Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / kubernetes-sigs/bom issues and pull requests
#283 - build(deps): bump actions/setup-go from 4.0.0 to 4.0.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#282 - build(deps): bump sigs.k8s.io/release-utils from 0.7.4-0.20230502075013-5274b69697f0 to 0.7.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#281 - build(deps): bump github.com/magefile/mage from 1.14.0 to 1.15.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#280 - build(deps): bump golang.org/x/tools from 0.8.0 to 0.9.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#279 - build(deps): bump github.com/google/go-containerregistry from 0.14.0 to 0.15.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 6 comments
Labels: size/M, ok-to-test, release-note-none, approved, area/dependency, cncf-cla: yes
#278 - build(deps): bump golang.org/x/term from 0.7.0 to 0.8.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#277 - build(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#276 - build(deps): bump github.com/in-toto/in-toto-golang from 0.8.0 to 0.9.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#275 - go.mod: Use uwu-tools/magex
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 1 comment
Labels: lgtm, kind/cleanup, size/S, approved, area/dependency, cncf-cla: yes
#274 - build(deps): bump gitlab.alpinelinux.org/alpine/go from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#273 - build(deps): bump sigstore/cosign-installer from 3.0.2 to 3.0.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#272 - build(deps): bump github.com/in-toto/in-toto-golang from 0.7.1 to 0.8.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#271 - add attestation in the release job
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 1 comment
Labels: kind/feature, size/M, lgtm, approved, cncf-cla: yes
#270 - OSInfo: Add support for download location
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/feature, size/M, lgtm, approved, cncf-cla: yes
#269 - Add Supplier Support in JSON encoded SBOMs
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/bug, size/M, lgtm, approved, cncf-cla: yes
#268 - build(deps): bump actions/checkout from 3.5.1 to 3.5.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#267 - build(deps): bump actions/checkout from 3.5.0 to 3.5.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#266 - build(deps): bump sigstore/cosign-installer from 3.0.1 to 3.0.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#265 - build(deps): bump golang.org/x/tools from 0.7.0 to 0.8.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#264 - build(deps): bump github.com/in-toto/in-toto-golang from 0.7.0 to 0.7.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#263 - build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#262 - build(deps): bump golang.org/x/mod from 0.9.0 to 0.10.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#261 - build(deps): bump golang.org/x/term from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#260 - Outliner: Autodetect open STDIN
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 1 comment
Labels: kind/feature, lgtm, size/S, approved, cncf-cla: yes
#259 - Keep reading SBOM until encoding is found
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 1 comment
Labels: kind/bug, size/M, lgtm, kind/cleanup, approved, cncf-cla: yes
#258 - update release binary name
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 4 comments
Labels: lgtm, kind/cleanup, size/XS, approved, cncf-cla: yes
#257 - refactor release
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 1 comment
Labels: kind/feature, lgtm, size/L, approved, cncf-cla: yes
#256 - info? compare and contrast this project viz a viz anchore/syft
Issue -
State: closed - Opened by rchincha over 1 year ago
- 5 comments
Labels: kind/support, lifecycle/rotten, sig/release
#255 - Embed SPDX license list!
