oss/syft
2
0
Fork 0
mirror of https://github.com/anchore/syft.git synced 2026-05-24 22:25:23 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 869908ece1
         chore(deps): bump modernc.org/sqlite from 1.34.5 to 1.35.0 (#3664) dependabot[bot] 2025-02-14 08:40:30 -05:00
  • 91b7592a2f
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.5 to 6.6.6 (#3653) dependabot[bot] 2025-02-13 10:08:20 -05:00
  • dce99543b2
         feat: update to go 1.24.x (#3660) Weston Steimel 2025-02-13 15:08:10 +00:00
  • a17fe480a0
         chore: update runners to ubuntu-24.04 (#3657) Keith Zantow 2025-02-11 16:34:12 -05:00
  • d6fe2b08cb
         chore(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 (#3655) dependabot[bot] 2025-02-11 13:15:50 -05:00
  • 51780fba16
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.9 to 0.5.10 (#3650) dependabot[bot] 2025-02-10 10:19:22 -05:00
  • 46f9bf4e4d
         chore(deps): update CPE dictionary index (#3649) anchore-actions-token-generator[bot] 2025-02-09 22:45:31 -05:00
  • 2328b20082
         fix: reduce warn levels to debug for non-actionable errors (#3645) Keith Zantow 2025-02-07 13:22:55 -05:00
  • 52d543f3c1
         chore(deps): bump github/codeql-action from 3.28.8 to 3.28.9 (#3648) dependabot[bot] 2025-02-07 11:18:56 -05:00
  • e584c9f416
         feat: 3626 add option enable license content; disable by default (#3631) Christopher Angelo Phillips 2025-02-05 15:41:03 -05:00
  • 7bab6e9851
         chore(deps): update tools to latest versions (#3641) anchore-actions-token-generator[bot] 2025-02-05 14:23:36 -05:00
  • 10ba5aa9e6
         chore(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 (#3642) dependabot[bot] 2025-02-05 14:22:21 -05:00
  • 79ea956f18
         chore(deps): bump golang.org/x/mod from 0.22.0 to 0.23.0 (#3644) dependabot[bot] 2025-02-05 14:22:02 -05:00
  • 684b6e3f98
         Add file catalogers to selection configuration (#3505) Alex Goodman 2025-02-03 14:10:17 -05:00
  • 5e2ba43328
         chore: replace all shorthand tags of mapstruct -> mapstructure (#3633) Christopher Angelo Phillips 2025-02-03 10:43:06 -05:00
  • 4dc86a06c7
         chore(deps): update tools to latest versions (#3637) anchore-actions-token-generator[bot] 2025-02-03 09:44:56 -05:00
  • 7a69f6fdd7
         chore(deps): update CPE dictionary index (#3638) anchore-actions-token-generator[bot] 2025-02-03 09:44:44 -05:00
  • 9a9195e5c4
         feat: syft 3435 - add file components to cyclonedx bom output when file metadata is available (#3539) Christopher Angelo Phillips 2025-01-31 15:09:15 -05:00
  • a16e374a50
         chore(deps): update tools to latest versions (#3635) anchore-actions-token-generator[bot] 2025-01-31 11:14:59 -05:00
  • bdf680426d
         chore(deps): bump github/codeql-action from 3.28.7 to 3.28.8 (#3634) dependabot[bot] 2025-01-30 11:07:01 -05:00
  • d5e52bc2ce
         docs: update descriptions with correct options (#3630) Christopher Angelo Phillips 2025-01-29 10:47:04 -05:00
  • b89304d9b5
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.8 to 0.5.9 (#3627) dependabot[bot] 2025-01-29 09:58:51 -05:00
  • 3fc0e0485e
         chore(deps): bump github/codeql-action from 3.28.6 to 3.28.7 (#3628) dependabot[bot] 2025-01-29 09:58:32 -05:00
  • f7e767fc25
         feat: update licenses to including license content when SPDX expressions are unable to be determined (#3366) HeyeOpenSource 2025-01-28 19:05:27 +01:00
