Trivy analyzer can't detect SLES OS #4051
Description
Current Behavior
Uploading sboms generated with trivy 0.53 for SLES 12.5 and 15.x can't be scanned by the trivy analyzer, because the OS is not detected by trivy, trivy 0.53 server log:
INFO Detected OS family="none" version=""
WARN Unsupported os family="none"
INFO Number of language-specific files num=0
dtrack-logs-2024-08-08 17_28_28.txt
Steps to Reproduce
- upload a trivy generated sbom with SLES 12.5 or 15.x OS packages: trivy.json
- have dtrack configured to analyze with trivy
- no OS dectected by trivy, no vulns in dtrack: 403cb7b7-81b6-4ffd-bbbb-dd910ea39249-withVulnerabilities.cdx.json
Expected Behavior
OS is set correctly by dtrack and discovered by trivy, like it does for example for redhat, and vulns are reported back to dtrack
Dependency-Track Version
4.11.5
Dependency-Track Distribution
Container Image
Database Server
H2
Database Server Version
No response
Browser
N/A
Checklist
- I have read and understand the contributing guidelines
- I have checked the existing issues for whether this defect was already reported