Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
BSD 2-Clause "Simplified" License
967
stars
188
forks
source link
Modify apk workaround commit now that purl spec has been updated #1217
rnjudge
commented
1 year ago
Description https://github.com/tern-tools/tern/commit/dd8a0620eb32504cc7ba22db418ffdbb0186ab8a was added as a workaround when
apkwas not a defined type for PURL yet. Now thatapkhas been added to the purl spec, I think we can adjust this commit to properly set the purl typeapkinstead ofalpine.@ThiefaineM - is this consistent with OSS Index?