oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2026-05-25 06:35:22 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 3820cba0cd
         chore(deps): update CPE dictionary index (#4112) anchore-actions-token-generator[bot] 2025-08-04 11:20:09 -04:00
  • 5af72b6663
         chore(deps): update tools to latest versions (#4108) anchore-actions-token-generator[bot] 2025-07-31 12:04:54 -04:00
  • 801b21bb37
         chore(deps): bump github/codeql-action from 3.29.4 to 3.29.5 (#4096) dependabot[bot] 2025-07-30 14:29:07 -04:00
  • 386ef842d9
         chore(deps): update anchore dependencies (#4104) v1.29.1 anchore-actions-token-generator[bot] 2025-07-30 17:41:35 +00:00
  • bd79463e77
         chore(deps): update anchore dependencies (#4098) anchore-actions-token-generator[bot] 2025-07-30 17:23:07 +00:00
  • 8a7302c5cf
         migrate to get.anchore.io (#4095) Alex Goodman 2025-07-30 10:54:22 -04:00
  • 28ba092375
         chore(deps): bump github.com/anchore/stereoscope (#4091) dependabot[bot] 2025-07-30 09:12:55 -04:00
  • fa68af468d
         chore(deps): bump github.com/docker/docker (#4092) dependabot[bot] 2025-07-29 16:29:03 -04:00
  • 700a777356
         chore(deps): bump modernc.org/sqlite from 1.38.1 to 1.38.2 (#4088) dependabot[bot] 2025-07-29 10:29:57 -04:00
  • 71aa59a210
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.13 to 0.5.14 (#4089) dependabot[bot] 2025-07-29 10:29:45 -04:00
  • d0d9c6a8e5
         chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.9.0 to 4.9.1 (#4087) dependabot[bot] 2025-07-28 13:39:36 -04:00
  • 702b4358e9
         chore(deps): bump github.com/olekukonko/tablewriter from 1.0.8 to 1.0.9 (#4086) dependabot[bot] 2025-07-28 13:39:22 -04:00
  • 4a69c00c23
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.7 to 6.6.8 (#4085) dependabot[bot] 2025-07-28 13:39:06 -04:00
  • 998742f38e
         chore(deps): bump modernc.org/sqlite from 1.38.0 to 1.38.1 (#4084) dependabot[bot] 2025-07-28 17:38:42 +00:00
  • bb8ea024e1
         chore(deps): update tools to latest versions (#4082) anchore-actions-token-generator[bot] 2025-07-28 12:01:09 -04:00
  • 3f28480b3d
         chore(deps): update CPE dictionary index (#4083) anchore-actions-token-generator[bot] 2025-07-28 10:51:16 -04:00
  • 5465bf4227
         chore(deps): update tools to latest versions (#4079) anchore-actions-token-generator[bot] 2025-07-24 15:18:12 -04:00
  • 8b2c4a134e
         chore(deps): bump github/codeql-action from 3.29.3 to 3.29.4 (#4080) dependabot[bot] 2025-07-24 15:17:49 -04:00
  • d7046099e9
         chore(deps): update tools to latest versions (#4076) anchore-actions-token-generator[bot] 2025-07-23 21:03:20 -04:00
  • f0a990b85f
         chore: add source completion tester (#4077) Alex Goodman 2025-07-23 09:49:47 -04:00
  • 48bf81cf7f
         fix: align binary java detection with jvm cataloger + support IBM (#4046) Keith Zantow 2025-07-22 12:06:32 -04:00
  • 78c7cd2cc2
         chore(deps): update tools to latest versions (#4072) anchore-actions-token-generator[bot] 2025-07-22 09:49:58 -04:00
  • a192787d44
         chore(deps): bump github/codeql-action from 3.29.2 to 3.29.3 (#4074) dependabot[bot] 2025-07-22 09:49:43 -04:00
  • d5a562c368
         chore(deps): bump anchore/sbom-action from 0.20.2 to 0.20.4 (#4073) dependabot[bot] 2025-07-22 09:49:40 -04:00
