scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
3.6k
stars
412
forks
source link
purl generated for few components as part cyclonedx BOM is incorrect #410
Closed
rashmimehta300 closed 1 year ago
Retire.js version: (
retire --version
): 4.3.1node version: (
node --version
): 18.13.0Description: purl generated for angularjs and jquery datatables are incorrect pkg:npm/angularjs@1.6.5 pkg:npm/jquery.datatables@1.13.4![image](https://github.com/RetireJS/retire.js/assets/129749381/9c15200f-5c22-4ff8-bfda-211ef676fbf0)
Expected behaviour: purl generated should be pkg:npm/angular@1.6.5 pkg:npm/datatables@1.13.4
If this is a false positive or false negative: