oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2025-11-22 10:53:19 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • cf9bb13f2b
         chore(deps): update tools to latest versions (#3160) anchore-actions-token-generator[bot] 2024-08-26 10:07:59 -04:00
  • 0cd6185716
         chore(deps): update CPE dictionary index (#3161) anchore-actions-token-generator[bot] 2024-08-26 10:07:44 -04:00
  • 6549ec9831
         chore(deps): bump github/codeql-action from 3.26.4 to 3.26.5 (#3162) dependabot[bot] 2024-08-26 10:07:18 -04:00
  • b6b5c8e308
         fix ELF package correlations (#3151) Alex Goodman 2024-08-26 08:44:39 -04:00
  • dad253785e
         chore(deps): update tools to latest versions (#3144) anchore-actions-token-generator[bot] 2024-08-23 14:42:12 -04:00
  • cff9d494df
         feat: detect curl binaries (#3146) KrysGor 2024-08-23 20:41:08 +02:00
  • 9ab3de1819
         chore(deps): bump anchore/sbom-action from 0.17.1 to 0.17.2 (#3155) dependabot[bot] 2024-08-22 13:52:58 -04:00
  • 6f0230879a
         chore(deps): bump github/codeql-action from 3.26.3 to 3.26.4 (#3154) dependabot[bot] 2024-08-22 13:52:48 -04:00
  • 691f34ce27
         chore(deps): update stereoscope to e6d086e8bef5fab4fcfbd60c9a759c4cb229decf (#3152) anchore-actions-token-generator[bot] 2024-08-22 13:52:34 -04:00
  • ac977246c9
         chore(deps): bump github.com/charmbracelet/bubbles from 0.18.0 to 0.19.0 (#3148) dependabot[bot] 2024-08-22 13:52:06 -04:00
  • 78d48b4209
         chore(deps): bump github.com/charmbracelet/lipgloss (#3147) dependabot[bot] 2024-08-22 13:51:57 -04:00
  • bd80eeafac
         chore(deps): bump github.com/anchore/stereoscope (#3153) dependabot[bot] 2024-08-22 13:51:50 -04:00
  • 73b9d5aa42
         fix: mysql 8.0.3x binary detection (#3142) Keith Zantow 2024-08-21 09:48:28 -04:00
  • f786233e97
         chore(deps): bump github/codeql-action from 3.26.2 to 3.26.3 (#3139) dependabot[bot] 2024-08-20 23:04:58 +00:00
  • 95b4a88256
         fix: logging for remote network calls (#3140) v1.11.1 Keith Zantow 2024-08-20 11:45:33 -04:00
  • 511cc9c2d5
         chore(deps): update CPE dictionary index (#3135) anchore-actions-token-generator[bot] 2024-08-19 12:49:43 -04:00
  • 360983f75b
         chore(deps): bump github.com/charmbracelet/bubbletea (#3137) dependabot[bot] 2024-08-19 12:48:24 -04:00
  • 4b7ae0ed3b
         chore(deps): update tools to latest versions (#3121) anchore-actions-token-generator[bot] 2024-08-16 17:56:36 +00:00
  • 4ff60ee837
         chore(deps): bump github.com/docker/docker (#3123) dependabot[bot] 2024-08-15 13:50:51 -04:00
  • 965000dcbb
         chore(deps): bump anchore/sbom-action from 0.17.0 to 0.17.1 (#3124) dependabot[bot] 2024-08-15 13:16:47 -04:00
  • a447884084
         chore(deps): bump github/codeql-action from 3.26.0 to 3.26.2 (#3129) dependabot[bot] 2024-08-15 13:16:39 -04:00
  • cd3b828905
         fix: add nil check to CycloneDX toBomProperties (#3119) Lucas Rodriguez 2024-08-13 15:02:15 -05:00
  • 3161e1847e
         fix: read CycloneDX BOM components from metadata (#3092) Lukas Voetmand 2024-08-12 22:37:23 +02:00
  • df1e5b57fe
         fix: improve groupid extraction for Jenkins plugins (#2815) Weston Steimel 2024-08-12 17:01:44 +00:00
  • d2b33f1acb
