mirror of
https://github.com/anchore/syft.git
synced 2025-11-17 16:33:21 +01:00
93d00dc340
* update spdx22 Document model to include relationships field Signed-off-by: Christopher Angelo Phillips <christopher.phillips@anchore.com> * update document and relationship to match current JSON spec https://github.com/spdx/spdx-spec/blob/development/v2.2.1/schemas/spdx-schema.json https://github.com/spdx/spdx-spec/pull/528 https://github.com/spdx/spdx-spec/pull/528#issuecomment-904180177 Signed-off-by: Christopher Angelo Phillips <christopher.phillips@anchore.com> * update File struct based on SPDX schema Required fields: [ "SPDXID", "fileName", "copyrightText", "licenseConcluded" ] Signed-off-by: Christopher Angelo Phillips <christopher.phillips@anchore.com>
87 lines
1.6 KiB
Plaintext
87 lines
1.6 KiB
Plaintext
{
|
|
"artifacts": [
|
|
{
|
|
"id": "package-1-id",
|
|
"name": "package-1",
|
|
"version": "1.0.1",
|
|
"type": "python",
|
|
"foundBy": "the-cataloger-1",
|
|
"locations": [
|
|
{
|
|
"path": "/some/path/pkg1"
|
|
}
|
|
],
|
|
"licenses": [
|
|
"MIT"
|
|
],
|
|
"language": "python",
|
|
"cpes": [
|
|
"cpe:2.3:*:some:package:2:*:*:*:*:*:*:*"
|
|
],
|
|
"purl": "a-purl-2",
|
|
"metadataType": "PythonPackageMetadata",
|
|
"metadata": {
|
|
"name": "package-1",
|
|
"version": "1.0.1",
|
|
"license": "",
|
|
"author": "",
|
|
"authorEmail": "",
|
|
"platform": "",
|
|
"files": [
|
|
{
|
|
"path": "/some/path/pkg1/depedencies/foo"
|
|
}
|
|
],
|
|
"sitePackagesRootPath": ""
|
|
}
|
|
},
|
|
{
|
|
"id": "package-2-id",
|
|
"name": "package-2",
|
|
"version": "2.0.1",
|
|
"type": "deb",
|
|
"foundBy": "the-cataloger-2",
|
|
"locations": [
|
|
{
|
|
"path": "/some/path/pkg1"
|
|
}
|
|
],
|
|
"licenses": [],
|
|
"language": "",
|
|
"cpes": [
|
|
"cpe:2.3:*:some:package:2:*:*:*:*:*:*:*"
|
|
],
|
|
"purl": "a-purl-2",
|
|
"metadataType": "DpkgMetadata",
|
|
"metadata": {
|
|
"package": "package-2",
|
|
"source": "",
|
|
"version": "2.0.1",
|
|
"sourceVersion": "",
|
|
"architecture": "",
|
|
"maintainer": "",
|
|
"installedSize": 0,
|
|
"files": null
|
|
}
|
|
}
|
|
],
|
|
"artifactRelationships": [],
|
|
"source": {
|
|
"type": "directory",
|
|
"target": "/some/path"
|
|
},
|
|
"distro": {
|
|
"name": "debian",
|
|
"version": "1.2.3",
|
|
"idLike": "like!"
|
|
},
|
|
"descriptor": {
|
|
"name": "syft",
|
|
"version": "[not provided]"
|
|
},
|
|
"schema": {
|
|
"version": "1.1.0",
|
|
"url": "https://raw.githubusercontent.com/anchore/syft/main/schema/json/schema-1.1.0.json"
|
|
}
|
|
}
|