[Python CBOM] All python cryptography usages not detected #1047

aryan-rajoria · 2024-05-06T15:22:33Z

Command Run get Python CBOM:
node /opt/cdxgen/bin/cdxgen.js -t python --include-crypto -o bom.json .

Output:

Expected Output to contain following references:
https://github.com/freedomofpress/securedrop/blob/3a50273be99c78c78ea169854b2264f1edef3dab/securedrop/secure_tempfile.py#L92
https://github.com/freedomofpress/securedrop/blob/3a50273be99c78c78ea169854b2264f1edef3dab/admin/securedrop_admin/__init__.py#L808
https://github.com/freedomofpress/securedrop/blob/3a50273be99c78c78ea169854b2264f1edef3dab/securedrop/models.py#L453
https://github.com/freedomofpress/securedrop/blob/3a50273be99c78c78ea169854b2264f1edef3dab/securedrop/two_factor.py#L33

Environment:
OS: 22.04.1-Ubuntu
node: v20.9.0
npm: 10.1.0
cdxgen: form master 246e995

The text was updated successfully, but these errors were encountered:

sumetpong · 2024-05-31T21:11:40Z

PyCryptodome
Cryptography, Fernet https://cryptography.io/en/latest/
PyNaCl
PyOpenSSL
Keyczar
M2Crypto
asn1crypto

any synergy with project https://github.com/advanced-security/cbom-action ?

aryan-rajoria changed the title ~~[Python CBOM] All python cryptography usages not be detected~~ [Python CBOM] All python cryptography usages not detected May 6, 2024

prabhu added the cbom label May 7, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Python CBOM] All python cryptography usages not detected #1047

[Python CBOM] All python cryptography usages not detected #1047

aryan-rajoria commented May 6, 2024

sumetpong commented May 31, 2024 •

edited

[Python CBOM] All python cryptography usages not detected #1047

[Python CBOM] All python cryptography usages not detected #1047

Comments

aryan-rajoria commented May 6, 2024

sumetpong commented May 31, 2024 • edited

sumetpong commented May 31, 2024 •

edited