  • 6f36b586ba
         chore: update release workflow to persist credentials for git tag step (#4069) v1.29.0 Christopher Angelo Phillips 2025-07-21 15:23:14 -04:00
  • a620baff90
         chore(deps): update anchore dependencies (#4068) anchore-actions-token-generator[bot] 2025-07-21 14:12:47 -04:00
  • 5b14d160cf
         chore(deps): bump pygments (#4064) dependabot[bot] 2025-07-21 13:07:27 -04:00
  • 0a9567e88c
         chore(deps): update tools to latest versions (#4065) anchore-actions-token-generator[bot] 2025-07-21 13:07:18 -04:00
  • af787d685c
         chore(deps): bump sigstore/cosign-installer from 3.9.1 to 3.9.2 (#4066) dependabot[bot] 2025-07-21 13:06:59 -04:00
  • 64b62c086c
         chore(deps): update CPE dictionary index (#4067) anchore-actions-token-generator[bot] 2025-07-21 07:57:39 -04:00
  • c491dab35b
         feat: add parsing for uv.lock (#3763) Joshua Kugler 2025-07-17 10:26:56 -08:00
  • 0e5db45aad
         chore(deps): bump marocchino/sticky-pull-request-comment (#4063) dependabot[bot] 2025-07-17 09:27:02 -04:00
  • 9cda2de2ad
         chore: lint gh actions with zizmor (#4062) Will Murphy 2025-07-16 17:12:38 -04:00
  • 37c182d5be
         chore(deps): update tools to latest versions (#4060) anchore-actions-token-generator[bot] 2025-07-15 11:32:27 -04:00
  • cef2a38117
         chore(deps): bump github.com/go-viper/mapstructure/v2 (#4061) dependabot[bot] 2025-07-15 11:32:11 -04:00
  • 75eda3976d
         chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.8.1 to 4.9.0 (#4059) dependabot[bot] 2025-07-14 17:14:11 +00:00
  • 2b1710b009
         chore(deps): bump golang.org/x/mod from 0.25.0 to 0.26.0 (#4054) dependabot[bot] 2025-07-14 14:43:04 +00:00
  • 9caad26ee5
         Pkg Metadata type unmarshal bug (#4043) mikey strauss 2025-07-14 17:28:38 +03:00
  • d88ad07855
         chore(deps): update tools to latest versions (#4053) anchore-actions-token-generator[bot] 2025-07-14 10:27:40 -04:00
  • 13986b7cea
         chore(deps): bump golang.org/x/net from 0.41.0 to 0.42.0 (#4056) dependabot[bot] 2025-07-14 10:27:10 -04:00
  • 75db6527bc
         chore(deps): update CPE dictionary index (#4058) anchore-actions-token-generator[bot] 2025-07-14 10:27:01 -04:00
  • 1c0ed133a3
         chore(deps): bump github.com/olekukonko/tablewriter from 1.0.7 to 1.0.8 (#4049) dependabot[bot] 2025-07-08 15:27:02 -04:00
  • 9928386d38
         chore(deps): update CPE dictionary index (#4050) anchore-actions-token-generator[bot] 2025-07-08 15:26:50 -04:00
  • 9dd06981b4
         chore(deps): bump github.com/hashicorp/hcl/v2 from 2.23.0 to 2.24.0 (#4051) dependabot[bot] 2025-07-08 15:26:34 -04:00
  • f88be457ef
         chore(deps): bump github.com/charmbracelet/bubbletea from 1.3.5 to 1.3.6 (#4052) dependabot[bot] 2025-07-08 15:26:26 -04:00
  • 02703d5c80
         feat: RHEL EUS detection (#4023) Keith Zantow 2025-07-07 10:11:20 -04:00
  • 9cbd52bdd7
         chore(deps): bump anchore/sbom-action from 0.20.1 to 0.20.2 (#4048) dependabot[bot] 2025-07-03 15:00:51 -04:00
  • e8b62ab9ac
         chore(deps): update anchore dependencies (#4047) v1.28.0 anchore-actions-token-generator[bot] 2025-07-02 16:09:46 +00:00
  • 2af1bca83f
         chore(deps): update anchore dependencies (#4045) anchore-actions-token-generator[bot] 2025-07-02 11:50:29 -04:00
