oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2026-02-15 20:16:41 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 615f933d98
         Bug fix for 1095 - syft conversion option error (#1177) Christopher Angelo Phillips 2022-08-25 17:36:15 -04:00
  • 2c882f6239
         Update syft bootstrap tools to latest versions. (#1176) anchore-actions-token-generator[bot] 2022-08-25 09:14:24 -04:00
  • 7d4f333ec4
         enhance development support on macOS ARM (#1163) Keith Zantow 2022-08-24 13:48:14 -04:00
  • 5e93d1ea1e
         Capture if a node module is private (#1161) Scott Andrews 2022-08-24 13:07:56 -04:00
  • 57c5413fe0
         Find version numbers from jars with different naming conventions (#1174) Keith Zantow 2022-08-24 12:56:53 -04:00
  • b0fc955e0c
         Update syft bootstrap tools to latest versions. (#1171) anchore-actions-token-generator[bot] 2022-08-23 20:36:59 +01:00
  • 6949a2500f
         Fix update-bootstrap-tools workflow (#1170) Weston Steimel 2022-08-22 16:17:28 +00:00
  • 5282820b5d
         workflow to create automated PRs to update bootstrap tools (#1167) Weston Steimel 2022-08-22 15:28:24 +00:00
  • c56d3b5eef
         feat: add support for licenses in package-lock json v2 (#1164) cpendery 2022-08-22 08:23:44 -07:00
  • 13296880cd
         External sources configuration (#1158) Marco Deicas 2022-08-22 11:22:18 -04:00
  • e9221ae25d
         feat: add support for pnpm (#1166) cpendery 2022-08-22 07:45:55 -07:00
  • f3c3d3d98e
         Prevent symlinks causing duplicate package-file relationships (#1168) Justin Chadwell 2022-08-22 15:29:00 +01:00
  • 21eb772060
         Associate node package licenses from node_modules (#1152) v0.54.0 Keith Zantow 2022-08-16 14:14:02 -04:00
  • d1390b315e
         Give the contributing guide a substantial rework (#1155) Josh Bressers 2022-08-16 09:43:25 -05:00
  • 3db6911865
         fix: extract file ids correctly for spdx-json (#1156) Justin Chadwell 2022-08-11 19:06:36 +01:00
  • 2693a8c19a
         metadata decoding should be optional (#1154) Alex Goodman 2022-08-10 12:20:53 -04:00
  • 1344889766
         Update Stereoscope to 84004345484edb881f1cc1d841115da8abda06c3 (#1151) anchore-actions-token-generator[bot] 2022-08-09 08:59:35 +00:00
  • 04387301ce
         Add modularitylabel metadata to RPM type records generated by syft (#1148) Dan Nurmi 2022-08-08 04:52:32 -07:00
  • 4df84d380d
         Update Stereoscope to 1c79d5c84abcc54466417fcc17c844a4875888a1 (#1149) anchore-actions-token-generator[bot] 2022-08-06 10:52:42 -04:00
  • 5be7e081f5
         retraction for mispublished versions (#1147) Christopher Angelo Phillips 2022-08-06 10:52:21 -04:00
  • 621f0fe082
         cataloger configuration is respected regardless of source (#1142) Tom Fay 2022-08-04 22:14:23 +01:00
  • 644ca00e20
         Update README.md (#1146) Neil Levine 2022-08-04 14:13:28 -07:00
  • fce83321ba
         bump cosign to v1.10.1 (#1144) Weston Steimel 2022-08-04 19:03:57 +00:00
  • 69bde44c6e
         Update stereoscope to get rid of the replace directive (#1140) v0.53.4 Keith Zantow 2022-08-03 12:24:20 -04:00
  • 042304ee4c
         Correct squashfs import and fix incorrect bouncer configuration (#1138) v0.53.3 Christopher Angelo Phillips 2022-08-03 09:46:14 -04:00
  • 69fb0a6f3b
         Overwrite deprecated SPDX licenses automatically (#1009) v0.53.2 Jonas Xavier 2022-08-02 12:25:33 -07:00
  • e68f384063
         disable release for docker assets (#1137) Christopher Angelo Phillips 2022-08-02 14:47:07 -04:00
  • f5d02d4e52
         improve docker release bootstrap (#1136) v0.53.1 Christopher Angelo Phillips 2022-08-02 11:44:24 -04:00
  • d361d40cfa
         Singularity Image Support (#974) Adam Hughes 2022-08-02 11:42:46 -04:00
  • b7f587f5dc
         remove docker login from keychain (#1135) v0.53.0 Christopher Angelo Phillips 2022-08-02 09:42:12 -04:00
  • d196ab70a0
         remove ENV checks from siging script (#1134) Christopher Angelo Phillips 2022-08-01 18:08:41 -04:00
  • 1bf97af3fb
