Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
This commit adds package architecture information to Tern's data model by collecting it during analysis.
Many purl types[1] include an architecture qualifier key. Having this attribute available in Tern's data model will making creating and reporting purls easier and more accurate.
This commit adds package architecture information to Tern's data model by collecting it during analysis.
Many purl types[1] include an architecture qualifier key. Having this attribute available in Tern's data model will making creating and reporting purls easier and more accurate.
[1]https://github.com/package-url/purl-spec/blob/master/PURL-TYPES.rst
Works towards #1206