  • 2111d4d0e4
         chore: upgrade tablewriter dependency to use new API (#3990) Carlos Tadeu Panato Junior 2025-07-01 22:16:16 +02:00
  • 179cc70a36
         chore(deps): bump github.com/Masterminds/semver/v3 from 3.3.1 to 3.4.0 (#4040) dependabot[bot] 2025-07-01 19:21:02 +00:00
  • 1e3d2a2927
         chore: update tests to read from latest test-fixture-cache and fix cache publish (#4042) Christopher Angelo Phillips 2025-07-01 10:11:36 -04:00
  • 421afac532
         chore(deps): bump github.com/mholt/archives from 0.1.2 to 0.1.3 (#4032) dependabot[bot] 2025-06-30 17:58:41 -04:00
  • b0b10acb40
         chore(deps): bump marocchino/sticky-pull-request-comment (#4019) dependabot[bot] 2025-06-30 17:58:32 -04:00
  • b90028bd1f
         chore(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.1 (#4022) dependabot[bot] 2025-06-30 17:58:23 -04:00
  • b5a1b309ca
         chore(deps): update tools to latest versions (#4035) anchore-actions-token-generator[bot] 2025-06-30 17:17:49 -04:00
  • 841f963e70
         chore(deps): update CPE dictionary index (#4037) anchore-actions-token-generator[bot] 2025-06-30 17:17:34 -04:00
  • ba59f57bfe
         chore(deps): bump github/codeql-action from 3.29.0 to 3.29.2 (#4039) dependabot[bot] 2025-06-30 17:17:20 -04:00
  • 69baca8804 fix go mod tidy release problem Kudryavcev Nikolay 2025-06-29 20:52:32 +03:00
  • 1ae11d511b Merge remote-tracking branch 'origin' into upgrade-deprecated-archiver Kudryavcev Nikolay 2025-06-29 20:36:17 +03:00
  • 01e6de0716 fix linting Kudryavcev Nikolay 2025-06-27 13:53:57 +03:00
  • 17a66f0186 upgrade deprecated library for archiving Kudryavcev Nikolay 2025-06-27 00:29:35 +03:00
  • 2bda086423
         Add ability to scan snaps (as a source) (#3929) Alex Goodman 2025-06-25 16:53:35 -04:00
  • 4eb8ba4575
         chore(deps): update CPE dictionary index (#4021) anchore-actions-token-generator[bot] 2025-06-23 11:30:19 -04:00
  • 49115355d4
         chore(deps): update tools to latest versions (#4016) anchore-actions-token-generator[bot] 2025-06-19 14:02:03 -04:00
  • d9eb1d7c1b
         chore(deps): update tools to latest versions (#4012) anchore-actions-token-generator[bot] 2025-06-17 11:35:22 -04:00
  • 32a30f76c6
         chore(deps): bump github.com/go-viper/mapstructure/v2 (#4014) dependabot[bot] 2025-06-17 11:35:09 -04:00
  • b52b13c03c
         chore(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 (#4015) dependabot[bot] 2025-06-17 11:34:58 -04:00
  • 0bfda2c514
         chore(deps): update CPE dictionary index (#4007) anchore-actions-token-generator[bot] 2025-06-16 11:15:50 -04:00
  • 0b57d03958
         chore(deps): bump anchore/sbom-action from 0.20.0 to 0.20.1 (#4008) dependabot[bot] 2025-06-16 11:15:37 -04:00
  • 72f9c42562
         chore(deps): bump github.com/google/go-containerregistry (#4009) dependabot[bot] 2025-06-16 11:15:22 -04:00
  • 181e180284
         chore(deps): update tools to latest versions (#3992) anchore-actions-token-generator[bot] 2025-06-13 10:38:44 -04:00
  • c19558dd73
         chore(deps): bump github/codeql-action from 3.28.19 to 3.29.0 (#4000) dependabot[bot] 2025-06-12 10:37:53 -04:00
  • 10f0631710
         fix: provide separate nonroot image (#3998) v1.27.1 Keith Zantow 2025-06-11 17:00:55 -04:00
  • 96c34ffc43
         account for non-import shapes (#3997) Alex Goodman 2025-06-11 13:11:40 -04:00
  • 79b6d5daa4
         Allow decoding of anchorectl json files (#3973) Alex Goodman 2025-06-10 15:03:50 -04:00
  • cfa7cc5be9
         chore(deps): bump github.com/anchore/stereoscope (#3991) dependabot[bot] 2025-06-10 11:47:40 -04:00
  • 18f9b5ab58
         remove benchmark utils (#3982) v1.27.0 Alex Goodman 2025-06-09 14:24:49 -04:00
  • 9090c69708
         fix: exclude packages with SPDX GENERATED_FROM source package indication (#3981) Keith Zantow 2025-06-09 14:12:23 -04:00
  • 1396a14550
         chore(deps): bump modernc.org/sqlite from 1.37.1 to 1.38.0 (#3979) dependabot[bot] 2025-06-09 10:31:10 -04:00
  • 592bc0af7d
         chore(deps): bump github.com/go-git/go-git/v5 from 5.16.1 to 5.16.2 (#3978) dependabot[bot] 2025-06-09 10:26:47 -04:00
  • b6b8a8f52e
         chore(deps): update tools to latest versions (#3977) anchore-actions-token-generator[bot] 2025-06-09 08:56:36 -04:00
  • a196cc9215
         chore(deps): update CPE dictionary index (#3976) anchore-actions-token-generator[bot] 2025-06-09 08:56:18 -04:00
  • 12c8003317
         chore(deps): bump golang.org/x/net from 0.40.0 to 0.41.0 (#3970) dependabot[bot] 2025-06-06 10:23:02 -04:00
  • 0a25c0ec5c
         chore(deps): bump github.com/sergi/go-diff (#3971) dependabot[bot] 2025-06-06 10:22:54 -04:00
  • 5ae11bd1f7
         Fix Python package dependency detection (#3965) Christoph Blessing 2025-06-06 15:46:16 +02:00
  • bc1cbde4f7
         fix: Remove three Rust crate false positive CPE matches (#3967) John Vandenberg 2025-06-06 16:29:06 +08:00
  • 868a6a7584
         Harden Container Runtime with Non-Root User (#3941) Michael Briley 2025-06-05 10:36:23 -06:00
  • bd894b9c4d
         fix: Remove two Rust crate false positive CPE matches (#3962) John Vandenberg 2025-06-05 22:28:54 +08:00
  • c36c69779a
         chore(deps): bump golang.org/x/mod from 0.24.0 to 0.25.0 (#3963) dependabot[bot] 2025-06-05 13:46:58 +00:00
  • cd23ccc6e6
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.12 to 0.5.13 (#3964) dependabot[bot] 2025-06-05 13:45:40 +00:00
  • 71d84603c1
         fix: bump stereoscope to fix symlink performance issue (#3953) Keith Zantow 2025-06-04 11:50:03 -04:00
  • f2118b568d
         chore(deps): bump github.com/go-git/go-git/v5 from 5.16.0 to 5.16.1 (#3960) dependabot[bot] 2025-06-04 14:02:45 +00:00
  • bb50f1650d
         chore(deps): bump github/codeql-action from 3.28.18 to 3.28.19 (#3952) dependabot[bot] 2025-06-03 10:20:24 -04:00
  • a0be514184
         feat: add syft schema version to version command (#3949) Christopher Angelo Phillips 2025-06-02 11:50:21 -04:00
  • 8cc808f8f6
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.11 to 0.5.12 (#3943) dependabot[bot] 2025-06-02 10:46:30 -04:00
  • 967e2f85bf
         chore(deps): update tools to latest versions (#3945) anchore-actions-token-generator[bot] 2025-06-02 10:46:20 -04:00
  • 339fea9851
         chore(deps): update CPE dictionary index (#3947) anchore-actions-token-generator[bot] 2025-06-02 10:43:31 -04:00
  • 576e729c84
         fix: revert incorrect graalvm unknown behavior (#3944) Keith Zantow 2025-05-30 11:36:57 -04:00
  • b3e8926025
         chore(deps): bump github.com/google/go-containerregistry (#3933) dependabot[bot] 2025-05-28 12:45:51 -04:00