oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2026-04-04 22:00:35 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • f157d7a862
         Pull from DockerHub fails for public images when using SSO (#928) Alex Goodman 2022-03-30 13:32:49 -04:00
  • 028cd9e27e
         Fix nil pointer dereference in directory resolver's indexPath method (#924) Dan Luhring 2022-03-28 13:15:09 -04:00
  • 5549939cc6
         Fixups and clarifications in README (#920) Dan Luhring 2022-03-25 11:36:43 -04:00
  • 47ea910868
         Remove announcement for OSS Meetup (#915) briankoe741 2022-03-24 19:17:14 -05:00
  • a7db43f5ec
         Fix panic on empty sbom (#917) v0.42.4 Dan Luhring 2022-03-24 10:11:51 -04:00
  • cc2c0e57a0
         bump strset version to fix 386 builds (#911) v0.42.3 Alex Goodman 2022-03-23 14:34:54 -04:00
  • 5253da4b36
         Rollback referencing docker config items (#912) Alex Goodman 2022-03-23 14:33:41 -04:00
  • 9f60d32369
         migrate source.FileResolver to the file package Alex Goodman 2022-03-22 20:50:05 -04:00
  • a3dc0fa97d
         rename location.VirtualPath to AccessPath Alex Goodman 2022-03-22 18:24:50 -04:00
  • f999604a29
         migrate location and file metadata to the file package Alex Goodman 2022-03-22 18:21:35 -04:00
  • a49c7e3c53
         migrate filename glob helpers to internal Alex Goodman 2022-03-22 17:41:02 -04:00
  • b3ca75646c
         keep file catalogers separate from file-related definitions Alex Goodman 2022-03-22 17:18:36 -04:00
  • 3308079158
         export event monitor structs but not behavior Alex Goodman 2022-03-22 16:05:45 -04:00
  • c0b547bdb2
         Less verbose logging in Golang Cataloger (#904) v0.42.2 Jonas Xavier 2022-03-22 10:19:18 -07:00
  • cffcaf5984
         Improve docker config support (#906) Alex Goodman 2022-03-22 11:02:54 -04:00
  • 7f9edf346a
         Bump golangci-lint to 1.45.0 (#909) Alex Goodman 2022-03-22 11:02:36 -04:00
  • 1279bd0b08
         add additional package catalger append option Alex Goodman 2022-03-22 10:48:16 -04:00
  • a644a45ef4
         Correct go.mod to enforce go 1.18 (#897) j-k 2022-03-21 19:38:32 +00:00
  • 283db88dc4
         Omit H1Digest when empty (#902) v0.42.1 Jonas Xavier 2022-03-21 11:59:10 -07:00
  • 03e193e577
         Add platform option to the README (#889) Alex Goodman 2022-03-21 12:02:15 -04:00
  • 069aa68b63
         Fix image cleanup when there is an error (#905) Alex Goodman 2022-03-21 10:48:11 -04:00
  • 9240860f44
         Correct ID handling during Syft JSON decoding (#900) Keith Zantow 2022-03-18 17:03:26 -04:00
  • 4231f38fa2
         add case to decode GolangBinMetadata for syftjson model (#901) Christopher Angelo Phillips 2022-03-18 15:15:10 -04:00
  • 752b03b2d6
         Remove commit signing requirement (#899) Dan Luhring 2022-03-18 12:48:00 -04:00
  • 99c3339810
         Fix CycloneDX license decoding panic (#898) Keith Zantow 2022-03-18 09:44:51 -04:00
  • f4734d28b3
         Fix panic when CycloneDX BOM missing metadata.component (#895) v0.42.0 Keith Zantow 2022-03-17 10:22:35 -04:00
  • 6ef3e45ffc
         Use go 1.18 buildinfo to catalog binaries (#827) Jonas Xavier 2022-03-16 17:07:02 -07:00
  • ee0a1d172c
         panic parsing cyclonedx (#892) v0.41.6 Keith Zantow 2022-03-16 09:10:44 -04:00
  • b9b3ccecf9
         Update register link text (#891) v0.41.5 Keith Zantow 2022-03-15 13:02:33 -04:00
  • 95271fb10d
         NPM PURLs are invalid (#832) mikey strauss 2022-03-15 17:54:33 +02:00
  • 93d2d57cd3
         update README with OSS Meetup information (#890) Christopher Angelo Phillips 2022-03-15 11:37:56 -04:00
  • 7cd3201fe9
         Support the .be top-level domain (#873) Kenny Moens 2022-03-15 15:59:13 +01:00
  • f89f58b825
         change package cataloger option name Alex Goodman 2022-03-14 12:54:37 -04:00
