oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2026-06-09 22:15:23 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 7f01403a6b
         pr: pr feedback Christopher Phillips 2026-01-30 17:23:20 -05:00
  • 169ded1804
         Merge branch 'main' into report-java-archive-metadata Christopher Phillips 2026-01-30 17:11:05 -05:00
  • 2dffebd34a
         pr: resolve schema drift Christopher Phillips 2026-01-30 17:02:09 -05:00
  • c94d1ccf1c
         fix: lookup alternate scheme on url->licenseID (#4588) Christopher Angelo Phillips 2026-01-30 14:25:27 -05:00
  • 69d0898918
         chore(deps): bump the go-minor-patch group with 2 updates (#4583) dependabot[bot] 2026-01-30 11:24:34 -05:00
  • 94c8088542
         feat: add Qt6 binary detection (#4550) Rez Moss 2026-01-30 10:35:33 -05:00
  • e136ebc44f
         chore(deps): bump the actions-minor-patch group across 1 directory with 2 updates (#4584) dependabot[bot] 2026-01-30 10:33:32 -05:00
  • 0bca34f986
         fix: snap cataloger incorrectly identifies snap container as deb package (#4500) Alan Pope 2026-01-30 15:19:26 +00:00
  • 49a57a0307
         chore: update snippets to be managed by config qt6-binary-detection Christopher Phillips 2026-01-30 10:18:59 -05:00
  • ab725de6a1
         fix: base extension without spdx upstream update fix-license-url Christopher Phillips 2026-01-29 14:26:30 -05:00
  • 8d836fb8b0
         chore(deps): update tools to latest versions (#4577) v1.41.1 anchore-actions-token-generator[bot] 2026-01-27 15:18:18 -05:00
  • 9a250a4b4b
         fix: update mixed case dependencies in python to be normalized (#4573) Christopher Angelo Phillips 2026-01-27 15:16:32 -05:00
  • e8b4527bfb
         chore(deps): update anchore dependencies (#4575) v1.41.0 anchore-actions-token-generator[bot] 2026-01-27 10:14:26 +00:00
  • d0bb042d74
         chore(deps): update tools to latest versions (#4570) anchore-actions-token-generator[bot] 2026-01-26 12:25:31 -05:00
  • c744873ac9
         feat: detect Debian version from /etc/debian_version (#4569) patch-1.33.0-r1 Keith Zantow 2026-01-23 17:52:21 -05:00
  • 0773492f84
         fix: correctly report supporting evidence for binary packages (#4558) Keith Zantow 2026-01-23 13:01:12 -05:00
  • c65d023668
         feat: detect Debian version from /etc/debian_version (#4569) Keith Zantow 2026-01-23 17:52:21 -05:00
  • 836f358cd4
         fix: correctly report supporting evidence for binary packages (#4558) Keith Zantow 2026-01-23 13:01:12 -05:00
  • 27b1219e98
         chore(deps): bump the actions-minor-patch group across 2 directories with 3 updates (#4568) dependabot[bot] 2026-01-23 10:37:23 -05:00
  • c0e0058c86
         chore(deps): bump the go-minor-patch group with 6 updates (#4567) dependabot[bot] 2026-01-23 10:37:10 -05:00
  • a9fabb6c0f
         chore(deps): update tools to latest versions (#4565) anchore-actions-token-generator[bot] 2026-01-22 13:04:45 -05:00
  • 2d52c78595
         qt bin classifier, fixed #4467 Rez Moss 2026-01-19 10:55:43 -05:00
  • 7954324417
         chore(deps): bump github.com/spdx/tools-golang (#4557) dependabot[bot] 2026-01-16 13:04:13 -05:00
  • 3e563d90d5
         ci: enable zizmor to fail PRs (#4556) Will Murphy 2026-01-16 10:49:00 -05:00
  • 5987f46353
         Chore new slack action (#4553) Will Murphy 2026-01-16 06:26:40 -05:00
  • 63927ab49f
         chore(deps): update anchore dependencies (#4552) v1.40.1 anchore-actions-token-generator[bot] 2026-01-15 21:33:35 +00:00
  • 308b8030e7
         chore(deps): update tools to latest versions (#4551) anchore-actions-token-generator[bot] 2026-01-15 07:30:10 -05:00
  • 93ede85c9a
         qt bin classifier, fixed #4467 Rez Moss 2026-01-14 09:54:02 -05:00
  • af3503f3b5
         qt bin classifier, fixed #4467 Rez Moss 2026-01-13 16:36:07 -05:00
  • 873173da10
         qt bin classifier, fixed #4467 Rez Moss 2026-01-13 16:28:32 -05:00
  • 6d8a03b375
         chore(deps): update tools to latest versions (#4545) anchore-actions-token-generator[bot] 2026-01-12 11:05:17 -05:00
  • 55a190aed1
         chore(deps): update tools to latest versions (#4542) anchore-actions-token-generator[bot] 2026-01-09 13:14:13 -05:00
  • 695bbcc4f9
