anchore/grype-db issues and pull requests

#330 - chore(deps): Bump github.com/anchore/grype from 0.79.0 to 0.79.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, go

#329 - chore(deps): Bump github.com/spf13/cobra from 1.8.0 to 1.8.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, go

#328 - chore(deps): Bump github.com/anchore/grype from 0.78.0 to 0.79.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, go

#327 - Update Grype to v0.79.0

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 4 months ago
Labels: dependencies

#326 - chore(deps): Bump github.com/klauspost/compress from 1.17.8 to 1.17.9

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, go

#325 - chore(deps): Bump actions/checkout from 4.1.6 to 4.1.7

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#324 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 4 months ago
Labels: dependencies

#323 - Automation to delete OCI cache for provider

Issue - State: open - Opened by wagoodman 4 months ago
Labels: enhancement

#322 - chore(deps): Bump golang.org/x/text from 0.15.0 to 0.16.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, go

#321 - chore(deps): Bump requests from 2.31.0 to 2.32.2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#320 - chore(deps): Bump github.com/spf13/viper from 1.18.2 to 1.19.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, go

#319 - Update Grype to v0.78.0

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 4 months ago
Labels: dependencies

#318 - chore(deps): Bump github.com/anchore/grype from 0.77.4 to 0.78.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, go

#317 - feat: enable os vulns to have version range

Pull Request - State: closed - Opened by willmurphyscode 4 months ago

#316 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 4 months ago - 1 comment
Labels: dependencies

#315 - All DB updates from Daily DB publisher uses the same built date since job #467?

Issue - State: closed - Opened by mblixter 5 months ago - 2 comments
Labels: bug

#314 - chore(deps): Bump actions/checkout from 4.1.5 to 4.1.6

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#313 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 5 months ago
Labels: dependencies

#312 - test: assert namespaces for ubuntu 24.04

Pull Request - State: closed - Opened by westonsteimel 5 months ago - 1 comment

#311 - chore(deps-dev): Bump werkzeug from 2.3.8 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#310 - chore(deps-dev): Bump jinja2 from 3.1.3 to 3.1.4

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#309 - chore(deps): Bump github.com/anchore/grype from 0.77.3 to 0.77.4

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, go

#308 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 5 months ago
Labels: dependencies

#307 - feat: azure linux 3 support

Pull Request - State: open - Opened by willmurphyscode 5 months ago

#306 - feat: grypedb should include last successful run date for each provider

Pull Request - State: closed - Opened by asomya 5 months ago

#305 - chore(deps): Bump actions/checkout from 4.1.4 to 4.1.5

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#304 - chore: bumping grype version

Pull Request - State: closed - Opened by asomya 5 months ago

#303 - Remove providers' pull information from DB metadata file

Pull Request - State: closed - Opened by asomya 5 months ago

#302 - chore(deps): Bump golang.org/x/text from 0.14.0 to 0.15.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, go

#301 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 5 months ago
Labels: dependencies

#300 - chore(deps): Bump actions/setup-go from 5.0.0 to 5.0.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#299 - chore: remove vunnel and update yardstick in grype-db

Pull Request - State: closed - Opened by spiffcs 5 months ago

#298 - chore(deps): Bump github.com/anchore/grype from 0.77.1 to 0.77.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, go

#297 - Update Grype to v0.77.1

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 5 months ago
Labels: dependencies

#296 - chore(deps): Bump peter-evans/create-pull-request from 6.0.3 to 6.0.5

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#295 - chore(deps): Bump actions/checkout from 4.1.1 to 4.1.4

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#294 - chore(deps): Bump actions/checkout from 4.1.1 to 4.1.3

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#293 - chore(deps): Bump github.com/anchore/grype from 0.76.0 to 0.77.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#292 - feat: add last successful run for each provider to the metadata

Pull Request - State: closed - Opened by asomya 6 months ago - 1 comment

#291 - chore(deps): Bump peter-evans/create-pull-request from 6.0.3 to 6.0.4

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#290 - chore(deps): Bump idna from 3.4 to 3.7

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#289 - chore(deps): Bump mxschmitt/action-tmate from 3.17 to 3.18

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions

#288 - chore(deps): Bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, go

#287 - chore(deps): Bump github.com/anchore/grype from 0.75.0 to 0.76.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#286 - chore(deps): Bump peter-evans/create-pull-request from 6.0.2 to 6.0.3

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions

#285 - chore: remove download db test script

Pull Request - State: closed - Opened by kzantow 6 months ago
Labels: changelog-ignore

