Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
Some purl types require that package names always be lowercased. This
commit fixes certain use cases for a handful of package managers where
the purl package names were being improperly reported using uppercase
characters.
Some purl types require that package names always be lowercased. This commit fixes certain use cases for a handful of package managers where the purl package names were being improperly reported using uppercase characters.
Resolves: #1140
Signed-off-by: Thiéfaine Mercier thiefaine.mercier@avisto.com Signed-off-by: Rose Judge rjudge@vmware.com