         chore(deps): update CPE dictionary index (#3116) anchore-actions-token-generator[bot] 2024-08-12 16:57:47 +00:00
  • 91cf066db6
         support .kar files (#3113) GGMU 2024-08-12 19:10:03 +03:00
  • c19cf626ab
         chore: fix some comments (#3114) luozexuan 2024-08-13 00:08:04 +08:00
  • cf85450e08
         chore: fix failing python relationship test (#3117) Keith Zantow 2024-08-12 12:07:47 -04:00
  • 49d4e32241
         update-slack-to-discourse (#3111) Alan Pope 2024-08-12 11:49:10 +01:00
  • 19cc664cf8
         test: increase java purl generation test coverage (#3110) v1.11.0 Weston Steimel 2024-08-09 10:14:10 +00:00
  • 64a9ecbf7a
         chore(deps): bump modernc.org/sqlite from 1.31.1 to 1.32.0 (#3106) dependabot[bot] 2024-08-08 15:49:45 -04:00
  • 6267d69930
         chore(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0 (#3107) dependabot[bot] 2024-08-08 15:49:37 -04:00
  • 1fb47d908e
         chore(deps): update tools to latest versions (#3099) anchore-actions-token-generator[bot] 2024-08-07 14:26:05 -04:00
  • 2339743c8c
         chore(deps): bump github/codeql-action from 3.25.15 to 3.26.0 (#3101) dependabot[bot] 2024-08-07 14:25:52 -04:00
  • 9031592649
         chore(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 (#3102) dependabot[bot] 2024-08-07 14:25:44 -04:00
  • 47d192d79b
         chore(deps): bump github.com/google/go-containerregistry (#3103) dependabot[bot] 2024-08-07 14:25:36 -04:00
  • 040b683da8
         chore(deps): bump golang.org/x/net from 0.27.0 to 0.28.0 (#3104) dependabot[bot] 2024-08-07 14:25:28 -04:00
  • bb952ed25a
         Draft: Identity proof - do NOT merge identity-proof Alan Pope 2024-08-07 08:12:41 +01:00
  • dcd87d1fef
         chore(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 (#3095) dependabot[bot] 2024-08-06 13:17:36 -04:00
  • 214a0498e0
         chore(deps): update CPE dictionary index (#3094) anchore-actions-token-generator[bot] 2024-08-06 13:07:48 -04:00
  • 0f9df805c1
         chore(deps): bump golang.org/x/mod from 0.19.0 to 0.20.0 (#3096) dependabot[bot] 2024-08-06 13:07:33 -04:00
  • 703330abd0
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.6 to 0.5.7 (#3097) dependabot[bot] 2024-08-06 13:07:21 -04:00
  • 9d40d1152e
         feat: improved java maven property resolution (#2769) Gijs Calis 2024-08-05 17:30:47 +02:00
  • cc15edca62
         fix: use organization for package supplier when reading Java vendor fields (#3093) Harippriya Sivapatham 2024-08-04 01:30:55 +05:30
  • 623532e3ed
         chore(deps): update tools to latest versions (#3091) anchore-actions-token-generator[bot] 2024-08-02 13:25:09 -04:00
  • 48f1e975f0
         fix: update 'guessMainPackageNameAndVersionFromPomInfo' and 'artifactIDMatchesFilename' (#3054) Dor Hayun 2024-08-01 20:47:15 +03:00
  • c84cb2cf84
         fix: update mainModuleVersion function to always prefix v to findings (#3087) Christopher Angelo Phillips 2024-08-01 11:29:07 -04:00
  • 05a10e8bed
         chore: update release script to use gh from binny (#3084) Keith Zantow 2024-07-31 20:10:17 -04:00
  • 92d63df6f5
         Added the SWI Prolog (swipl) ecosystem (#3076) Laurent Goderre 2024-07-31 16:13:26 -04:00
  • a4b5dcd0df
         fix: improve determinism in java archive identification (#3085) v1.10.0 Keith Zantow 2024-07-30 12:02:52 -04:00