#284 - chore(deps): Bump github.com/klauspost/compress from 1.17.7 to 1.17.8

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#283 - chore(deps): Bump golang.org/x/sync from 0.6.0 to 0.7.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#282 - chore(deps): Bump github.com/anchore/grype from 0.74.7 to 0.75.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#281 - chore: pass max time to download canary

Pull Request - State: closed - Opened by willmurphyscode 6 months ago

#280 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 6 months ago
Labels: dependencies

#279 - chore: add checkout step

Pull Request - State: closed - Opened by kzantow 6 months ago
Labels: changelog-ignore

#278 - chore: add workflow to download latest db and listing periodically

Pull Request - State: closed - Opened by kzantow 6 months ago
Labels: changelog-ignore

#277 - chore(deps-dev): Bump black from 23.7.0 to 24.3.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#276 - chore(deps-dev): Bump cryptography from 42.0.0 to 42.0.4

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#275 - chore(deps-dev): Bump orjson from 3.9.4 to 3.9.15

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#274 - chore(deps): Bump google.golang.org/protobuf from 1.31.0 to 1.33.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#273 - chore(deps): Bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#272 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 6 months ago
Labels: dependencies

#271 - chore(deps): Bump gorm.io/gorm from 1.25.8 to 1.25.9

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#270 - Update grype-db bootstrap tools to latest versions.

Pull Request - State: closed - Opened by anchore-actions-token-generator[bot] 6 months ago
Labels: dependencies

#269 - Add zst compression option and refactor tar utilities to use common implementation

Pull Request - State: closed - Opened by wagoodman 6 months ago
Labels: enhancement

#268 - feat: add --results-only switch to grype-db cache backup

Pull Request - State: closed - Opened by asomya 7 months ago
Labels: enhancement

#267 - chore(deps): Bump actions/cache from 4.0.1 to 4.0.2

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#266 - chore(deps): Bump gorm.io/gorm from 1.25.7 to 1.25.8

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go

#265 - chore: exclude manager from go tooling

Pull Request - State: open - Opened by kzantow 7 months ago

#264 - chore(deps): Bump fountainhead/action-wait-for-check from 1.1.0 to 1.2.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#263 - chore(deps): Bump github.com/glebarez/sqlite from 1.10.0 to 1.11.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, go

#262 - Remove trailing / in listing create

Pull Request - State: closed - Opened by willmurphyscode 7 months ago - 2 comments

#261 - chore(deps): Bump peter-evans/create-pull-request from 6.0.1 to 6.0.2

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#260 - chore(deps): Bump actions/checkout from 4.1.1 to 4.1.2

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 2 comments
Labels: dependencies, github_actions

#259 - fix: ensure normalization of all severity values

Pull Request - State: closed - Opened by westonsteimel 7 months ago - 1 comment
Labels: bug

#258 - Enable NVD overrides for OSS workflow

Pull Request - State: closed - Opened by wagoodman 7 months ago

#257 - Fail cache status on empty results

Pull Request - State: closed - Opened by willmurphyscode 7 months ago

#256 - Revert db timestamp change

Pull Request - State: closed - Opened by wagoodman 7 months ago
Labels: changelog-ignore

#255 - Capture the dates for the last successful pull of each vunnel provider in the grype-db metadata.json file

Issue - State: closed - Opened by westonsteimel 7 months ago - 2 comments
Labels: enhancement

#254 - Daily Data Sync workflow errors caused by RHEL data sync

Issue - State: open - Opened by oatovar 7 months ago - 1 comment
Labels: bug

#253 - Ensure that archived packages are well ordered

Pull Request - State: closed - Opened by wagoodman 7 months ago

#252 - Add listing replicas

Pull Request - State: closed - Opened by wagoodman 7 months ago

#251 - Use latest data timestamp for DB timestamp

Pull Request - State: closed - Opened by wagoodman 7 months ago
Labels: changelog-ignore

#250 - Allow for using grype-db from path

Pull Request - State: closed - Opened by wagoodman 7 months ago
Labels: enhancement

#249 - Make schema mapping configurable

Pull Request - State: closed - Opened by wagoodman 7 months ago

#248 - chore(deps): Bump github.com/stretchr/testify from 1.8.4 to 1.9.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 2 comments
Labels: dependencies, go

#247 - chore(deps): Bump actions/cache from 4.0.0 to 4.0.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#246 - chore(deps): Bump peter-evans/create-pull-request from 6.0.0 to 6.0.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions