syft/syft at f4fc2d669a1b9c38292ce94e53d2ee352df5441e - syft - Sa' Rocí Solutions - Git Repositories

oss/syft

mirror of https://github.com/anchore/syft.git synced 2026-03-29 21:23:24 +02:00

History

Will Murphy 0a3f7bb06e

chore: call cleanup on tmpfile and replace some io.ReadAlls with streams (#4629 )

* fix(deb and snaps): prevent excess reads

Previously, Syft could allocate excess memory or tempfile space if there
were highly compressed objects in deb archives, or at paths where the
kernel changelog was expected by the snap cataloger. Use io.LimitReaders
for extracting parts of deb archives, and refactor the snap cataloger's
reading of the kernel changelog to use a streaming parsing, eliminating
the possibility of excess allocation.

Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>

* fix: always cleanup temp file from file source

Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>

* use streaming strategy for deb archives

Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>

---------

Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>

2026-02-17 17:32:35 -05:00

..

Remove mitchellh dependencies (#3748 )

2025-03-20 10:19:19 -04:00

Add experimental cataloger capabilities command (#4317 )

2025-12-22 19:34:10 +00:00

Fix: make failed CPE validation correctly return error (#2762 )

2024-10-03 16:42:57 -04:00

Add ability to scan snaps (as a source) (#3929 )

2025-06-25 16:53:35 -04:00

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

feat: update syft license construction to be able to look up by URL (#4132 )

2025-08-12 14:30:32 -04:00

feat: detect Debian version from /etc/debian_version (#4569 )

2026-01-23 17:52:21 -05:00

chore: call cleanup on tmpfile and replace some io.ReadAlls with streams (#4629 )

2026-02-17 17:32:35 -05:00

feat: report unknowns in sbom (#2998 )

2024-10-07 16:11:37 -04:00

chore: call cleanup on tmpfile and replace some io.ReadAlls with streams (#4629 )

2026-02-17 17:32:35 -05:00

migrate json schema generation (#4270 )

2025-10-10 14:16:28 +00:00

configuration_audit_trail_test.go

Replace core SBOM-creation API with builder pattern (#1383 )

2024-01-12 17:39:13 -05:00

configuration_audit_trail.go

feat: 3626 add option enable license content; disable by default (#3631 )

2025-02-05 20:41:03 +00:00

create_sbom_config_test.go

feat: RHEL EUS detection (#4023 )

2025-07-07 14:11:20 +00:00

create_sbom_config.go

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

create_sbom.go

Add ability to scan snaps (as a source) (#3929 )

2025-06-25 16:53:35 -04:00

get_source_config_test.go

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

get_source_config.go

feat: add --from flag, refactor source providers (#2610 )

2024-02-27 16:44:37 -05:00

get_source_test.go

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

get_source.go

feat: Add support for scanning GGUF models from OCI registries (#4335 )

2026-02-09 16:05:52 -05:00

lib_test.go

Replace core SBOM-creation API with builder pattern (#1383 )

2024-01-12 17:39:13 -05:00

lib.go

Replace core SBOM-creation API with builder pattern (#1383 )

2024-01-12 17:39:13 -05:00