oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2025-11-17 08:23:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 7bdbfc0478
         chore(deps): update anchore dependencies (#3727) v1.21.0 anchore-actions-token-generator[bot] 2025-03-17 15:59:13 +00:00
  • 6e7386a4fd
         chore(deps): update CPE dictionary index (#3735) anchore-actions-token-generator[bot] 2025-03-17 10:22:53 -04:00
  • f889c4c014
         chore(deps): update tools to latest versions (#3722) anchore-actions-token-generator[bot] 2025-03-17 10:22:21 -04:00
  • 06571af855
         chore(deps): bump github.com/spf13/afero from 1.12.0 to 1.14.0 (#3736) dependabot[bot] 2025-03-17 10:22:10 -04:00
  • d6693c8504
         chore(deps): bump modernc.org/sqlite from 1.36.0 to 1.36.1 (#3737) dependabot[bot] 2025-03-17 10:22:02 -04:00
  • 2d33bcf84f
         chore(deps): bump github.com/charmbracelet/lipgloss from 1.0.0 to 1.1.0 (#3732) dependabot[bot] 2025-03-14 11:47:58 -04:00
  • ae878f7dfd
         chore(deps): bump docker/login-action from 3.3.0 to 3.4.0 (#3733) dependabot[bot] 2025-03-14 11:47:51 -04:00
  • 6f70927bcc
         fix(performance): reduce memory allocation in containsPath (#3730) Yoav Alon 2025-03-13 20:39:57 +02:00
  • 9a2c2ad401
         chore: upload individual binaries as artifacts (#3714) Keith Zantow 2025-03-13 12:15:13 -04:00
  • 2846bb18d2
         fix: fetch Dart package versions from sdk entries (#3572) Sven Gregori 2025-03-13 12:10:32 +02:00
  • 616c8dfe2a
         chore(deps): update tools to latest versions (#3713) anchore-actions-token-generator[bot] 2025-03-11 14:13:34 -04:00
  • d387f612ca
         chore(deps): update CPE dictionary index (#3715) anchore-actions-token-generator[bot] 2025-03-11 14:09:54 -04:00
  • 6a28c1c604
         Add set ID to dotnet packages (#3719) mikey strauss 2025-03-11 20:09:25 +02:00
  • c613476347
         chore(deps): bump github/codeql-action from 3.28.10 to 3.28.11 (#3716) dependabot[bot] 2025-03-11 14:08:54 -04:00
  • 34e5ff753f
         Location order on packages should consider evidence annotations when sorting (#3720) Alex Goodman 2025-03-11 10:34:37 -04:00
  • 04941c8b97
         chore: fix some function names in comment (#3717) TechVest 2025-03-10 16:34:10 +01:00
  • c687b7bfa5
         fix: improve fluent-bit binary detection regex pattern (#3701) Alan Pope 2025-03-07 14:56:37 +00:00
  • 7571f8dfba
         chore: updates for go 1.24.1 (#3712) Keith Zantow 2025-03-06 10:35:26 -05:00
  • e8c62faefc
         chore(deps): bump golang.org/x/mod from 0.23.0 to 0.24.0 (#3708) dependabot[bot] 2025-03-06 15:20:45 +00:00
  • 24133be4e6
         Update rustaudit module name (#3689) Tom Fay 2025-03-06 15:07:05 +00:00
  • 8e28b13a3d
         chore(deps): bump golang.org/x/net from 0.35.0 to 0.37.0 (#3711) dependabot[bot] 2025-03-06 15:01:39 +00:00
  • 6b0425ebad
         chore(deps): bump github.com/charmbracelet/bubbletea from 1.2.4 to 1.3.4 (#3690) dependabot[bot] 2025-03-06 15:00:19 +00:00
  • 694eec4079
         Add downloadLocation URI validation (#3697) Stef Graces 2025-03-06 15:45:47 +01:00
  • 974ce23722
         Native Image SBOM: support extracting symbols in .dynsym section for ELF files (#3647) Joel Rudsberg 2025-03-06 15:12:14 +01:00
  • 36c198ac67
         chore(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#3687) dependabot[bot] 2025-03-06 09:04:14 -05:00
