-
Do some research into this. Obviously as the PURLs are still printed on labels we will have to keep them, but we can make them redirect to another service (which will then point to the resolver).
H…
-
**What would you like to be added**:
I think grype can also cover EOL packages.
information is handled here - https://endoflife.date/
this website has an API which we can get the information, both …
-
As pointed out here: https://github.com/biopragmatics/bioregistry/issues/527
The OLS PURLs for COs use a http + www scheme e.g. https://www.ebi.ac.uk/ols/ontologies/co_325/terms?iri=http%3A%2F%2Fww…
-
The config still points to sourceforge versions.
I'm pretty sure I have the releases if we want to make them work again. I think that would be good if only for the ability to track the history.
-
DOSDP json schema docs need a simple, persistent URL that implementers can use for validation and that can be used in JSON-schema import statements once core and OBO are split.
@cmungall Any sugges…
-
Is it intentional that the OCI purls have no `repository_url`?
```
$ crane blob cgr.dev/chainguard/static@sha256:0f1cad9a9b51c0eb49d0f91f72640541e4b9a976510e73a807fd6bb7bc36aa33 | jq .packages[0].…
-
We've added a few [OSV ecosystems](https://github.com/google/osv.dev/blob/260a49adcac4d7d06d75b2f53c0915225e15518e/osv/ecosystems/_ecosystems.py#L33) without adding [PURL conversions](https://github.c…
-
If we have 3 purls, pkg:npm/foo/bar@1.2 , pkg:npm/foo/bar@1.2?baz=jon, pkg:npm/foo/bar@1.2?baz=doe and you ask for plain purls only with this input pkg:npm/foo/bar@1.2?baz=jondoe, what should I send …
-
For [`CVE-2021-44228`](https://nvd.nist.gov/vuln/detail/CVE-2021-44228), the producer adds too many non-Maven PURLs that might not be affected by the vulnerability.
-
I want Persul to support production workloads. This issue defines what that actually means in terms of numbers.
## Numbers
### PURL creation
#### Parameters
A rough estimation which I have…