         chore(deps): bump the go-minor-patch group with 4 updates (#4543) dependabot[bot] 2026-01-09 13:13:56 -05:00
  • 6d206910f0
         chore(deps): bump anchore/sbom-action (#4544) dependabot[bot] 2026-01-09 13:13:44 -05:00
  • 2f3a504acf
         Feat/catalog mongodb bin (#4541) Rez Moss 2026-01-08 12:18:51 -05:00
  • d24e843c45
         chore(deps): update tools to latest versions (#4537) anchore-actions-token-generator[bot] 2026-01-08 11:56:50 -05:00
  • 83a4528fff
         chore: sync generated file immediately (#4538) Will Murphy 2026-01-08 09:01:17 -05:00
  • 11e871566b
         chore(deps): update anchore dependencies (#4535) v1.40.0 anchore-actions-token-generator[bot] 2026-01-08 12:16:49 +00:00
  • cc1a7dfae8
         chore: fix some comments to improve readability (#4533) promalert 2026-01-07 23:48:40 +08:00
  • 3a3a86eb01
         fixed #4430 exclude dev pnpm pkg (#4487) Rez Moss 2026-01-07 10:39:16 -05:00
  • 6509b7079e
         add istio classifier (#4521) witchcraze 2026-01-08 00:36:39 +09:00
  • 7f1d57d06f
         feat: detect older bitnami img packages (#4532) Rez Moss 2026-01-07 10:07:33 -05:00
  • ed339e4fed
         fix: ensure java image build failures stop the build (#4531) Alex Goodman 2026-01-06 11:43:51 -05:00
  • 3ea6a03cd0
         chore(deps): bump the go-minor-patch group with 3 updates (#4524) dependabot[bot] 2026-01-06 15:25:43 +00:00
  • 81dd955871
         add envoy binary classifier (#4530) witchcraze 2026-01-06 22:45:01 +09:00
  • 48948ddb8f
         add container support for graalvm fixture (#4528) Alex Goodman 2026-01-05 14:18:12 -05:00
  • 63273b1b00
         chore(deps): bump the actions-minor-patch group across 1 directory with 2 updates (#4525) dependabot[bot] 2026-01-05 12:48:30 -05:00
  • 92e523caa6
         chore(deps): bump actions/download-artifact from 6.0.0 to 7.0.0 (#4526) dependabot[bot] 2026-01-05 12:48:20 -05:00
  • 9b33b8a3d6
         chore(deps): bump actions/upload-artifact from 4.4.3 to 6.0.0 (#4527) dependabot[bot] 2026-01-05 12:48:13 -05:00
  • 29a0b19a21
         Group dependabot updates (#4522) Alex Goodman 2026-01-05 11:57:38 -05:00
  • ea43506196
         fix: corrects handling of UNC root paths in windows. Luis Miguel Santos 2026-01-05 11:32:07 -05:00
  • 2c96279df9
         fix: traefik binary classifier (#4499) Rez Moss 2026-01-05 11:14:00 -05:00
  • 488511f69d
         chore(deps): bump modernc.org/sqlite from 1.41.0 to 1.42.2 (#4513) dependabot[bot] 2026-01-05 10:46:39 -05:00
  • 11fed90075
         Migrate CI to runs-on (#4351) Alex Goodman 2026-01-05 09:53:06 -05:00
  • c8184bdb4c
         add grafana classifier (#4516) witchcraze 2026-01-05 23:51:41 +09:00
  • 15af992225
         add valkey classifier (#4509) witchcraze 2026-01-05 23:40:35 +09:00
  • 1e15428c6f
         chore(deps): bump anchore/sbom-action from 0.20.11 to 0.21.0 (#4501) dependabot[bot] 2026-01-05 09:19:40 -05:00
  • d1adfdc3a6
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.7.7 to 6.7.8 (#4502) dependabot[bot] 2026-01-05 09:19:34 -05:00
  • 0028165062
         chore(deps): bump github.com/spdx/tools-golang from 0.5.5 to 0.5.6 (#4503) dependabot[bot] 2026-01-05 09:19:29 -05:00
  • 997a76712f
         chore(deps): update tools to latest versions (#4504) anchore-actions-token-generator[bot] 2026-01-05 09:19:24 -05:00
  • e44ef53489
         chore(deps): bump github.com/hashicorp/go-getter from 1.8.3 to 1.8.4 (#4518) dependabot[bot] 2026-01-05 09:17:46 -05:00
  • e0708e725f
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.18 to 0.5.19 (#4520) dependabot[bot] 2026-01-05 09:17:39 -05:00
  • e9e3494853
         remove debug output (#4496) v1.39.0 Alex Goodman 2025-12-22 14:51:39 -05:00
  • b3c70da3ea
         Add experimental cataloger capabilities command (#4317) Alex Goodman 2025-12-22 14:34:10 -05:00
  • ae1a247f3d
         Unpin fixture dependencies that will always float (#4495) Alex Goodman 2025-12-22 14:17:58 -05:00
  • 0ea920ba6d
         Decompress UPX packed binaries to extract golang build info (ELF formatted binaries with lzma method only) (#4480) Alex Goodman 2025-12-22 09:17:38 -05:00
  • 7ef4703454
         chore(deps): update tools to latest versions (#4491) anchore-actions-token-generator[bot] 2025-12-22 09:15:51 -05:00
  • 8334fb04ec
         chore(deps): bump modernc.org/sqlite from 1.40.1 to 1.41.0 (#4489) dependabot[bot] 2025-12-19 11:00:31 -05:00
  • 3549b04e18 Merge remote-tracking branch 'origin/main' into add-go-symbol-extract add-go-symbol-extract Alex Goodman 2025-12-19 10:02:13 -05:00
  • c9760d2341
         feat: snap can be queried by revision and ``track/risk/branch`` (#4439) VictorHuu 2025-12-19 04:41:36 +08:00
  • 74c9380248
         fix: 4423 dotnet-deps cataloger skips project type by def Rez Moss 2025-12-18 13:38:47 -05:00
  • 7ed733c3fb
         signpost to docs site (#4483) Alex Goodman 2025-12-17 13:00:38 -05:00
  • a39c600913
         chore(deps): bump github/codeql-action from 4.31.8 to 4.31.9 (#4481) dependabot[bot] 2025-12-17 10:20:52 -05:00
  • a2020fe1c7
         chore(deps): bump github.com/goccy/go-yaml from 1.19.0 to 1.19.1 (#4482) dependabot[bot] 2025-12-17 10:20:43 -05:00
  • 89824f0ae7 Merge remote-tracking branch 'origin/main' into add-go-symbol-extract Alex Goodman 2025-12-16 13:53:31 -05:00
  • b361427043 add test coverage for cgo Alex Goodman 2025-12-16 13:47:55 -05:00
  • c79a57b6a1
         Detect embedded deps.json in .NET binaries (#4375) Rez Moss 2025-12-16 08:35:19 -05:00
  • 2c97ff1b24
         chore(deps): bump actions/cache from 5.0.0 to 5.0.1 (#4476) dependabot[bot] 2025-12-16 08:28:51 -05:00
  • e760a7cad4
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#4477) dependabot[bot] 2025-12-16 08:28:48 -05:00
  • e1ae4e1112
         chore(deps): update tools to latest versions (#4473) anchore-actions-token-generator[bot] 2025-12-16 08:28:44 -05:00
  • beb70891e5
         unapply base path for resolver inbound requests (#4478) Alex Goodman 2025-12-16 08:28:12 -05:00
  • e0b61a3ae3
         fix: golang PURL should include full module (#4395) Rez Moss 2025-12-12 14:19:26 -05:00
  • 4c38ee1932
         fix:best effort to get the os info of an ELF binary (#4438) VictorHuu 2025-12-13 03:13:59 +08:00
  • 6be0a9abc4
         Improve PR template (#4472) Alex Goodman 2025-12-12 10:45:29 -05:00
  • ea1f4cba38
         feat: add support for Gemfile.next.lock (#4457) Alexandre Steppé 2025-12-12 16:20:53 +01:00
  • c8982b887d
         chore:cancel in-progress workflows for new commits on same PR (#4465) VictorHuu 2025-12-12 23:20:20 +08:00
  • 6ad4873a33
         chore(deps): update tools to latest versions (#4466) anchore-actions-token-generator[bot] 2025-12-12 08:49:02 -05:00
  • 052e4ca9a3
         chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8 (#4468) dependabot[bot] 2025-12-12 08:48:36 -05:00
  • 41e133e2cf
         chore(deps): bump actions/cache from 4.3.0 to 5.0.0 (#4469) dependabot[bot] 2025-12-12 08:48:32 -05:00
  • a85e034afc
         chore(deps): bump github.com/anchore/stereoscope from 0.1.14 to 0.1.16 (#4470) dependabot[bot] 2025-12-12 08:48:28 -05:00
  • d5380013ae
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#4471) dependabot[bot] 2025-12-12 08:48:22 -05:00
  • 281a9b87de keep both local and global symbols Alex Goodman 2025-12-11 14:20:44 -05:00
  • 5ea3387cbc
         chore(deps): update tools to latest versions (#4462) anchore-actions-token-generator[bot] 2025-12-11 09:55:34 -05:00
  • bf1f0ceea3 add support for PE binaries Alex Goodman 2025-12-10 13:53:00 -05:00
  • 568b7601bb
         fix(javascript): remove debug print statement in dependency parser (#4412) Chris Greeno 2025-12-10 18:42:09 +00:00
  • 7fdb08c0b6
         Validating download_url for github repositories, and updating if necessary (#4390) Kendrick 2025-12-10 10:41:00 -08:00
  • 47e1cee5a5
         chore(deps): update tools to latest versions (#4456) anchore-actions-token-generator[bot] 2025-12-10 13:34:42 -05:00
  • a0c5b8aa8d
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.7.5 to 6.7.7 (#4460) dependabot[bot] 2025-12-10 13:32:56 -05:00
  • ab5fa0a664
         chore(deps): bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 (#4459) dependabot[bot] 2025-12-10 13:32:51 -05:00
  • 07ad8a5573
         chore(deps): bump anchore/sbom-action from 0.20.10 to 0.20.11 (#4458) dependabot[bot] 2025-12-10 13:32:47 -05:00