Closed almaz045 closed 6 months ago
For 1, can you check the .vdr.json file. It must have everything that is printed under the vulnerabilities attribute. For 2, can you attach a sample so we can guide towards sending a PR?
For 2: trivy-sbom.json - this is sbom trivy that give keyerror: 'purl' bom-source-trivy.json - this is sbom trivy that give keyerror: 'version'
depscan --bom bom-source-trivy.json
@almaz045 Thank you. Would you like to become a contributor? To resolve KeyError in python we have to replace bracket based lookup ["purl"] with .get("purl"). Wrap in an if condition to handle None
Yes, of course. Should I do same thing for KeyError with 'version'? Or after fixing purl will the problem with key error 'version' also disappear?
@almaz045 With both, please. like .get("purl", "") and .get("version", ""). Thank you!
@prabhu https://github.com/owasp-dep-scan/dep-scan/pull/261 PR :)
Request Description
Additional Information
No response