Skip to content

Commit

Permalink
chore(deps): update Syft to v1.4.1 (#465)
Browse files Browse the repository at this point in the history
  • Loading branch information
@anchore-actions-token-generator
anchore-actions-token-generator[bot] committed May 20, 2024
1 parent 610bea4 commit e8d2a69
Show file tree
Hide file tree
Showing 5 changed files with 62 additions and 16 deletions.
2 changes: 1 addition & 1 deletion dist/attachReleaseAssets/index.js
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion dist/downloadSyft/index.js
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion dist/runSyftAction/index.js
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion src/SyftVersion.ts
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
export const VERSION = "v1.3.0";
export const VERSION = "v1.4.1";
70 changes: 58 additions & 12 deletions tests/integration/__snapshots__/formatExports.test.ts.snap
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2471,8 +2471,8 @@ exports[`SPDX JSON alpine 1`] = `
"name": "libvncserver",
"SPDXID": "redacted",
"versionInfo": "0.9.9",
"supplier": "Person: A. Wilcox <awilfox@adelielinux.org>",
"originator": "Person: A. Wilcox <awilfox@adelielinux.org>",
"supplier": "Person: A. Wilcox (awilfox@adelielinux.org)",
"originator": "Person: A. Wilcox (awilfox@adelielinux.org)",
"downloadLocation": "http://libvncserver.sourceforge.net/",
"filesAnalyzed": false,
"sourceInfo": "acquired package info from APK DB: /lib/apk/db/installed",
Expand Down Expand Up @@ -2506,6 +2506,8 @@ exports[`SPDX JSON alpine 1`] = `
"checksumValue": "shas256:redacted"
}
],
"licenseConcluded": "NOASSERTION",
"licenseDeclared": "NOASSERTION",
"externalRefs": [
{
"referenceCategory": "PACKAGE-MANAGER",
Expand All @@ -2527,6 +2529,9 @@ exports[`SPDX JSON alpine 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
}
Expand Down Expand Up @@ -2743,8 +2748,7 @@ exports[`SPDX JSON debian 1`] = `
"name": "apt",
"SPDXID": "redacted",
"versionInfo": "1.8.2",
"supplier": "Person: APT Development Team <deity@lists.debian.org>",
"originator": "Person: APT Development Team <deity@lists.debian.org>",
"supplier": "NOASSERTION",
"downloadLocation": "NOASSERTION",
"filesAnalyzed": false,
"sourceInfo": "acquired package info from DPKG DB: /var/lib/dpkg/status",
Expand Down Expand Up @@ -3083,8 +3087,8 @@ exports[`SPDX JSON debian 1`] = `
"name": "npm",
"SPDXID": "redacted",
"versionInfo": "6.14.6",
"supplier": "Person: Isaac Z. Schlueter <i@izs.me> (http://blog.izs.me)",
"originator": "Person: Isaac Z. Schlueter <i@izs.me> (http://blog.izs.me)",
"supplier": "Person: Isaac Z. Schlueter (i@izs.me)",
"originator": "Person: Isaac Z. Schlueter (i@izs.me)",
"downloadLocation": "https://github.com/npm/cli",
"filesAnalyzed": false,
"homepage": "https://docs.npmjs.com/",
Expand Down Expand Up @@ -3119,6 +3123,8 @@ exports[`SPDX JSON debian 1`] = `
"checksumValue": "shas256:redacted"
}
],
"licenseConcluded": "NOASSERTION",
"licenseDeclared": "NOASSERTION",
"externalRefs": [
{
"referenceCategory": "PACKAGE-MANAGER",
Expand All @@ -3140,6 +3146,9 @@ exports[`SPDX JSON debian 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
},
Expand All @@ -3153,6 +3162,9 @@ exports[`SPDX JSON debian 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
},
Expand All @@ -3166,6 +3178,9 @@ exports[`SPDX JSON debian 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
},
Expand All @@ -3179,6 +3194,9 @@ exports[`SPDX JSON debian 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
},
Expand All @@ -3192,6 +3210,9 @@ exports[`SPDX JSON debian 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": "",
"comment": "layerID: sha256:redacted"
}
Expand Down Expand Up @@ -3767,6 +3788,8 @@ exports[`SPDX JSON npm 1`] = `
"supplier": "NOASSERTION",
"downloadLocation": "NOASSERTION",
"filesAnalyzed": false,
"licenseConcluded": "NOASSERTION",
"licenseDeclared": "NOASSERTION",
"primaryPackagePurpose": "FILE"
}
],
Expand All @@ -3781,6 +3804,9 @@ exports[`SPDX JSON npm 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": ""
}
],
Expand Down Expand Up @@ -4253,6 +4279,8 @@ exports[`SPDX JSON yarn 1`] = `
"supplier": "NOASSERTION",