  • a70cfa6dd7
         migrate cataloging config to separate source file Alex Goodman 2022-03-14 12:30:08 -04:00
  • 3323ce2b6b
         [wip] api refactor Alex Goodman 2022-03-11 21:11:59 -05:00
  • c7cf8b0b26
         Brew install gon failed (#885) v0.41.4 v0.41.3 Keith Zantow 2022-03-11 13:17:57 -05:00
  • 44a6e00f7a
         Include vendored modules in Go Module package list (#883) Frankie G-J 2022-03-11 12:57:33 -05:00
  • 6c8102bf28
         Correct CycloneDX distro decoding (#745) Keith Zantow 2022-03-11 09:27:18 -05:00
  • 7789506dc6
         Experimental GitHub export (#836) v0.41.2 Keith Zantow 2022-03-10 22:38:12 -05:00
  • fa03723617
         Upgrade vault api from v1.3.1 to v1.4.1 (#878) Christopher Angelo Phillips 2022-03-09 15:11:07 -05:00
  • 2946813a74
         RPM Epoch should be optional in the json schema (#880) Alex Goodman 2022-03-09 14:51:43 -05:00
  • 003d28ad48
         Add SchemaVersion to version command output (#877) Christopher Angelo Phillips 2022-03-09 13:12:52 -05:00
  • 9d9669e62f
         Add artifacthub owner (#876) Alex Goodman 2022-03-09 07:50:31 -05:00
  • 39737a2825
         Update cyclonedx to v1.4 (#820) Sambhav Kothari 2022-03-08 17:09:55 +00:00
  • f2617285d0
         Update yarn.lock parser to support latest (berry v3) format (#868) cipher-ardvark 2022-03-08 09:07:54 -08:00
  • 07d3c9af52
         Fix file creation for output options (#875) v0.41.1 Alex Goodman 2022-03-08 10:37:28 -05:00
  • 5123f073c7
         Update containerd via stereoscope (#870) v0.41.0 Alex Goodman 2022-03-07 12:37:20 -05:00
  • 991af0d857
         Include root path in directory resolve index (#869) Alex Goodman 2022-03-07 11:34:16 -05:00
  • a90cff9ae1
         simplify yarn test expressions yarn-tests Alex Goodman 2022-03-07 08:50:20 -05:00
  • 7b3cc85219 update yarn.lock parser to support yarn berry Patrick Glass 2022-03-06 21:50:18 -08:00
  • 913bdda8df add test cases for yarn parser regex Patrick Glass 2022-03-06 19:22:35 -08:00
  • a86dd3704e
         Add platform selection (#866) Alex Goodman 2022-03-04 17:41:38 -05:00
  • 4af32c5bee
         Migrate format definitions to sbom package (#864) Alex Goodman 2022-03-04 17:22:40 -05:00
  • 640099ce2e
         tiny aligment fix in example template (#867) Jonas Xavier 2022-03-04 09:34:05 -08:00
  • b2ab4671b9
         Correct SPDX-JSON checksum algorithm (#863) v0.40.1 Keith Zantow 2022-03-03 17:13:13 -05:00
  • ad322b3314
         bump error language and remove panic (#862) Christopher Angelo Phillips 2022-03-03 10:37:18 -05:00
  • 4a8a9ce290
         add podman scheme to doc examples (#860) Jonas Xavier 2022-03-02 14:39:05 -08:00
  • 635904fcb6
         Reduce PR check failures (#858) Alex Goodman 2022-03-02 12:51:37 -05:00
  • 1e75cb0418
         Update to cosign v1.5.2 (#857) v0.40.0 Dan Luhring 2022-03-02 10:09:47 -05:00
  • afc0c1acd9
         855 attest registry source only (#856) Christopher Angelo Phillips 2022-03-01 23:16:42 -05:00
  • edac8c7bf7
         Update CycloneDX to use syft namespace and output multiple CPEs (#849) Keith Zantow 2022-03-01 17:37:52 -05:00
  • d2f28e0eb1
         Restore single goreleaser file (#853) Alex Goodman 2022-02-28 09:46:41 -05:00
  • 1d1a7de314
         Fix goreleaser generated config path (#852) v0.39.3 Alex Goodman 2022-02-26 07:30:38 -05:00
  • 24cd39089a
         Share import mac code signing certificate steps for release (#851) v0.39.2 Alex Goodman 2022-02-25 20:07:03 -05:00
  • bb3d713b97
         cpe generation update (#850) Christopher Angelo Phillips 2022-02-25 17:06:05 -05:00
  • c89131bcf3
         Bump release timeout (#848) v0.39.1 Alex Goodman 2022-02-25 11:32:57 -05:00
  • 6c306efed2
         Enhance container image labels for ArtifactHub (#839) v0.39.0 Batuhan Apaydın 2022-02-24 19:15:36 +03:00