  • 58dc43de86
         fix: update namespace value for OpenSUSE distros (#3615) Martin Prpič 2025-01-28 12:56:55 -05:00
  • cc80e6106c
         chore(deps): bump github/codeql-action from 3.28.5 to 3.28.6 (#3625) dependabot[bot] 2025-01-28 12:13:18 -05:00
  • 5b009dbc7b
         chore(deps): update CPE dictionary index (#3620) anchore-actions-token-generator[bot] 2025-01-27 10:56:58 -05:00
  • 1a2a7cb59f
         chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.8.0 to 4.8.1 (#3621) dependabot[bot] 2025-01-27 09:57:04 -05:00
  • 27b8296630
         chore(deps): bump github/codeql-action from 3.28.4 to 3.28.5 (#3622) dependabot[bot] 2025-01-27 09:56:53 -05:00
  • 5ea952e5b2
         chore(deps): bump github/codeql-action from 3.28.3 to 3.28.4 (#3618) dependabot[bot] 2025-01-24 09:49:54 -05:00
  • a5a2b83fe1
         chore(deps): bump anchore/sbom-action from 0.17.9 to 0.18.0 (#3619) dependabot[bot] 2025-01-24 09:49:46 -05:00
  • 1c4743fca2
         chore(deps): update tools to latest versions (#3607) anchore-actions-token-generator[bot] 2025-01-23 11:28:20 -05:00
  • a6d7ff69a9
         chore(deps): bump github/codeql-action from 3.28.2 to 3.28.3 (#3608) dependabot[bot] 2025-01-23 11:27:47 -05:00
  • ad83f7c2cb
         chore(deps): bump github.com/go-git/go-git/v5 from 5.13.1 to 5.13.2 (#3609) dependabot[bot] 2025-01-23 11:27:01 -05:00
  • dffa52f950
         chore(deps): bump github.com/docker/docker (#3610) dependabot[bot] 2025-01-23 11:26:46 -05:00
  • 2abfa4eb36
         chore(deps): bump actions/setup-go in /.github/actions/bootstrap (#3612) dependabot[bot] 2025-01-23 11:26:05 -05:00
  • 1814a0aff5
         chore(deps): bump actions/cache in /.github/actions/bootstrap (#3613) dependabot[bot] 2025-01-23 11:25:47 -05:00
  • b7f78a6a8b
         chore(ci): fix composite GitHub action path in dependabot config (#3611) Weston Steimel 2025-01-23 14:33:07 +00:00
  • 222e6548a9
         chore(deps): update tools to latest versions (#3602) v1.19.0 anchore-actions-token-generator[bot] 2025-01-22 14:44:54 -05:00
  • 0969453dbe
         chore(deps): bump github/codeql-action from 3.28.1 to 3.28.2 (#3604) dependabot[bot] 2025-01-22 10:47:57 -05:00
  • a5ef8167a1
         chore(deps): bump github.com/hashicorp/hcl/v2 from 2.22.0 to 2.23.0 (#3605) dependabot[bot] 2025-01-22 10:47:47 -05:00
  • 07f0658843
         chore(deps): bump github.com/aquasecurity/go-pep440-version (#3606) dependabot[bot] 2025-01-22 10:47:38 -05:00
  • 7f5dbf9872
         chore: bump stereoscope to v0.0.13 (#3601) Christopher Angelo Phillips 2025-01-21 15:50:42 -05:00
  • c10e904c28
         feat(cataloger): add a terraform provider cataloger (#3378) Thomas Gosteli 2025-01-21 20:44:54 +01:00
  • 1906c179d0
         chore(deps): update tools to latest versions (#3597) anchore-actions-token-generator[bot] 2025-01-21 11:44:27 -05:00
  • 4edfa4d138
         chore(deps): update CPE dictionary index (#3599) anchore-actions-token-generator[bot] 2025-01-21 11:43:59 -05:00
  • a6557d7cec
         chore(deps): bump actions/setup-go from 5.2.0 to 5.3.0 (#3600) dependabot[bot] 2025-01-21 11:41:53 -05:00
  • bd131d78f1 [wip] add elf note dependencies add-elf-note-dependencies Alex Goodman 2025-01-17 22:16:32 -05:00
  • 19a75fe504
         feat(golang): add license parsing from vendor dirs (#3522) Dominik Schmidt 2025-01-18 02:25:05 +01:00
  • 8198a706d6
