Inconsistent naming of matchDetails.searchedBy.package field

[andre-aktivconsultancy]

What happened: I noticed that the 'package' field in matchDetails.searchedBy object sometimes starts with a capital and sometimes not.

What you expected to happen: Consistent naming.

How to reproduce it (as minimally and precisely as possible):

grype eclipse-mosquitto:2.0.18 -o json | jq '.matches[].matchDetails[] | {matcher, package: .searchedBy.package, Package: .searchedBy.Package }'

The output will sometimes show package and sometimes Package.

{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}

Anything else we need to know?:

Environment:

• Output of grype version:

  Application:         grype
  Version:             0.77.3
  BuildDate:           2024-05-06T19:57:22Z
  GitCommit:           88b6139c69476a7c0d4123375b42d136ecaec767
  GitDescription:      v0.77.3
  Platform:            linux/amd64
  GoVersion:           go1.21.9
  Compiler:            gc
  Syft Version:        v1.3.0
  Supported DB Schema: 5

• OS (e.g: cat /etc/os-release or similar):

  PRETTY_NAME="Ubuntu 22.04.4 LTS"
  NAME="Ubuntu"
  VERSION_ID="22.04"
  VERSION="22.04.4 LTS (Jammy Jellyfish)"
  VERSION_CODENAME=jammy
  ID=ubuntu
  ID_LIKE=debian
  HOME_URL="https://www.ubuntu.com/"
  SUPPORT_URL="https://help.ubuntu.com/"
  BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
  PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
  UBUNTU_CODENAME=jammy

[tgerla]

Hi @andre-aktivconsultancy, thank you for the report! We have reproduced this and we'll get it into the backlog for a fix.