Comparing changes

* migrate pkg.ID and pkg.Relationship to artifact package Signed-off-by: Alex Goodman <[email protected]> * return relationships from tasks Signed-off-by: Alex Goodman <[email protected]> * fix more tests Signed-off-by: Alex Goodman <[email protected]> * add artifact.Identifiable by Identity() method Signed-off-by: Alex Goodman <[email protected]> * fix linting Signed-off-by: Alex Goodman <[email protected]> * remove catalog ID assignment Signed-off-by: Alex Goodman <[email protected]> * adjust spdx helpers to use copy of packages Signed-off-by: Alex Goodman <[email protected]> * stabilize package ID relative to encode-decode format cycles Signed-off-by: Alex Goodman <[email protected]> * rename Identity() to ID() Signed-off-by: Alex Goodman <[email protected]> * use zero value for nils in ID generation Signed-off-by: Alex Goodman <[email protected]> * enable source.Location to be identifiable Signed-off-by: Alex Goodman <[email protected]> * hoist up package relationship discovery to analysis stage Signed-off-by: Alex Goodman <[email protected]> * update ownership-by-file-overlap relationship description Signed-off-by: Alex Goodman <[email protected]> * add test reminders to put new relationships under test Signed-off-by: Alex Goodman <[email protected]> * adjust PHP composer.lock parser function to return relationships Signed-off-by: Alex Goodman <[email protected]>

Signed-off-by: Alex Goodman <[email protected]>

* split source.Location and create source.Coordinates for minimal path addressing Signed-off-by: Alex Goodman <[email protected]> * move coordinates into separate file Signed-off-by: Alex Goodman <[email protected]> * Update syft/source/coordinates.go Co-authored-by: Dan Luhring <[email protected]>

* add first-level archive processing when input is a file Signed-off-by: Alex Goodman <[email protected]> * add license exception for github.com/xi2/xz Signed-off-by: Alex Goodman <[email protected]> * always return cleanup function Signed-off-by: Alex Goodman <[email protected]> * change source.NewFromFile log entry to warn Signed-off-by: Alex Goodman <[email protected]> * ensure file source always has cleanup function Signed-off-by: Alex Goodman <[email protected]> * ensure we are always preferring the unarchive cleanup function for source Signed-off-by: Alex Goodman <[email protected]>

Signed-off-by: Christopher Angelo Phillips <[email protected]>

* update concurrency primitives for relationships in command layer Signed-off-by: Christopher Angelo Phillips <[email protected]>

Signed-off-by: Dan Luhring <[email protected]>

Signed-off-by: Alex Goodman <[email protected]>

* remove power-user document shape Signed-off-by: Alex Goodman <[email protected]> * add power-user specific fields to syft-json format Signed-off-by: Alex Goodman <[email protected]> * port remaining spdx-json relationships to sbom model Signed-off-by: Alex Goodman <[email protected]> * add coordinate set Signed-off-by: Alex Goodman <[email protected]> * add SBOM file path helper Signed-off-by: Alex Goodman <[email protected]> * use internal mimetype helper in go binary cataloger Signed-off-by: Alex Goodman <[email protected]> * add new package-of relationship Signed-off-by: Alex Goodman <[email protected]> * update json schema to v2 Signed-off-by: Alex Goodman <[email protected]> * replace power-user presenter with syft-json format Signed-off-by: Alex Goodman <[email protected]> * fix tests and linting Signed-off-by: Alex Goodman <[email protected]> * remove "package-of" relationship (in favor of "contains") Signed-off-by: Alex Goodman <[email protected]> * add tests for spdx22json format encoding enhancements Signed-off-by: Alex Goodman <[email protected]> * update TODO and log entries Signed-off-by: Alex Goodman <[email protected]> * introduce sbom.Descriptor Signed-off-by: Alex Goodman <[email protected]>

Signed-off-by: Alex Goodman <[email protected]>

* Adds installed.json functionality and tests Signed-off-by: Blaize Kaye <[email protected]> * Adds php-installed-cataloger Signed-off-by: Blaize Kaye <[email protected]> * Changes fallback logic Signed-off-by: Blaize Kaye <[email protected]> * Adds image tests for installed.json composer packages Signed-off-by: Blaize Kaye <[email protected]> * tweak PHP cataloger names Signed-off-by: Alex Goodman <[email protected]> * unexport PHP types and fix CLI tests Signed-off-by: Alex Goodman <[email protected]> * rename PHP cataloger file Signed-off-by: Alex Goodman <[email protected]> Co-authored-by: Alex Goodman <[email protected]>

…ot path (#644) Signed-off-by: Alex Goodman <[email protected]>

Signed-off-by: Dan Luhring <[email protected]>

Signed-off-by: Alex Goodman <[email protected]>

* fix spdx namespace and add scheme range assertions Signed-off-by: Alex Goodman <[email protected]> * validate SPDX document name from source metadata Signed-off-by: Alex Goodman <[email protected]> * comment why namespace tests only check prefix Signed-off-by: Alex Goodman <[email protected]>

Signed-off-by: Alex Goodman <[email protected]>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Comparing changes

Open a pull request

Commits on Nov 16, 2021

Commits on Nov 18, 2021

Commits on Nov 19, 2021

Commits on Nov 20, 2021

Commits on Nov 22, 2021

Commits on Nov 23, 2021

Commits on Nov 30, 2021

Commits on Dec 1, 2021

Commits on Dec 2, 2021

Commits on Dec 3, 2021

This comparison is taking too long to generate.

Uh oh!