  • 99bb93d0fe
         Resolve symlinks when fetching file contents (#782) Alex Goodman 2022-02-24 10:01:59 -05:00
  • 7eea98fcc5
         Allow for CPE strings that can later be sanitized (#844) Alex Goodman 2022-02-23 15:18:12 -05:00
  • 256e85bc12
         510 - SBOM attestation stdout (#785) Christopher Angelo Phillips 2022-02-22 21:45:12 -05:00
  • 738b3b60a5
         Add exception for handlebars java package to generate nodejs CPE (#837) Alex Goodman 2022-02-22 17:29:28 -05:00
  • 20c1d14f6e
         Add CycloneDX decoder (#811) Keith Zantow 2022-02-18 11:19:02 -05:00
  • 4b16737b2f
         ignore minor parsing error when reading dpkg status files (#786) Jonas Xavier 2022-02-17 14:05:11 -08:00
  • e6b5872bc8
         Base64 encoder closing (#822) mikey strauss 2022-02-17 20:10:08 +02:00
  • 641c44f449
         Fix panic in requirements.txt parsing (#834) Dan Luhring 2022-02-17 10:00:16 -05:00
  • 55c7f3d1e7
         Upgrade install.sh to support installations for previous versions (#830) Alex Goodman 2022-02-15 17:23:11 -05:00
  • 52d2e62cdc
         remove duplicate manifest lines (#828) v0.38.0 Christopher Angelo Phillips 2022-02-15 12:51:02 -05:00
  • 51c6eb30f5
         bump stereoscope to include functional options (#823) Alex Goodman 2022-02-14 20:40:51 -05:00
  • e1e9ccb401
         update golang crypto library dependency (#815) Christopher Angelo Phillips 2022-02-11 13:36:52 -05:00
  • 220f3a24fd
         deduplicate SPDX tag-value package IDs (#813) Alex Goodman 2022-02-10 16:18:00 -05:00
  • ca032434b3
         Add pURL generation for java packages + fix NPM pURL generation (#812) Alex Goodman 2022-02-10 13:46:38 -05:00
  • 5ab872c732
         Add nix install details (#800) j-k 2022-02-09 19:33:26 +00:00
  • a04fa68539
         Ensure completion of UI progress bar (#810) Jonas Xavier 2022-02-09 11:23:58 -08:00
  • 76f8205936
         Suport SPDX SBOM decoding (#738) Keith Zantow 2022-02-09 14:11:20 -05:00
  • ca081ae5e0
         use SYFT_LOG_FILE env var (#805) Jonas Xavier 2022-02-09 10:04:08 -08:00
  • 8f96adacfb
         Upgrade golang to 1.17 (#809) Christopher Angelo Phillips 2022-02-09 11:08:24 -05:00
  • 8f292958a6
         set version makefile var for updating version file (#808) Alex Goodman 2022-02-09 08:25:31 -05:00
  • 23e1bd3984
         add metadata filed on pod usage template (#788) majinghe 2022-02-09 05:00:19 +08:00
  • ac024f94a4
         encapsulate showing the signing log with failing (#807) Alex Goodman 2022-02-07 20:26:34 -05:00
  • 0ed2842123
         serialize notarization (#806) v0.37.10 Alex Goodman 2022-02-07 18:47:47 -05:00
  • b78c90d018
         use parent dir for notarization zip (#804) v0.37.9 Alex Goodman 2022-02-07 17:50:48 -05:00
  • 2c62651c82
         run signing as post-build step (#803) v0.37.8 Alex Goodman 2022-02-07 16:55:15 -05:00
  • 5519a25035
         dont add signing artifact (#802) v0.37.7 Alex Goodman 2022-02-07 12:03:09 -05:00
  • 950ad681a0
         Stabilize CI behavior (#796) v0.37.6 Alex Goodman 2022-02-07 10:55:11 -05:00
  • 1e338502ff
         Update SPDX license list (#801) Keith Zantow 2022-02-07 10:24:08 -05:00
  • 37251f6179
         Fix intermittent slow CLI tests (#797) Alex Goodman 2022-02-06 10:53:55 -05:00
  • 69692ad901
         use anchore/go-logger interface abstract-logging Alex Goodman 2022-02-05 12:04:36 -05:00
  • e474b2f23c
         docker auth must occur after setting up prod keychain (#795) v0.37.5 Alex Goodman 2022-02-05 10:23:05 -05:00
  • e7bef5e511
         split signing setup into pre-release hook (#794) v0.37.4 Alex Goodman 2022-02-04 16:49:42 -05:00
  • e4ac7700dd
         pass notarize arg, not original archive (#793) v0.37.3 Alex Goodman 2022-02-04 14:44:37 -05:00