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 1 comment
Labels: kind/feature, tide/merge-method-squash, lgtm, size/L, approved, cncf-cla: yes
#254 - build(deps): bump actions/checkout from 3.4.0 to 3.5.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#253 - build(deps): bump github.com/go-git/go-git/v5 from 5.6.0 to 5.6.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: size/M, ok-to-test, release-note-none, lgtm, approved, area/dependency, cncf-cla: yes
#252 - Update install instructions
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/documentation, lgtm, size/XS, approved, cncf-cla: yes
#251 - SBOMs support dependency hierarchy for file systems and containers
Issue -
State: closed - Opened by bardenstein over 1 year ago
- 13 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#250 - Upgrade to go1.20
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 3 comments
Labels: kind/feature, size/M, lgtm, kind/cleanup, approved, cncf-cla: yes
#249 - update github.com/google/go-containerregistry to v0.14.0
Pull Request -
State: closed - Opened by cpanato over 1 year ago
- 1 comment
Labels: size/M, lgtm, kind/cleanup, approved, cncf-cla: yes
#248 - build(deps): bump actions/setup-go from 3.5.0 to 4.0.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#247 - build(deps): bump actions/checkout from 3.3.0 to 3.4.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#246 - build(deps): bump github.com/google/go-containerregistry from 0.13.0 to 0.14.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 5 comments
Labels: size/M, ok-to-test, release-note-none, area/dependency, cncf-cla: yes
#245 - Make license list version configurable
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/feature, size/XL, lgtm, approved, cncf-cla: yes
#244 - Detect recursion loop in spdx.recursiveIDSearch
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/bug, lgtm, size/S, approved, cncf-cla: yes
#243 - Improve handling of 2.3 optional fields
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 1 comment
Labels: lgtm, size/L, kind/cleanup, approved, cncf-cla: yes
#242 - Change tool string to include version
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 2 comments
Labels: kind/bug, lgtm, size/XS, approved, cncf-cla: yes
#241 - Fix bug breaking license downloads
Pull Request -
State: closed - Opened by puerco over 1 year ago
- 3 comments
Labels: kind/bug, size/M, lgtm, approved, cncf-cla: yes
#240 - Panic when building with both --image and --file
Issue -
State: closed - Opened by jaevans over 1 year ago
- 3 comments
Labels: kind/bug, sig/release
#239 - build(deps): bump golang.org/x/tools from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 4 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#238 - build(deps): bump golang.org/x/term from 0.5.0 to 0.6.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#237 - build(deps): bump golang.org/x/mod from 0.8.0 to 0.9.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#236 - build(deps): bump github.com/go-git/go-git/v5 from 5.5.2 to 5.6.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#235 - [SPDX][TV/JSON] SBOM required field 'Creator' is missing/incorrect
Issue -
State: closed - Opened by surendrapathak over 1 year ago
- 1 comment
Labels: kind/bug, sig/release
#234 - build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#233 - build(deps): bump github.com/in-toto/in-toto-golang from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#232 - build(deps): bump github.com/in-toto/in-toto-golang from 0.3.4-0.20211211042327-af1f9fb822bf to 0.6.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 5 comments
Labels: size/M, ok-to-test, release-note-none, lgtm, approved, area/dependency, cncf-cla: yes
#231 - Fix example directions
Pull Request -
State: closed - Opened by rnjudge over 1 year ago
- 4 comments
Labels: ok-to-test, kind/documentation, lgtm, size/XS, approved, cncf-cla: yes
#230 - SPDX2.2: bom generates SBOM with invalid value for packageVerificationCodeValue
Issue -
State: closed - Opened by surendrapathak almost 2 years ago
Labels: kind/bug, sig/release
#229 - build(deps): bump golang.org/x/tools from 0.5.0 to 0.6.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#228 - build(deps): bump golang.org/x/mod from 0.7.0 to 0.8.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#227 - build(deps): bump golang.org/x/term from 0.4.0 to 0.5.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#226 - build(deps): bump github.com/maxbrunsfeld/counterfeiter/v6 from 6.5.0 to 6.6.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#225 - Fix issue 215
Pull Request -
State: closed - Opened by sbs2001 almost 2 years ago
- 1 comment
Labels: lgtm, size/XS, approved, cncf-cla: yes
#224 - Support for reading apk based distros
Pull Request -
State: closed - Opened by puerco almost 2 years ago
- 2 comments
Labels: kind/feature, lgtm, size/XXL, approved, cncf-cla: yes
#223 - build(deps): bump github.com/google/go-containerregistry from 0.12.1 to 0.13.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#222 - Readme logo
Pull Request -
State: closed - Opened by puerco almost 2 years ago
- 1 comment
Labels: size/XL, kind/documentation, lgtm, approved, cncf-cla: yes
#221 - Purl(): Support both PACKAGE-MANAGER and PACKAGE-MANAGER
Pull Request -
State: closed - Opened by puerco almost 2 years ago
- 1 comment
Labels: size/M, lgtm, kind/cleanup, approved, cncf-cla: yes
