:00
Alex Goodman
4b78d9a1c0
support home dir expansion (#188) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-28 15:02:21 -04:00
Alex Goodman
03378e976c
always return a cleanup function from scope (#183) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-25 16:20:06 -04:00
Alex Goodman
49800b6747
Normalize the json image/dir source (#180) 
* normalize the json image/dir source

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* update json image presenter golden file

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-25 14:07:38 -04:00
Alex Goodman
c46d004a3b
remove duplicate rows from the summary table (#179) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-25 10:32:37 -04:00
Alex Goodman
3d91a66536
Add OCI support + use URI schemes for user image input (#178) 
* add oci support + update image schemes

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* update docs to reflect OCI image sources + URI scheme change

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* update to oci-dir

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* bump upstream stereoscope pin

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-09-25 10:24:24 -04:00
Samuel Dacanay
0567206b38 Change kebab case to camelCase in json keys throughout app 
Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>
 2020-09-18 08:55:17 -07:00
Alex Goodman
f3076c3905
Add docs around the main execution path (#172) 
* add docs around the main execution path of syft

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* Update syft/lib.go

Co-authored-by: Alfredo Deza <adeza@anchore.com>
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* Update syft/lib.go

Co-authored-by: Alfredo Deza <adeza@anchore.com>
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* wrap line

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

Co-authored-by: Alfredo Deza <adeza@anchore.com>
 2020-09-17 06:02:51 -04:00
Praveen Mylavarapu
e26627d8b6
remove accessing tag when not available (#174) 
Signed-off-by: praveenmylavarapu <saipraveenmylavarapu@gmail.com>
 2020-09-15 07:55:08 -04:00
Samuel Dacanay
329b080a37 Add support for Arch (which doesnt return a version) and Open Suse Leap 
Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>

remove bad-version test fixture (no longer relevant since it is now an expected case) and add cases for arch and opensuse-leap

Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>

Reduce nesting, simplify empty version logic

Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>
 2020-09-13 13:50:56 -07:00
Sam Dacanay
11334b632e
Expand matching of requirements.txt file to include any prefixes or suffixes (#168) 
* Expand matching of requirements.txt file to include any prefixes or suffixes

Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>

* Add some test cases to integration test (ensure syft can pick up multiple requirements files)

Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>

* Run lint-fix

Signed-off-by: Samuel Dacanay <sam.dacanay@anchore.com>
 2020-09-08 10:23:37 -07:00
Alex Goodman
df7c83c9b0
use xml encoder (#165) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-31 08:06:56 -04:00
Alex Goodman
8a4886ec0e
Add package URL support to the CycloneDX presenter (#164) 
* add package URL support to the CycloneDX presenter

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* wrap license tags with licenses

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-30 21:40:19 -04:00
Alex Goodman
eda0f8c774
add bom descriptor schema + test against xml schemas in pipeline (#163) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-27 19:12:45 -04:00
Alex Goodman
f892289e7c
Add CycloneDX presenter (#157) 
* add CycloneDX presenter + BOM Descriptor extension

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* add docstrings to cyclonedx presenter

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-24 20:43:29 -04:00
Alfredo Deza
9c4024d6fa cataloger: add setup.py support for Python 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-08-17 16:00:49 -04:00
Alfredo Deza
27c207bbca pkg: add a new type to identify setup.py packages 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-08-17 10:12:27 -04:00
Alex Goodman
95517d131a Improve overall documentation (#148) 
* improve overall documentation

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* fix tests to use scope.Resolver over scope

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-13 16:34:32 -04:00
Alex Goodman
51b9c73c31
Add documentation around catalogers, UI elements, and the event bus (#143) 
* add basic documentation for catalogers (with refactoring for simplification)

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* add docs for catalog parsers, UI, and event bus

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* update bus phrasing

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-12 11:04:39 -04:00
Alex Goodman
5042d371cf
migrate to anchore/go-rpmdb (#144) 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-11 15:32:51 -04:00
Alex Goodman
2d452bf59e
Add inline-comparison as acceptance test (#130) 
* add inline-compare as acceptance test

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* add additional RPM metadata

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* add comments and doc strings to the compare-* make targets

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-10 10:33:44 -04:00
Alex Goodman
817ce61036
Add detailed location info to json artifact (#127) 
* add detailed location info to json artifact

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>

* decompose json presenter

Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
 2020-08-07 10:05:16 -04:00
Alex Goodman
bfc5dd87af
replace fetching->loading and reading->parsing in UI (#124) 2020-08-06 08:19:03 -04:00
Dan Luhring
70e673204c
Add poetry cataloger (#121) 
* Minor cleanup

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>

* Update pkg Type definition to string

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>

* Implement poetry.lock parsing

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>

* Address CI issues

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>

* Integrate Alex's changes

Signed-off-by: Dan Luhring <dan.luhring@anchore.com>
 2020-08-04 18:22:43 -04:00
Alex Goodman
e2a874a277
finalize json output & add schema (#118) 2020-08-04 16:05:53 -04:00
Alex Goodman
2560266e38
Initial README (#120) 
* initial readme + logging and output fixes to support descriptions

* minor tweaks to README descriptions

* simplify phrasing

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* add comment for example gif

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* spelling fix

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* update phrasing

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* simplify TODO note

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* grammar fix

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* phrase fix

Co-authored-by: Alfredo Deza <adeza@anchore.com>

* rm readme bash block indicators

* clarify config examples are default values

* rm value

Co-authored-by: Alfredo Deza <adeza@anchore.com>

Co-authored-by: Alfredo Deza <adeza@anchore.com>
 2020-08-04 15:22:34 -04:00
Alex Goodman
78515da285
replace zap logger with logrus (#116) 2020-08-01 11:56:38 -04:00
Alex Goodman
5320280216
show message when no packages are discovered (#115) 2020-07-31 08:30:35 -04:00
Alfredo Deza
04a1c91881 java: fallback to manifest.ImplTitle when there is no name 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-31 07:35:43 -04:00
Alfredo Deza
bb81c0b9fe tests: java cataloger tests for selecting name 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-31 07:35:43 -04:00
Alex Goodman
271ba35c85
Export UI handlers for reuse in other tools (#113) 
* export UI handlers for reuse in other tools

* bump jotframe to fix cursor issues at frame close
 2020-07-30 15:16:58 -04:00
Alfredo Deza
713f660528 cataloger: update controller to use javascript (vs. npm) 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-28 15:20:11 -04:00
Alfredo Deza
d79cecea3e tests: verify new yarn.lock parser 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-28 15:20:11 -04:00
Alfredo Deza
57904743aa pkg: define the Yarn package type 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-28 15:18:47 -04:00
Alfredo Deza
67fb1326e0 cataloger: implement the yarn.lock parser 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-28 15:18:47 -04:00
Alfredo Deza
146b4bd01f cataloger: rename npm to javascript to accommodate yarn parser 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-28 15:18:47 -04:00
Alex Goodman
08ea496544
Merge pull request #94 from anchore/table-output 
Add default table presenter
 2020-07-25 08:49:14 -04:00
Alfredo Deza
e1ce040ead scope: do not create scope if path is invalid 
Signed-off-by: Alfredo Deza <adeza@anchore.com>
 2020-07-24 15:25:14 -04:00
Alex Goodman
9ec5da24dd
fix py globs to include partial matches (#101) 2020-07-24 08:22:56 -04:00
Alex Goodman
32071b0bf1
add default table presenter 2020-07-23 21:48:12 -04:00
Alex Goodman
a4016d35ce
rename to syft 2020-07-23 20:54:04 -04:00