         remove docker assets from main goreleaser configuration to reduce mac-os runner friction (#1133) Christopher Angelo Phillips 2022-08-01 17:08:38 -04:00
  • ca69fb8370
         remove prefixed v from tag to match release (#1131) Christopher Angelo Phillips 2022-08-01 11:07:58 -04:00
  • 8f21180681
         rollback actions-setup-docker to earlier version (#1130) Christopher Angelo Phillips 2022-08-01 10:10:50 -04:00
  • b4c272885d
         Bump go-rustaudit to support rustaudit 0.2.0 (#1127) Tom Fay 2022-08-01 14:20:31 +01:00
  • fb8f24dc1e
         bump bouncer to v0.4.0 (#1125) Weston Steimel 2022-07-29 15:57:59 +00:00
  • f1c5463a6b
         Added ppc64le supported to the syft:debug image (#1124) Mayur Waghmode 2022-07-28 23:48:11 +05:30
  • 9896ff1b1f
         add a cataloger for binaries built with rust-audit (#1116) Tom Fay 2022-07-28 19:17:38 +01:00
  • 62897fbc89
         bump goreleaser to v1.10.3 (#1123) Weston Steimel 2022-07-28 17:10:32 +00:00
  • d1729ee7e2
         bump golangci-lint to v1.47.2 (#1122) Weston Steimel 2022-07-28 13:40:53 +00:00
  • 43715d380b
         bump cosign in bootstrap-tools to v1.10.0 (#1121) Weston Steimel 2022-07-28 13:40:42 +00:00
  • af330c8a37
         Added s390x support (#1117) Mayur Waghmode 2022-07-28 02:03:54 +05:30
  • 20ad59ad1b
         Delete pr_action.yaml (#1120) Christopher Angelo Phillips 2022-07-27 13:12:00 -04:00
  • 8235e8e581
         fix: use generic instead of not generating purl (#1119) cpendery 2022-07-27 09:06:37 -04:00
  • b720a3c81c
         bump cosign to v1.10.0 (#1114) Weston Steimel 2022-07-22 13:41:38 +00:00
  • ba9adb17eb
         Update sigstore/rekor dependency (#1112) v0.52.0 Marco Deicas 2022-07-21 09:17:16 -04:00
  • 51727fcf2d
         Added ppc64le support (#1099) Mayur Waghmode 2022-07-21 18:42:52 +05:30
  • 5dc729b67e
         patch-distroless-ghcr (#1110) Christopher Angelo Phillips 2022-07-20 16:51:49 -04:00
  • 7bae9d4b4e
         add distroless debug image to published release (#1106) Christopher Angelo Phillips 2022-07-20 11:54:46 -04:00
  • 571de3602a
         update help formatting (#1105) Christopher Angelo Phillips 2022-07-19 10:46:48 -04:00
  • 9b1adce19a
         feat: implement haskell support (#1096) cpendery 2022-07-18 15:33:54 -04:00
  • 00e12329d0
         Add the -r argument for gnu xargs (#1103) Josh Bressers 2022-07-18 07:45:37 -05:00
  • 922663c987
         fix: -o output option to include formats (#1102) cpendery 2022-07-15 09:55:15 -04:00
  • 64b4852c2a
         moves go-rpmdb to latest; libc => v1.16.7 (#1098) Christopher Angelo Phillips 2022-07-12 10:30:21 -04:00
  • 470b13045b
         feat: add support for cocoapods (Swift/Objective-C) (#1081) v0.51.0 cpendery 2022-07-11 10:09:08 -04:00
  • 2f1aa33ce8
         Fix package url for Go modules with no / (#1092) Rob Best 2022-07-11 15:07:34 +01:00
  • b3a7b912e1
         Update Stereoscope to 777471f38c5b2f15c19d6cffe093ce6392d8040c (#1090) anchore-actions-token-generator[bot] 2022-07-11 09:42:59 -04:00
  • 5206193b23
         feat: output attestation to file (#1087) Batuhan Apaydın 2022-07-08 20:05:20 +03:00
  • c7fa498a1b
         Update Stereoscope to cfbd966e5a8d11d73cd17adc8b8ab8468a086f1e (#1089) anchore-actions-token-generator[bot] 2022-07-07 10:05:55 -04:00
  • 4c55c62834
         Add portage support for Gentoo Linux (#1076) Zac Medico 2022-07-06 13:18:54 -07:00
  • ba685eada8
         Add PR action back to workflow with new token (#1086) Christopher Angelo Phillips 2022-07-06 09:31:51 -04:00
  • 69134ed3b5
         feat: add new login cmd (#1068) v0.50.0 Batuhan Apaydın 2022-07-05 18:57:28 +03:00
  • 47df66960f
         update AltRpmDbGlob with comment and context (#1085) Christopher Angelo Phillips 2022-07-05 11:29:31 -04:00
  • 57323a1666
         feat: add support for conan packages (C/C++) (#1083) cpendery 2022-07-05 10:49:24 -04:00
  • 6b28a46ebe
         add golang main module and pseudo-version (#916) Jonas Xavier 2022-07-01 10:01:57 -07:00
  • 3ae728ede1
         fix: add glob to filter list to ensure rpm metadata files are matched… (#1079) Dan Nurmi 2022-06-30 16:50:24 -07:00