#220 - build(deps): bump actions/upload-artifact from 3.1.1 to 3.1.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#219 - build(deps): bump actions/checkout from 3.2.0 to 3.3.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#218 - build(deps): bump github.com/go-git/go-git/v5 from 5.5.1 to 5.5.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#217 - build(deps): bump golang.org/x/term from 0.3.0 to 0.4.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#216 - build(deps): bump golang.org/x/tools from 0.4.0 to 0.5.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#215 - Error When Creating SBOM for Image Specified with Digest
Issue -
State: closed - Opened by jspeed-meyers almost 2 years ago
- 2 comments
Labels: kind/bug, sig/release
#214 - Error When Installing With Published Command
Issue -
State: closed - Opened by jspeed-meyers almost 2 years ago
Labels: kind/bug, sig/release
#213 - Cache license network operations
Pull Request -
State: closed - Opened by puerco almost 2 years ago
- 3 comments
Labels: kind/feature, lgtm, size/L, approved, cncf-cla: yes
#212 - Versions and purls in document outliner
Pull Request -
State: closed - Opened by puerco almost 2 years ago
- 1 comment
Labels: kind/feature, size/M, lgtm, approved, cncf-cla: yes
#211 - Update owners
Pull Request -
State: closed - Opened by saschagrunert almost 2 years ago
- 1 comment
Labels: lgtm, kind/cleanup, size/S, approved, cncf-cla: yes
#210 - build(deps): bump actions/setup-go from 3.4.0 to 3.5.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#209 - build(deps): bump actions/checkout from 3.1.0 to 3.2.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/XS, approved, area/dependency, cncf-cla: yes
#208 - build(deps): bump github.com/go-git/go-git/v5 from 5.5.0 to 5.5.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#207 - build(deps): bump golang.org/x/tools from 0.3.0 to 0.4.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#206 - build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: ok-to-test, release-note-none, lgtm, size/S, approved, area/dependency, cncf-cla: yes
#202 - downloaded go modules are not being picked up by the go interpreter when bom generate runs
Issue -
State: closed - Opened by sandipanpanda almost 2 years ago
- 8 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#201 - Download license zip instead of following links
Pull Request -
State: closed - Opened by sbs2001 almost 2 years ago
- 4 comments
Labels: ok-to-test, lgtm, size/L, approved, cncf-cla: yes
#195 - Distribute license data as an embed fs.
Pull Request -
State: closed - Opened by sbs2001 about 2 years ago
- 12 comments
Labels: ok-to-test, size/L, needs-rebase, cncf-cla: yes, lifecycle/stale
#193 - Don't use one HTTP request per license download
Issue -
State: closed - Opened by sbs2001 about 2 years ago
- 5 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#192 - panic: interface conversion: name.Reference is name.Digest, not name.Tag
Issue -
State: closed - Opened by aanm about 2 years ago
- 4 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#187 - Error on outlining if we use multiple directories with same go modules
Issue -
State: closed - Opened by kranurag7 about 2 years ago
- 7 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#182 - Fatal on scanning a dir
Issue -
State: closed - Opened by sbs2001 about 2 years ago
- 8 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#178 - Issues generating an sbom for a container tagged for AWS ECR on mac m1
Issue -
State: closed - Opened by strongjz about 2 years ago
- 4 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#172 - PackageName includes version string
Issue -
State: closed - Opened by anthonyharrison about 2 years ago
- 4 comments
Labels: kind/bug, lifecycle/rotten, sig/release
#171 - Publish container image per release
Issue -
State: closed - Opened by saschagrunert about 2 years ago
- 7 comments
Labels: kind/feature, sig/release, lifecycle/stale
#168 - Add compose functionality
Issue -
State: open - Opened by ivanayov about 2 years ago
- 7 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#165 - Allow to generate SBOM of specific SPDX version
Issue -
State: closed - Opened by sbs2001 about 2 years ago
- 4 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#164 - Include License List Version Field.
Issue -
State: closed - Opened by sbs2001 about 2 years ago
- 4 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#142 - Provide CPE as an external reference for detected packages
Issue -
State: closed - Opened by sbs2001 over 2 years ago
- 4 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#137 - build a distroless base image to be used for bom based on apko and melange
Issue -
State: open - Opened by developer-guy over 2 years ago
- 22 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#100 - Provide support for CycloneDX
Issue -
State: closed - Opened by VinodAnandan over 2 years ago
- 11 comments
Labels: kind/feature, lifecycle/rotten, sig/release
#44 - Include license list in distribution
Issue -
State: closed - Opened by puerco almost 3 years ago
- 14 comments
Labels: kind/feature, sig/release
#40 - Record a new terminal animation
Issue -
State: closed - Opened by puerco almost 3 years ago
- 11 comments
Labels: lifecycle/rotten
#38 - Flag to reference external documents.
Issue -
State: closed - Opened by puerco almost 3 years ago
- 8 comments
Labels: kind/feature, lifecycle/rotten, sig/release