syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
APACHE-2.0 License
Bot releases are hidden (Show)
Published by anchoreops over 2 years ago
Changelog
v0.46.1 (2022-05-16)
Bug Fixes
- Fix
Cyclone-DXoutput so only valid enum values are produced. Add integration tests to cover validation. [PR #967] [Christopher Phillips]
Published by anchoreops over 2 years ago
Changelog
v0.46.0 (2022-05-12)
Added Features
- Support format SBOM conversion [Issue #563]
- .NET Core-Support [Issue #726]
- Support attaching attestation right after generate it [Issue #990]
Bug Fixes
- Fix
github-jsonoutput option [PR #967] [StevenMaude] - Clearing Go main module version makes creating a CycloneDX 1.3 JSON document difficult [Issue #959]
- WARN golang cataloger: failed to read buildinfo [Issue #978]
Published by anchoreops over 2 years ago
Changelog
v0.45.1 (2022-05-03)
Bug Fixes
- reduce noise of log output at the info level [PR #976] [luhring]
- fix Illegal character encoding in CylconeDX-XML. [Issue #918]
- update golang crypto library dependency [Issue #972]
Published by anchoreops over 2 years ago
Published by anchoreops over 2 years ago
Changelog
v0.44.1 (2022-04-15)
Bug Fixes
- Invalid SPDXID (contains an underscore) [Issue #949]
- Invalid SPDXID (contains a slash) [Issue #952]
Published by anchoreops over 2 years ago
Changelog
v0.44.0 (2022-04-12)
Added Features
- Detect Java Namespaces/Group IDs by hash [Issue #887]
- Add additional Vendors for Springframework [PR #947 ]
Published by anchoreops over 2 years ago
Changelog
v0.43.2 (2022-04-06)
Bug Fixes
- Pulls from private DockerHub repo fails with 0.43.0 when working with 0.42.4 [Issue #936]
Published by anchoreops over 2 years ago
Changelog
v0.43.0 (2022-03-31)
Added Features
- Add dart support [PR #919] [ericlarssen-wf]
- Add list of supported package managers or catalogers to the README for simpler reference [Issue #913]
Bug Fixes
- Pull from DockerHub fails for public images when using SSO [PR #928] [wagoodman]
- Panic in DirectoryResolver indexPath due to null info parameter [Issue #872]
Published by anchoreops over 2 years ago
Changelog
v0.42.0 (2022-03-17)
Added Features
- Capture additional go 1.18 based binary information [Issue #718] [jonasagx]
Bug Fixes
Published by anchoreops over 2 years ago
Published by anchoreops over 2 years ago
Changelog
v0.41.4 (2022-03-11)
Added Features
- Support Yarn v3 [PR #868] [cipher-ardvark]
- Update to CycloneDX 1.4 [Issue #744] [samj1912]
Bug Fixes
Published by anchoreops over 2 years ago
Changelog
v0.40.0 (2022-03-02)
Added Features
- Add support for multiple CPEs in CycloneDX [Issue #818]
- Use syft property namespace in CycloneDX [Issue #842]
Bug Fixes
- Wrong digest used for in-toto statement subject when using Docker daemon source [Issue #855]