Conan Lock 2.x requires fields support - Githubissues

anchore / syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

Apache License 2.0

6.03k stars 554 forks source link

Conan Lock 2.x requires fields support #2462

Open houdini91 opened 8 months ago

houdini91 commented 8 months ago

What would you like to be added: In conan 2.x i see there is a requries field listing the packages instead of the graph_lock.

For spec change details see https://github.com/conan-io/tribe/blob/main/design/034-new_lockfiles.md. and https://docs.conan.io/2/tutorial/versioning/lockfiles.html#tutorial-versioning-lockfiles.

Example of random conan.lock with this fields.

Link a suggestion PR https://github.com/anchore/syft/pull/2461.

tgerla commented 8 months ago

Hi @houdini91, thanks for the report and the pull request! We will take a look as soon as we can.