  • f68351c457
         chore(deps): bump modernc.org/sqlite from 1.35.0 to 1.36.0 (#3692) dependabot[bot] 2025-03-06 09:04:10 -05:00
  • 3bdc24dfd7
         chore(deps): bump github.com/go-git/go-git/v5 from 5.13.2 to 5.14.0 (#3693) dependabot[bot] 2025-03-06 09:04:07 -05:00
  • eaca1921bf
         chore(deps): bump github.com/docker/docker (#3694) dependabot[bot] 2025-03-06 09:03:51 -05:00
  • 6e0cc6fe04
         chore(deps): bump actions/cache from 4.2.1 to 4.2.2 (#3698) dependabot[bot] 2025-03-06 09:03:48 -05:00
  • 2251b83315
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#3699) dependabot[bot] 2025-03-06 09:03:44 -05:00
  • 90761f449a
         chore(deps): update CPE dictionary index (#3702) anchore-actions-token-generator[bot] 2025-03-06 09:03:31 -05:00
  • a860c4738f
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.6 to 6.6.7 (#3703) dependabot[bot] 2025-03-06 09:03:14 -05:00
  • 92e8ee74c8
         chore(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#3709) dependabot[bot] 2025-03-06 09:03:03 -05:00
  • 705e59b107
         chore(deps): bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 (#3706) dependabot[bot] 2025-03-04 11:10:24 -05:00
  • e0bfd2f98a fix: read only single package.json or package-lock.json document fix-read-only-single-package-json Will Murphy 2025-02-28 13:07:27 -05:00
  • f6605a3817
         suppress file already closed errors (#3695) Alex Goodman 2025-02-27 16:52:50 -05:00
  • 5e2723187d
         Fix /etc/redhat-release file parsing when resolving distro details (#3688) Alex Goodman 2025-02-26 07:42:29 -05:00
  • 7ea37792f1
         chore: add a test fix/cyclonedx-typed-nils Keith Zantow 2025-02-25 10:26:45 -05:00
  • 823723f510
         fix: typed nil hashes in cyclonedx Keith Zantow 2025-02-24 20:46:46 -05:00
  • f44b709542
         chore(deps): bump sigstore/cosign-installer from 3.8.0 to 3.8.1 (#3675) dependabot[bot] 2025-02-24 10:04:27 -05:00
  • 2792013eb2
         chore: disable line wrapping glow output (#3679) Keith Zantow 2025-02-24 10:04:14 -05:00
  • 3b951648a8
         chore(deps): update CPE dictionary index (#3682) anchore-actions-token-generator[bot] 2025-02-24 10:03:13 -05:00
  • e4d9ccde47
         chore(deps): bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 (#3684) dependabot[bot] 2025-02-24 10:02:32 -05:00
  • 3c5a71156e
         chore(deps): bump github/codeql-action from 3.28.9 to 3.28.10 (#3685) dependabot[bot] 2025-02-24 10:02:11 -05:00
  • ed66988928
         chore(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 (#3686) dependabot[bot] 2025-02-24 10:01:42 -05:00
  • 46522bcc5d
         chore: update packageurl-go (#3678) v1.20.0 Keith Zantow 2025-02-21 15:31:16 -05:00
  • aeea170b19
         fix: disable cert validation in dotnet-portable-executable-cataloger by default (#3677) RogueAI 2025-02-21 21:08:06 +01:00
  • dd2ee2bbf7
         fix: find bitnami files even when no relationships (#3676) William Murphy 2025-02-21 09:22:37 -05:00
  • edcfbe2f0d
         chore(deps): update tools to latest versions (#3652) anchore-actions-token-generator[bot] 2025-02-20 14:59:23 -05:00
  • aff025ba35
         chore(deps): update CPE dictionary index (#3666) anchore-actions-token-generator[bot] 2025-02-20 14:59:10 -05:00
  • 97a99e1132
         chore(deps): bump actions/cache from 4.2.0 to 4.2.1 (#3670) dependabot[bot] 2025-02-20 10:45:27 -05:00
  • edc361c0c7
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#3671) dependabot[bot] 2025-02-20 10:44:58 -05:00
  • 2317c5acfc
         chore(deps): bump github.com/docker/docker (#3673) dependabot[bot] 2025-02-20 10:41:49 -05:00
  • 52bd4acd23
         fix: correctly trim conanfile line breaks (#3672) idhyt 2025-02-20 22:18:39 +08:00
  • 59b84f3ffd
         chore(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1 (#3667) dependabot[bot] 2025-02-18 13:48:18 -05:00
  • fb7444cb02
         chore(deps): bump github.com/sanity-io/litter from 1.5.6 to 1.5.8 (#3668) dependabot[bot] 2025-02-18 13:48:08 -05:00
  • e8a4667db2
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.10 to 0.5.11 (#3669) dependabot[bot] 2025-02-18 13:47:54 -05:00
  • bffe26bcc5
         feat: add support for Bitnami cataloguer (#3341) Juan Ariza Toledano 2025-02-18 15:07:47 +01:00
  • 869908ece1
         chore(deps): bump modernc.org/sqlite from 1.34.5 to 1.35.0 (#3664) dependabot[bot] 2025-02-14 08:40:30 -05:00
  • 91b7592a2f
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.5 to 6.6.6 (#3653) dependabot[bot] 2025-02-13 10:08:20 -05:00
  • dce99543b2
         feat: update to go 1.24.x (#3660) Weston Steimel 2025-02-13 15:08:10 +00:00
  • a17fe480a0
         chore: update runners to ubuntu-24.04 (#3657) Keith Zantow 2025-02-11 16:34:12 -05:00
  • d6fe2b08cb
         chore(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 (#3655) dependabot[bot] 2025-02-11 13:15:50 -05:00
  • 51780fba16
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.9 to 0.5.10 (#3650) dependabot[bot] 2025-02-10 10:19:22 -05:00
  • 46f9bf4e4d
         chore(deps): update CPE dictionary index (#3649) anchore-actions-token-generator[bot] 2025-02-09 22:45:31 -05:00
  • 2328b20082
         fix: reduce warn levels to debug for non-actionable errors (#3645) Keith Zantow 2025-02-07 13:22:55 -05:00
  • 52d543f3c1
         chore(deps): bump github/codeql-action from 3.28.8 to 3.28.9 (#3648) dependabot[bot] 2025-02-07 11:18:56 -05:00
  • e584c9f416
         feat: 3626 add option enable license content; disable by default (#3631) Christopher Angelo Phillips 2025-02-05 15:41:03 -05:00
  • 7bab6e9851
         chore(deps): update tools to latest versions (#3641) anchore-actions-token-generator[bot] 2025-02-05 14:23:36 -05:00
  • 10ba5aa9e6
         chore(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 (#3642) dependabot[bot] 2025-02-05 14:22:21 -05:00
  • 79ea956f18
         chore(deps): bump golang.org/x/mod from 0.22.0 to 0.23.0 (#3644) dependabot[bot] 2025-02-05 14:22:02 -05:00
  • 684b6e3f98
         Add file catalogers to selection configuration (#3505) Alex Goodman 2025-02-03 14:10:17 -05:00
  • 5e2ba43328
         chore: replace all shorthand tags of mapstruct -> mapstructure (#3633) Christopher Angelo Phillips 2025-02-03 10:43:06 -05:00
  • 4dc86a06c7
         chore(deps): update tools to latest versions (#3637) anchore-actions-token-generator[bot] 2025-02-03 09:44:56 -05:00
  • 7a69f6fdd7
         chore(deps): update CPE dictionary index (#3638) anchore-actions-token-generator[bot] 2025-02-03 09:44:44 -05:00
  • 9a9195e5c4
         feat: syft 3435 - add file components to cyclonedx bom output when file metadata is available (#3539) Christopher Angelo Phillips 2025-01-31 15:09:15 -05:00