  • 06526e2931
         chore(deps): update stereoscope to 50ce3be7aa1fb8829234ae648215e7907196bfa5 (#3075) anchore-actions-token-generator[bot] 2024-07-29 10:04:46 -04:00
  • a2042e629c
         chore(deps): update CPE dictionary index (#3079) anchore-actions-token-generator[bot] 2024-07-29 10:03:59 -04:00
  • a35e410c75
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.5 to 0.5.6 (#3082) dependabot[bot] 2024-07-29 10:03:44 -04:00
  • 8dd7c9c0b9
         chore(deps): bump github/codeql-action from 3.25.14 to 3.25.15 (#3083) dependabot[bot] 2024-07-29 10:03:35 -04:00
  • 490e05adb2
         fix: traefik classifier (#3077) witchcraze 2024-07-29 22:46:51 +09:00
  • 1cd75b7d68
         python-cataloger: fix normalization test (#3073) mikcl 2024-07-25 20:45:14 +01:00
  • 4882d2e8ce
         Only match ldflag version if it matches the main module or targets main.version (#3062) Laurent Goderre 2024-07-25 13:56:55 -04:00
  • b3848f780f
         python cataloger: allow dots in python package names (#3070) mikcl 2024-07-25 18:56:10 +01:00
  • 36f95d6828
         python-cataloger: normalize package names (#3069) mikcl 2024-07-25 18:54:13 +01:00
  • 68b96ae444
         chore(deps): bump github.com/docker/docker (#3066) dependabot[bot] 2024-07-25 13:50:33 -04:00
  • 3917989f86
         chore(deps): bump github/codeql-action from 3.25.13 to 3.25.14 (#3072) dependabot[bot] 2024-07-25 13:50:06 -04:00
  • 741c8fb9bd
         fix: SPDX output performance with many relationships (#3053) Keith Zantow 2024-07-24 10:14:20 -04:00
  • 9573f557d1
         better go mod detection from partial package builds (#3060) Alex Goodman 2024-07-24 09:34:40 -04:00
  • ca945d16e0
         chore(deps): update tools to latest versions (#3061) anchore-actions-token-generator[bot] 2024-07-23 10:16:25 -04:00
  • fe7c5a7174
         chore(deps): bump github.com/charmbracelet/lipgloss from 0.11.1 to 0.12.1 (#3040) dependabot[bot] 2024-07-22 10:43:17 -07:00
  • 125c787e40
         chore: add debug logging for errors reading RPM files (#3051) Keith Zantow 2024-07-22 13:05:04 -04:00
  • bfe6f5204a
         chore(deps): update CPE dictionary index (#3035) anchore-actions-token-generator[bot] 2024-07-22 08:56:58 -07:00
  • aead40e1de
         chore(deps): bump github.com/docker/docker (#3055) dependabot[bot] 2024-07-22 08:56:01 -07:00
  • 536611fa25
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.4 to 0.5.5 (#3056) dependabot[bot] 2024-07-22 08:45:25 -07:00
  • d0a7d4c43e
         chore(deps): bump modernc.org/sqlite from 1.30.2 to 1.31.1 (#3057) dependabot[bot] 2024-07-22 08:45:01 -07:00
  • 0c53a087f0
         chore(deps): bump docker/login-action from 3.2.0 to 3.3.0 (#3058) dependabot[bot] 2024-07-22 08:44:06 -07:00
  • b263b1ec1f
         chore(deps): bump github/codeql-action from 3.25.12 to 3.25.13 (#3059) dependabot[bot] 2024-07-22 10:55:55 -04:00
  • 034a98f029
         chore(deps): update stereoscope to 487b11e5ba2622d976acda10c605da63b4fbbb0a (#3032) anchore-actions-token-generator[bot] 2024-07-18 09:26:01 -07:00
  • 69031b0646
         chore(deps): update tools to latest versions (#3050) anchore-actions-token-generator[bot] 2024-07-18 08:21:31 -07:00
  • 761a161e7f
         docs: CODE_OF_CONDUCT.md (#3046) Alan Pope 2024-07-17 22:33:17 +01:00
  • ba31c2f1ae