"downloadLocation": "NOASSERTION",
"filesAnalyzed": false,
"licenseConcluded": "NOASSERTION",
"licenseDeclared": "NOASSERTION",
"primaryPackagePurpose": "FILE"
}
],
Expand All @@ -4267,6 +4295,9 @@ exports[`SPDX JSON yarn 1`] = `
}
],
"licenseConcluded": "NOASSERTION",
"licenseInfoInFiles": [
"NOASSERTION"
],
"copyrightText": ""
}
],
Expand Down Expand Up @@ -4375,6 +4406,7 @@ FileName: /lib/apk/db/installed
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
##### Package: localhost:5000/match-coverage/alpine
Expand All @@ -4387,15 +4419,17 @@ PackageDownloadLocation: NOASSERTION
PrimaryPackagePurpose: CONTAINER
FilesAnalyzed: false
PackageChecksum: SHA256: shas256:redacted
PackageLicenseConcluded: NOASSERTION
PackageLicenseDeclared: NOASSERTION
ExternalRef: PACKAGE-MANAGER purl pkg:oci/localhost:5000/match-coverage/alpine@sha256:redacted?arch=amd64&tag=latest
##### Package: libvncserver
PackageName: libvncserver
PackageVersion: 0.9.9
PackageSupplier: Person: A. Wilcox <awilfox@adelielinux.org>
PackageOriginator: Person: A. Wilcox <awilfox@adelielinux.org>
PackageSupplier: Person: A. Wilcox (awilfox@adelielinux.org)
PackageOriginator: Person: A. Wilcox (awilfox@adelielinux.org)
PackageDownloadLocation: http://libvncserver.sourceforge.net/
FilesAnalyzed: false
PackageSourceInfo: acquired package info from APK DB: /lib/apk/db/installed
Expand Down Expand Up @@ -4432,30 +4466,35 @@ FileName: /java/example-java-app-maven-0.1.0.jar
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
FileName: /javascript/pkg-json/package.json
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
FileName: /python/dist-info/METADATA
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
FileName: /ruby/specifications/bundler.gemspec
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
FileName: /var/lib/dpkg/status
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
FileComment: layerID: sha256:redacted
##### Package: localhost:5000/match-coverage/debian
Expand All @@ -4468,15 +4507,16 @@ PackageDownloadLocation: NOASSERTION
PrimaryPackagePurpose: CONTAINER
FilesAnalyzed: false
PackageChecksum: SHA256: shas256:redacted
PackageLicenseConcluded: NOASSERTION
PackageLicenseDeclared: NOASSERTION
ExternalRef: PACKAGE-MANAGER purl pkg:oci/localhost:5000/match-coverage/debian@sha256:redacted?arch=amd64&tag=latest
##### Package: apt
PackageName: apt
PackageVersion: 1.8.2
PackageSupplier: Person: APT Development Team <deity@lists.debian.org>
PackageOriginator: Person: APT Development Team <deity@lists.debian.org>
PackageSupplier: NOASSERTION
PackageDownloadLocation: NOASSERTION
FilesAnalyzed: false
PackageSourceInfo: acquired package info from DPKG DB: /var/lib/dpkg/status
Expand Down Expand Up @@ -4586,8 +4626,8 @@ ExternalRef: PACKAGE-MANAGER purl pkg:maven/joda-time/joda-time@2.9.2
PackageName: npm
PackageVersion: 6.14.6
PackageSupplier: Person: Isaac Z. Schlueter <i@izs.me> (http://blog.izs.me)
PackageOriginator: Person: Isaac Z. Schlueter <i@izs.me> (http://blog.izs.me)
PackageSupplier: Person: Isaac Z. Schlueter (i@izs.me)
PackageOriginator: Person: Isaac Z. Schlueter (i@izs.me)
PackageDownloadLocation: https://github.com/npm/cli
FilesAnalyzed: false
PackageHomePage: https://docs.npmjs.com/
Expand Down Expand Up @@ -4693,6 +4733,7 @@ FileName: /package-lock.json
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
##### Package: tests/fixtures/npm-project
Expand All @@ -4702,6 +4743,8 @@ PackageSupplier: NOASSERTION
PackageDownloadLocation: NOASSERTION
PrimaryPackagePurpose: FILE
FilesAnalyzed: false
PackageLicenseConcluded: NOASSERTION
PackageLicenseDeclared: NOASSERTION
##### Package: chownr
Expand Down Expand Up @@ -4990,6 +5033,7 @@ FileName: /yarn.lock
FileChecksum: SHA1: 0000000000000000000000000000000000000000
LicenseConcluded: NOASSERTION
LicenseInfoInFile: NOASSERTION
##### Package: tests/fixtures/yarn-project
Expand All @@ -4999,6 +5043,8 @@ PackageSupplier: NOASSERTION
PackageDownloadLocation: NOASSERTION
PrimaryPackagePurpose: FILE
FilesAnalyzed: false
PackageLicenseConcluded: NOASSERTION
PackageLicenseDeclared: NOASSERTION
##### Package: js-tokens
Expand Down

0 comments on commit e8d2a69

Please sign in to comment.