Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / anchore/syft issues and pull requests
#3550 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 1 month ago
Labels: dependencies
#3549 - fix: golang remote license search when error reading local mod dir
Pull Request -
State: closed - Opened by kzantow about 1 month ago
- 1 comment
#3548 - chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.7 to 0.5.8
Pull Request -
State: closed - Opened by dependabot[bot] about 1 month ago
Labels: dependencies
#3547 - chore(deps): bump peter-evans/create-pull-request from 7.0.5 to 7.0.6
Pull Request -
State: closed - Opened by dependabot[bot] about 1 month ago
Labels: dependencies
#3546 - chore(deps): bump github/codeql-action from 3.27.9 to 3.28.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3546 - chore(deps): bump github/codeql-action from 3.27.9 to 3.28.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3545 - chore(deps): bump modernc.org/sqlite from 1.34.3 to 1.34.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3545 - chore(deps): bump modernc.org/sqlite from 1.34.3 to 1.34.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3544 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3543 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3542 - chore(deps): bump modernc.org/sqlite from 1.34.2 to 1.34.3
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3541 - chore(deps): bump golang.org/x/net from 0.32.0 to 0.33.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3540 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3539 - feat: syft 3435 - add file components to cyclonedx bom output when file metadata is available
Pull Request -
State: closed - Opened by spiffcs about 2 months ago
#3538 - chore(deps): bump github.com/docker/docker from 27.4.0+incompatible to 27.4.1+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3537 - chore(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3536 - Bug: strconv.ParseInt fails to correctly parse swap/root device with "0X" prefix (e.g., "0XD")
Issue -
State: open - Opened by brnpl about 2 months ago
- 1 comment
Labels: bug
#3535 - wrong traefik rc versions at binary detection
Issue -
State: open - Opened by witchcraze about 2 months ago
- 7 comments
Labels: bug, needs-investigation
#3534 - RPM-based PURLs sometimes have incorrect namespace (specifically OpenSUSE)
Issue -
State: closed - Opened by njv299 about 2 months ago
Labels: bug, good-first-issue
#3533 - Incorrect URL encoding of package url (purl)
Issue -
State: open - Opened by wbradley94 about 2 months ago
- 3 comments
Labels: bug
#3532 - chore(deps): bump anchore/sbom-action from 0.17.8 to 0.17.9
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3531 - chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.4 to 6.6.5
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3530 - chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.1 to 0.9.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3529 - Java wrong java library version reported
Issue -
State: closed - Opened by pkroiss about 2 months ago
- 4 comments
Labels: bug
#3528 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3527 - Unable to classify complex licenses
Issue -
State: open - Opened by yaronkaikov about 2 months ago
- 3 comments
Labels: bug
#3526 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3525 - chore(deps): update anchore dependencies
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies, pre-release
#3524 - chore(deps): bump github/codeql-action from 3.27.7 to 3.27.9
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3523 - chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3522 - feat(golang): add license parsing from vendor dirs
Pull Request -
State: closed - Opened by dschmidt about 2 months ago
- 6 comments
Labels: enhancement
#3521 - purl is not deterministic in java-archive cataloger
Issue -
State: open - Opened by TimBrown1611 about 2 months ago
Labels: bug
#3521 - purl is not deterministic in java-archive cataloger
Issue -
State: open - Opened by TimBrown1611 about 2 months ago
Labels: bug
#3520 - chore: make fixes field in PR template match auto-close regex
Pull Request -
State: closed - Opened by willmurphyscode about 2 months ago
Labels: changelog-ignore
#3520 - chore: make fixes field in PR template match auto-close regex
Pull Request -
State: closed - Opened by willmurphyscode about 2 months ago
Labels: changelog-ignore
#3519 - chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3519 - chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3518 - chore(deps): bump actions/checkout from 4.2.1 to 4.2.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3518 - chore(deps): bump actions/checkout from 4.2.1 to 4.2.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3517 - fix: stop omitting redundantly parenthesized licenses in CDX formatter
Pull Request -
State: closed - Opened by willmurphyscode about 2 months ago
- 1 comment
#3516 - chore: migrate syft to use anchore fork of archiver without replace
Pull Request -
State: closed - Opened by spiffcs about 2 months ago
#3516 - chore: migrate syft to use anchore fork of archiver without replace
Pull Request -
State: closed - Opened by spiffcs about 2 months ago
#3515 - Unable to find encoder for "spdx-json=spdx.json"
Issue -
State: open - Opened by wieringen about 2 months ago
- 1 comment
Labels: bug
#3515 - Unable to find encoder for "spdx-json=spdx.json"
Issue -
State: open - Opened by wieringen about 2 months ago
- 1 comment
Labels: bug
#3514 - chore(deps): bump github/codeql-action from 3.27.6 to 3.27.7
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3514 - chore(deps): bump github/codeql-action from 3.27.6 to 3.27.7
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3513 - chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.3 to 6.6.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3513 - chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.3 to 6.6.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3512 - chore(deps): bump github.com/docker/docker from 27.3.1+incompatible to 27.4.0+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3511 - Standalone Executables not listed in SBOM
Issue -
State: open - Opened by patrickSeal about 2 months ago
- 3 comments
Labels: enhancement