         fix: include CPEs with Maven groupId as vendor (#3045) Keith Zantow 2024-07-17 14:23:58 -04:00
  • 5d729a5e9e
         chore(deps): bump github.com/google/go-containerregistry (#3047) dependabot[bot] 2024-07-17 11:21:23 -07:00
  • 276df95768
         chore(deps): bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2 (#3048) dependabot[bot] 2024-07-17 11:21:14 -07:00
  • cca9a06a64
         chore(deps): bump modernc.org/sqlite from 1.30.1 to 1.30.2 (#3039) dependabot[bot] 2024-07-17 09:10:34 -04:00
  • 4d23990dd4
         docs: link to contrib/dev docs in readme (#3029) Bradley Jones 2024-07-16 14:59:31 +01:00
  • d4fa61e0a2
         chore: Fix apache shield in readme (#3021) Adam McClenaghan 2024-07-16 14:59:14 +01:00
  • d4d4e003e9
         chore(deps): update tools to latest versions (#3031) anchore-actions-token-generator[bot] 2024-07-16 06:58:33 -07:00
  • 6bf91a410d
         chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12 (#3034) dependabot[bot] 2024-07-16 06:58:18 -07:00
  • 77c300d617
         chore(deps): bump anchore/sbom-action from 0.16.1 to 0.17.0 (#3044) dependabot[bot] 2024-07-16 06:58:07 -07:00
  • 75902b0540
         fix: stop panicking on "devel" version go stdlib (#3043) William Murphy 2024-07-16 09:51:14 -04:00
  • 278b72d39b
         chore: pin fedora image for elf binary test (#3041) Keith Zantow 2024-07-15 12:37:09 -04:00
  • 37245a21cc
         chore(deps): bump anchore/sbom-action from 0.16.0 to 0.16.1 (#3023) dependabot[bot] 2024-07-11 14:50:48 -04:00
  • e2fe955262
         chore(deps): update stereoscope to 27b66b76fc6686fcf6bde656aa09e1f0e047fec1 (#3026) anchore-actions-token-generator[bot] 2024-07-11 10:38:10 -07:00
  • 4e09908ba1
         chore(deps): bump actions/setup-go from 5.0.1 to 5.0.2 (#3027) v1.9.0 dependabot[bot] 2024-07-11 10:19:48 -07:00
  • 863793a3cc
         chore(deps): bump github.com/charmbracelet/lipgloss (#3028) dependabot[bot] 2024-07-11 10:19:14 -07:00
  • f7ffcc534f
         fix: stabilize cpe sorting during collection sort (#3009) Christopher Angelo Phillips 2024-07-09 14:24:21 -04:00
  • b101f44aba
         Map the downloadLocation field for PHP Composer packages (#3011) Laurent Goderre 2024-07-09 12:01:58 -04:00
  • de3313cfb6
         chore(deps): update stereoscope to e46739e217969fa67cbe8834b64bb165a10a1548 (#3013) anchore-actions-token-generator[bot] 2024-07-09 07:53:04 -07:00
  • b2f9904d74
         chore(deps): bump golang.org/x/net from 0.26.0 to 0.27.0 (#3015) dependabot[bot] 2024-07-09 07:52:32 -07:00
  • 13d01ecaff
         chore(deps): bump golang.org/x/mod from 0.18.0 to 0.19.0 (#3014) dependabot[bot] 2024-07-09 07:08:25 -07:00
  • 7dc1b1ce27
         chore(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 (#3017) dependabot[bot] 2024-07-09 07:08:12 -07:00
  • b8dce675fe
         chore(deps): bump github.com/google/go-containerregistry (#3019) dependabot[bot] 2024-07-09 07:08:02 -07:00
  • 6dda9edd7c
         chore(deps): bump github.com/adrg/xdg from 0.4.0 to 0.5.0 (#3020) dependabot[bot] 2024-07-09 07:07:53 -07:00
  • 04c861bf77
         chore(deps): update CPE dictionary index (#3016) anchore-actions-token-generator[bot] 2024-07-08 08:13:17 -04:00
  • 573440b7cf
         Infer the package type from ELF package notes (#3008) Alex Goodman 2024-07-02 16:07:08 -04:00