  • 3ce1a4aac1
         remove pr automation until service account creation (#1080) Christopher Angelo Phillips 2022-06-30 17:43:24 -04:00
  • bc054e4724
         fix: purl generation for pom.xml (#1078) cpendery 2022-06-30 10:31:36 -04:00
  • 1e3ffbebb9
         Update Stereoscope to 5bd627c0f9ce7facbd63ed1f0cf894d97021aa5e (#1072) anchore-actions-token-generator[bot] 2022-06-29 10:18:41 -04:00
  • 0853825931
         fix: add new languages found in cpes (#1069) cpendery 2022-06-28 10:05:13 -04:00
  • 73262c7258
         fix: add php catalogers to all catalogers (#1065) cpendery 2022-06-27 10:53:10 -04:00
  • 2b8e15b638
         feat: add use-all-catalogers flag (#1050) cpendery 2022-06-27 10:24:45 -04:00
  • d5e12ff89c
         Updates parsing of yarn.lock to use resolved URLs that are pulled from yarn and npm registries (#926) v0.49.0 Miki 2022-06-24 08:05:25 -07:00
  • bafc66a5e7
         remove OSS Meetup message (#1057) Christopher Angelo Phillips 2022-06-23 14:07:23 -04:00
  • 1d14f22e45
         add pom.xml cataloger (#1055) Jonas Xavier 2022-06-22 11:19:10 -07:00
  • 3f6afd572a
         Add support for CBL-Mariner distroless images (#1045) Tom Fay 2022-06-21 18:27:03 +01:00
  • ea611dab5f
         Add catalogers configuration (#1038) Alex Goodman 2022-06-21 09:06:25 -04:00
  • aed1599c4d
         add template output (#1051) Jonas Xavier 2022-06-17 11:04:31 -07:00
  • 03e37044d4
         update stereoscope to latest version (#1052) v0.48.1 Christopher Angelo Phillips 2022-06-16 14:56:33 -04:00
  • 9e72771b85
         update zip_read_closer to incorporate zip64 support (#1041) v0.48.0 Christopher Angelo Phillips 2022-06-16 10:43:18 -04:00
  • e72d68b0c6
         Add pacman (alpm) parser support (#943) Morten Linderud 2022-06-13 20:51:37 +02:00
  • f15d4a9984
         Update of README.md (#1027) v0.47.0 marcinbojko 2022-06-08 23:39:22 +02:00
  • b8d1a46e7e
         bump cosign to v1.9.0 to resolve reporting of GHSA-66x3-6cw3-v5gj (#1025) Weston Steimel 2022-06-08 15:51:10 +00:00
  • f35a252ecf
         add workflows to test new project automation (#1023) Christopher Angelo Phillips 2022-06-08 09:42:53 -04:00
  • b06a2d4f27
         add task id to constructor api-wip Alex Goodman 2022-06-07 17:44:24 -04:00
  • a5dd485672
         add configurable task collection backend Alex Goodman 2022-06-06 22:02:39 -04:00
  • 05be9e25ce
         improve LanguageByName and add unit tests (#1034) Weston Steimel 2022-06-07 13:09:09 +00:00
  • 5e2ab0874d
         Read Description from dpkg status files (#996) Ryan Moran 2022-06-06 13:59:35 -07:00
  • fb699496a8
         Add announcement for Anchore OSS Virtual Meetup (#1033) briankoe741 2022-06-06 15:26:05 -05:00
  • 0aea55f880
         add main module field to go bin metadata (#1026) Jonas Xavier 2022-06-03 16:12:09 -07:00
  • caff67289a
         Add filters to package cataloger (#1021) Jonas Xavier 2022-06-03 10:17:43 -07:00
  • 82de24cf7c
         change draft to false for release process (#1016) Christopher Angelo Phillips 2022-06-01 11:55:33 -04:00
  • 3db3efacdc
         Support RPM distros with newer RPM db formats (#1018) Tom Fay 2022-05-31 22:25:22 +01:00
  • 6ccd460e59
         fix: add component list to prevent cyclone-dx panic (#1015) cpendery 2022-05-26 13:44:12 -04:00
  • 7cb8e1fc14
         Use SBOM descriptor version (#1011) v0.46.3 Jonas Xavier 2022-05-25 14:40:08 -07:00
  • c990f425a6
         Longer CPEs for golang modules to avoid false positives (#1006) Jonas Xavier 2022-05-23 10:39:34 -07:00
  • d41afe05eb
         Malformed licenses field in package json warn not skip (#1004) v0.46.2 mikey strauss 2022-05-19 23:10:34 +03:00
  • 0f5a9eed09
         bump stereoscope version to include source path fix (#1005) Jonas Xavier 2022-05-18 13:53:53 -07:00
  • 8420612724
         bump cosign to v1.8.0 (#1003) Weston Steimel 2022-05-18 17:17:21 +01:00
  • 03ee4fdf5e
         add integration tests for validating CycloneDX output using cyclonedx-cli (#1000) v0.46.1 Christopher Angelo Phillips 2022-05-12 12:56:04 -04:00