         chore: bump packageurl-go with new parsing rules (#3596) Christopher Angelo Phillips 2025-01-17 16:20:14 -05:00
  • 254a915592
         chore(deps): bump marocchino/sticky-pull-request-comment (#3595) dependabot[bot] 2025-01-17 13:57:21 -05:00
  • 512319337f
         feat: add cataloger for NuGet packages (#3484) Bert Coppens 2025-01-16 20:57:17 +01:00
  • 6b2d73d4b7
         allow disabling all package catalogers (#3468) GGMU 2025-01-16 20:03:54 +02:00
  • c359c76934
         chore(deps): bump github.com/google/go-containerregistry (#3592) dependabot[bot] 2025-01-16 12:19:26 -05:00
  • 06a22dd4dc
         chore(deps): bump modernc.org/sqlite from 1.34.4 to 1.34.5 (#3593) dependabot[bot] 2025-01-16 12:19:19 -05:00
  • 63a026eb8f
         chore(deps): update tools to latest versions (#3582) anchore-actions-token-generator[bot] 2025-01-15 17:13:17 -05:00
  • 436b36916d
         chore: update README.md's link to Nixpkgs (#3578) Alex Mason 2025-01-16 04:56:11 +11:00
  • 453b187ca1
         chore(deps): bump github.com/sanity-io/litter from 1.5.5 to 1.5.6 (#3579) dependabot[bot] 2025-01-15 12:42:13 -05:00
  • 86ad570f8d
         chore(deps): bump github.com/spf13/afero from 1.11.0 to 1.12.0 (#3580) dependabot[bot] 2025-01-15 12:41:59 -05:00
  • 2f08d60ba3
         chore(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 (#3581) dependabot[bot] 2025-01-15 12:41:07 -05:00
  • da62caee3d
         chore(deps): update CPE dictionary index (#3583) anchore-actions-token-generator[bot] 2025-01-15 12:11:46 -05:00
  • 2220d708a5
         chore(deps): bump github/codeql-action from 3.28.0 to 3.28.1 (#3584) dependabot[bot] 2025-01-15 12:05:19 -05:00
  • 1a9af0db96
         chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.1 to 5.6.2 (#3585) dependabot[bot] 2025-01-14 10:57:33 -05:00
  • b79f9330fc
         chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.7.1 to 4.8.0 (#3586) dependabot[bot] 2025-01-14 10:55:48 -05:00
  • fbfad5ef35
         chore(deps): bump github.com/docker/docker (#3587) dependabot[bot] 2025-01-14 10:55:38 -05:00
  • b4e7b64d5c
         chore(deps): update anchore dependencies (#3571) anchore-actions-token-generator[bot] 2025-01-08 17:51:48 +00:00
  • b3fc7b3b0a
         chore(deps): update tools to latest versions (#3567) anchore-actions-token-generator[bot] 2025-01-07 11:30:26 -05:00
  • df36303df0
         chore(deps): bump golang.org/x/net from 0.33.0 to 0.34.0 (#3568) dependabot[bot] 2025-01-07 11:29:58 -05:00
  • a2a56dd3e9
         fix: golang remote license search not executing when error reading local mod dir (#3549) Keith Zantow 2025-01-06 11:47:55 -05:00
  • 2a8c8ac832
         chore(deps): update tools to latest versions (#3564) anchore-actions-token-generator[bot] 2025-01-06 11:15:36 -05:00
  • dc01c5d052
         chore(deps): update CPE dictionary index (#3565) anchore-actions-token-generator[bot] 2025-01-06 11:15:13 -05:00
  • a95244aace
         chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.7 to 0.5.8 (#3548) dependabot[bot] 2025-01-03 15:23:57 +00:00
  • 5c429ae834
         chore(deps): update tools to latest versions (#3560) anchore-actions-token-generator[bot] 2025-01-03 10:12:02 -05:00
  • 463a8f3661
         chore(deps): bump github.com/go-git/go-git/v5 from 5.13.0 to 5.13.1 (#3561) dependabot[bot] 2025-01-03 10:11:30 -05:00
  • cbce129bb9
         Use reader when scanning for package versions over reading entire binary into memory (#3558) Alex Goodman 2025-01-02 17:12:37 -05:00
