issues
search
anchore
/
syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Apache License 2.0
5.71k
stars
524
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
chore(deps): bump github.com/spdx/tools-golang from 0.5.4 to 0.5.5
#2999
dependabot[bot]
closed
3 hours ago
1
feat: report unknowns in sbom
#2998
kzantow
opened
10 hours ago
0
Nix cataloger should use find by glob instead of iterating over all files
#2997
kzantow
opened
19 hours ago
0
Add detection of Erlang in Alpine linux
#2996
LaurentGoderre
closed
19 hours ago
1
chore(deps): bump github.com/charmbracelet/bubbletea from 0.26.5 to 0.26.6
#2995
dependabot[bot]
closed
23 hours ago
0
chore(deps): bump github.com/docker/docker from 26.1.4+incompatible to 27.0.1+incompatible
#2994
dependabot[bot]
closed
19 hours ago
0
No Supplier for each component within SBOM
#2993
merlin-uk
opened
1 day ago
1
chore(deps): update stereoscope to 753b5576fe42bc007b22108ad7911d1729957a46
#2992
anchore-actions-token-generator[bot]
closed
20 hours ago
0
chore(deps): update tools to latest versions
#2991
anchore-actions-token-generator[bot]
closed
20 hours ago
0
Use VirtualPath to build Dependencies section
#2990
merlin-uk
opened
1 day ago
1
"none" under file selection in configuration doesn't work as expected
#2989
tomersein
opened
1 day ago
1
chore(deps): bump github.com/go-test/deep from 1.1.0 to 1.1.1
#2988
dependabot[bot]
closed
2 days ago
0
linux-kernel-module cataloger doesn't extract version
#2987
tomersein
opened
2 days ago
0
chore(deps): update CPE dictionary index
#2986
anchore-actions-token-generator[bot]
closed
2 days ago
0
fix: handle errors reading go licenses
#2985
kzantow
closed
2 days ago
0
Syft tries to create the cache directory at a location that has no permission
#2984
Joerki
closed
2 days ago
3
docs: update cyclone-dx documentation
#2983
spiffcs
closed
5 days ago
0
chore(deps): bump github.com/charmbracelet/bubbletea from 0.26.4 to 0.26.5
#2982
dependabot[bot]
closed
5 days ago
0
CycloneDX group field not symmetrically handled by encoder/decoders
#2981
wagoodman
opened
5 days ago
0
Syft reports the wrong version of the package (F/P findings on Grype result)
#2980
Dentrax
opened
6 days ago
0
Fixed the detection of arangodb 3.12
#2979
LaurentGoderre
closed
6 days ago
0
Add 1.6 to supported cyclonedx spec versions.
#2978
ragaskar
closed
5 days ago
6
Add support for java "kar" files
#2977
fernandosci
opened
6 days ago
0
chore: enable dependabot to keep boostrap action updated
#2976
westonsteimel
closed
6 days ago
0
chore(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0
#2975
dependabot[bot]
closed
6 days ago
1
Add CycloneDX 1.6 Support
#2974
ashearin
closed
5 days ago
3
chore(deps): bump github.com/github/go-spdx/v2 from 2.2.0 to 2.3.1
#2973
dependabot[bot]
closed
1 week ago
0
chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1
#2972
dependabot[bot]
closed
1 week ago
0
chore(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2
#2971
dependabot[bot]
closed
1 week ago
0
Python libraries licenses are not gathered
#2970
templier2
opened
1 week ago
2
`License` field in Python package metadata could be name or full text
#2969
mmarseu
opened
1 week ago
2
Include repository_url information in PURLs for non-default repository packages
#2968
captn3m0
opened
1 week ago
0
Nondeterministic SBOM generation
#2967
luhring
opened
1 week ago
0
fix: make caching options more explicit
#2966
kzantow
closed
1 week ago
0
fix: fix parsing for complex toml types
#2965
spiffcs
closed
1 week ago
0
chore(deps): bump github/codeql-action from 3.25.9 to 3.25.10
#2964
dependabot[bot]
closed
1 week ago
0
feat: index known CPEs for wordpress plugins and themes
#2963
westonsteimel
closed
1 week ago
0
fix(golang): improve version extraction from ldflags for pingcap TiDB
#2962
westonsteimel
closed
1 week ago
0
chore(deps): update tools to latest versions
#2961
anchore-actions-token-generator[bot]
closed
1 week ago
0
Add (better) Sorting
#2960
C0D3-M4513R
closed
5 days ago
1
chore: use go to bootstrap downloading and running task
#2959
kzantow
opened
1 week ago
0
The ability to extract the contents of the license file (LICENSE.txt) itself
#2958
MArfanM
opened
1 week ago
3
chore(deps): bump github.com/docker/docker from 26.1.4+incompatible to 27.0.0+incompatible
#2957
dependabot[bot]
closed
1 week ago
2
chore(deps): bump github/codeql-action from 3.25.8 to 3.25.9
#2956
dependabot[bot]
closed
1 week ago
0
chore(deps): bump actions/checkout from 4.1.6 to 4.1.7
#2955
dependabot[bot]
closed
1 week ago
0
Issue scanning Poetry Project with Syft 1.6 and cataloger=python-package-cataloger
#2954
mymichu
closed
1 week ago
5
Show dependencies for Github Actions
#2953
yaabdala
opened
1 week ago
0
chore(deps): bump github.com/vbatts/go-mtree from 0.5.3 to 0.5.4
#2952
dependabot[bot]
closed
1 week ago
0
Add ability to use distributed ruleset
#2951
kzantow
opened
2 weeks ago
1
chore(deps): bump modernc.org/sqlite from 1.30.0 to 1.30.1
#2950
dependabot[bot]
closed
2 weeks ago
0
Next