#3511 - Standalone Executables not listed in SBOM
Issue -
State: open - Opened by patrickSeal about 2 months ago
Labels: enhancement
#3510 - chore(deps): update anchore dependencies
Pull Request -
State: closed - Opened by wagoodman about 2 months ago
Labels: dependencies, pre-release
#3510 - chore(deps): update anchore dependencies
Pull Request -
State: closed - Opened by wagoodman about 2 months ago
Labels: dependencies, pre-release
#3509 - feat: convert spdx absolute to relative
Pull Request -
State: closed - Opened by spiffcs about 2 months ago
- 1 comment
Labels: enhancement
#3508 - chore(deps): bump github.com/magiconair/properties from 1.8.7 to 1.8.9
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3508 - chore(deps): bump github.com/magiconair/properties from 1.8.7 to 1.8.9
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#3507 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3507 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] about 2 months ago
Labels: dependencies
#3506 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3506 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3505 - Add file catalogers to selection configuration
Pull Request -
State: open - Opened by wagoodman 2 months ago
- 5 comments
Labels: enhancement
#3504 - Provide Syft as a Conan package
Issue -
State: open - Opened by lukas-braune 2 months ago
- 3 comments
Labels: enhancement
#3503 - chore(deps): bump actions/cache from 4.1.2 to 4.2.0
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3502 - fix order of rust dependencies and support git sources in Cargo.lock dependencies
Pull Request -
State: closed - Opened by willmurphyscode 2 months ago
Labels: bug
#3502 - fix order of rust dependencies and support git sources in Cargo.lock dependencies
Pull Request -
State: closed - Opened by willmurphyscode 2 months ago
Labels: bug
#3501 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3501 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3500 - Add relationships for rust audit binary packages
Pull Request -
State: closed - Opened by wagoodman 2 months ago
Labels: enhancement
#3500 - Add relationships for rust audit binary packages
Pull Request -
State: closed - Opened by wagoodman 2 months ago
Labels: enhancement
#3499 - chore(deps): bump golang.org/x/net from 0.31.0 to 0.32.0
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3498 - chore: add and document target for updating unit snapshots
Pull Request -
State: closed - Opened by willmurphyscode 2 months ago
Labels: changelog-ignore
#3498 - chore: add and document target for updating unit snapshots
Pull Request -
State: closed - Opened by willmurphyscode 2 months ago
Labels: changelog-ignore
#3497 - [DOCS] Document your CycloneDX properties
Issue -
State: open - Opened by jkowalleck 2 months ago
- 1 comment
Labels: enhancement, needs-discussion
#3497 - [DOCS] Document your CycloneDX properties
Issue -
State: open - Opened by jkowalleck 2 months ago
- 2 comments
Labels: enhancement, needs-research
#3496 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3496 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3495 - fix: emit NOASSERTION for copyright text to fix SPDX 2.2 validation failure
Pull Request -
State: closed - Opened by spiffcs 2 months ago
- 2 comments
#3495 - fix: emit NOASSERTION for copyright text to fix SPDX 2.2 validation failure
Pull Request -
State: closed - Opened by spiffcs 2 months ago
- 2 comments
#3494 - chore(deps): bump github/codeql-action from 3.27.5 to 3.27.6
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3494 - chore(deps): bump github/codeql-action from 3.27.5 to 3.27.6
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3493 - chore(deps): bump github.com/saferwall/pe from 1.5.5 to 1.5.6
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3493 - chore(deps): bump github.com/saferwall/pe from 1.5.5 to 1.5.6
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3492 - chore(deps): bump modernc.org/sqlite from 1.34.1 to 1.34.2
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3492 - chore(deps): bump modernc.org/sqlite from 1.34.1 to 1.34.2
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies
#3491 - chore(deps): update CPE dictionary index
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3490 - Ability to add custom SBOM components as files within Docker image
Issue -
State: open - Opened by nycnewman 2 months ago
- 6 comments
Labels: enhancement
#3490 - Ability to add custom SBOM components as files within Docker image
Issue -
State: open - Opened by nycnewman 2 months ago
- 6 comments
Labels: enhancement
#3489 - chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.2 to 6.6.3
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
- 1 comment
Labels: dependencies
#3489 - chore(deps): bump github.com/jedib0t/go-pretty/v6 from 6.6.2 to 6.6.3
Pull Request -
State: closed - Opened by dependabot[bot] 2 months ago
- 1 comment
Labels: dependencies
#3488 - SBOM generation for Conanfile.py
Issue -
State: open - Opened by Ajit-15 2 months ago
Labels: enhancement
#3488 - SBOM generation for Conanfile.py
Issue -
State: open - Opened by Ajit-15 2 months ago
Labels: enhancement
#3487 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3487 - chore(deps): update tools to latest versions
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3486 - missing provided files for dpkg packages
Issue -
State: open - Opened by ArmanPasha 2 months ago
Labels: bug
#3486 - missing provided files for dpkg packages
Issue -
State: open - Opened by ArmanPasha 2 months ago
Labels: bug
#3485 - Configurable package merge behavior
Issue -
State: open - Opened by wagoodman 2 months ago
Labels: enhancement, needs-discussion
#3485 - Configurable package merge behavior
Issue -
State: open - Opened by wagoodman 2 months ago
- 3 comments
Labels: enhancement
#3484 - feat: add cataloger for NuGet packages
Pull Request -
State: closed - Opened by Kemosabert 2 months ago
- 2 comments
Labels: json-schema
#3483 - chore(deps): update stereoscope to be5deed44b7c03fcbfa6f1f42fb67202d31636a9
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies
#3483 - chore(deps): update stereoscope to be5deed44b7c03fcbfa6f1f42fb67202d31636a9
Pull Request -
State: closed - Opened by anchore-actions-token-generator[bot] 2 months ago
Labels: dependencies