  • 470c2ff04c
         chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.0 to 5.6.1 (#3551) dependabot[bot] 2025-01-02 21:52:01 +00:00
  • 1f4a48c3c1
         chore(deps): update tools to latest versions (#3556) anchore-actions-token-generator[bot] 2025-01-02 16:18:47 -05:00
  • f9ffe7252e
         test: removes latest license list test (#3559) Christopher Angelo Phillips 2025-01-02 15:56:44 -05:00
  • 286182a66f
         chore(deps): bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 (#3547) dependabot[bot] 2025-01-02 12:26:49 -05:00
  • 5c47568362
         chore(deps): update CPE dictionary index (#3550) anchore-actions-token-generator[bot] 2025-01-02 09:25:13 -05:00
  • 52d904363c
         chore(deps): bump github.com/go-git/go-git/v5 from 5.12.0 to 5.13.0 (#3552) dependabot[bot] 2025-01-02 09:24:40 -05:00
  • 25792160fb
         chore(deps): update tools to latest versions (#3543) anchore-actions-token-generator[bot] 2024-12-23 11:32:17 -05:00
  • 453c429c5c
         chore(deps): update CPE dictionary index (#3544) anchore-actions-token-generator[bot] 2024-12-23 09:37:58 -05:00
  • 13e32d3a49
         chore(deps): bump modernc.org/sqlite from 1.34.3 to 1.34.4 (#3545) dependabot[bot] 2024-12-23 09:36:57 -05:00
  • 03dbd38d88
         chore(deps): bump github/codeql-action from 3.27.9 to 3.28.0 (#3546) dependabot[bot] 2024-12-23 09:36:46 -05:00
  • a185acdc43
         chore(deps): bump golang.org/x/net from 0.32.0 to 0.33.0 (#3541) dependabot[bot] 2024-12-19 11:15:20 -05:00
  • 4822950b06
         chore(deps): bump modernc.org/sqlite from 1.34.2 to 1.34.3 (#3542) dependabot[bot] 2024-12-19 11:15:10 -05:00
  • 2c10b602f0
         chore(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0 (#3537) dependabot[bot] 2024-12-18 13:34:38 -05:00
  • 5120651285
         chore(deps): bump github.com/docker/docker (#3538) dependabot[bot] 2024-12-18 13:34:24 -05:00
  • 397eb9c10a
         chore(deps): update CPE dictionary index (#3526) anchore-actions-token-generator[bot] 2024-12-16 10:37:35 -05:00
  • adfb6656fd
         chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.1 to 0.9.2 (#3530) dependabot[bot] 2024-12-16 10:37:19 -05:00
  • 952837dd25
         chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.4 to 6.6.5 (#3531) dependabot[bot] 2024-12-16 09:29:51 -05:00
  • 4ac8439115
         chore(deps): bump anchore/sbom-action from 0.17.8 to 0.17.9 (#3532) dependabot[bot] 2024-12-16 09:29:08 -05:00
  • 5e16e5031a
         chore(deps): update anchore dependencies (#3525) v1.18.1 anchore-actions-token-generator[bot] 2024-12-13 13:30:11 -05:00
  • 36016a0c5f
         chore(deps): bump github/codeql-action from 3.27.7 to 3.27.9 (#3524) dependabot[bot] 2024-12-13 10:38:58 -05:00
  • 8dcb495312
         chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#3523) dependabot[bot] 2024-12-12 15:43:40 -05:00
  • 02f9350fa5
         chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (#3519) dependabot[bot] 2024-12-11 13:14:55 -05:00
  • 20fb9cc00c
         chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3518) dependabot[bot] 2024-12-11 13:14:25 -05:00
  • 6deb41c458
         chore: make fixes field in PR template match auto-close regex (#3520) William Murphy 2024-12-11 12:37:55 -05:00
  • 445142886e
         fix: stop omitting redundantly parenthesized licenses in CDX formatter (#3517) William Murphy 2024-12-11 10:06:08 -05:00