  • a16e374a50
         chore(deps): update tools to latest versions (#3635) anchore-actions-token-generator[bot] 2025-01-31 11:14:59 -05:00
  • bdf680426d
         chore(deps): bump github/codeql-action from 3.28.7 to 3.28.8 (#3634) dependabot[bot] 2025-01-30 11:07:01 -05:00
  • d5e52bc2ce
         docs: update descriptions with correct options (#3630) Christopher Angelo Phillips 2025-01-29 10:47:04 -05:00
  • b89304d9b5
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.8 to 0.5.9 (#3627) dependabot[bot] 2025-01-29 09:58:51 -05:00
  • 3fc0e0485e
         chore(deps): bump github/codeql-action from 3.28.6 to 3.28.7 (#3628) dependabot[bot] 2025-01-29 09:58:32 -05:00
  • f7e767fc25
         feat: update licenses to including license content when SPDX expressions are unable to be determined (#3366) HeyeOpenSource 2025-01-28 19:05:27 +01:00
  • 58dc43de86
         fix: update namespace value for OpenSUSE distros (#3615) Martin Prpič 2025-01-28 12:56:55 -05:00
  • cc80e6106c
         chore(deps): bump github/codeql-action from 3.28.5 to 3.28.6 (#3625) dependabot[bot] 2025-01-28 12:13:18 -05:00
  • 5b009dbc7b
         chore(deps): update CPE dictionary index (#3620) anchore-actions-token-generator[bot] 2025-01-27 10:56:58 -05:00
  • 1a2a7cb59f
         chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.8.0 to 4.8.1 (#3621) dependabot[bot] 2025-01-27 09:57:04 -05:00
  • 27b8296630
         chore(deps): bump github/codeql-action from 3.28.4 to 3.28.5 (#3622) dependabot[bot] 2025-01-27 09:56:53 -05:00
  • 5ea952e5b2
         chore(deps): bump github/codeql-action from 3.28.3 to 3.28.4 (#3618) dependabot[bot] 2025-01-24 09:49:54 -05:00
  • a5a2b83fe1
         chore(deps): bump anchore/sbom-action from 0.17.9 to 0.18.0 (#3619) dependabot[bot] 2025-01-24 09:49:46 -05:00
  • 1c4743fca2
         chore(deps): update tools to latest versions (#3607) anchore-actions-token-generator[bot] 2025-01-23 11:28:20 -05:00
  • a6d7ff69a9
         chore(deps): bump github/codeql-action from 3.28.2 to 3.28.3 (#3608) dependabot[bot] 2025-01-23 11:27:47 -05:00
  • ad83f7c2cb
         chore(deps): bump github.com/go-git/go-git/v5 from 5.13.1 to 5.13.2 (#3609) dependabot[bot] 2025-01-23 11:27:01 -05:00
  • dffa52f950
         chore(deps): bump github.com/docker/docker (#3610) dependabot[bot] 2025-01-23 11:26:46 -05:00
  • 2abfa4eb36
         chore(deps): bump actions/setup-go in /.github/actions/bootstrap (#3612) dependabot[bot] 2025-01-23 11:26:05 -05:00
  • 1814a0aff5
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#3613) dependabot[bot] 2025-01-23 11:25:47 -05:00
  • b7f78a6a8b
         chore(ci): fix composite GitHub action path in dependabot config (#3611) Weston Steimel 2025-01-23 14:33:07 +00:00
  • 222e6548a9
         chore(deps): update tools to latest versions (#3602) v1.19.0 anchore-actions-token-generator[bot] 2025-01-22 14:44:54 -05:00
  • 0969453dbe
         chore(deps): bump github/codeql-action from 3.28.1 to 3.28.2 (#3604) dependabot[bot] 2025-01-22 10:47:57 -05:00
  • a5ef8167a1
         chore(deps): bump github.com/hashicorp/hcl/v2 from 2.22.0 to 2.23.0 (#3605) dependabot[bot] 2025-01-22 10:47:47 -05:00
  • 07f0658843
         chore(deps): bump github.com/aquasecurity/go-pep440-version (#3606) dependabot[bot] 2025-01-22 10:47:38 -05:00