Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

syft 0.95.0 #153559

Merged
merged 2 commits into from Nov 8, 2023
Merged

syft 0.95.0 #153559

merged 2 commits into from Nov 8, 2023

Conversation

Porkepix
Copy link
Contributor

@Porkepix Porkepix commented Nov 7, 2023

Created by brew bump

Created with brew bump-formula-pr.

release notes 
### Added Features

    

  • Use case-insensitive matching for Go license files [#2286 @miquella]
    • 

  • Add conaninfo.txt parser to detect conan packages in docker images [#2234 @Pro]
    • 

  • Perform case insensitive matching on Java License files [#2235 @coheigea]
    • 

  • Read a license from a parent pom stored in Maven Central [#2228 @coheigea]
    • 

  • Add PURLs when scanning Gradle lock files [#2278 @robbiev]
    • 



Bug Fixes


    

  • Fix CPE index workflow [#2252 @wagoodman]
    • 

  • Fix cpe generation task [#2270 @willmurphyscode]
    • 

  • Introduce cataloger naming conventions [#1578 #2277 @wagoodman]
    • 

  • .NET / nuget - invalid SBOM generated after parsing [#2255 #2273 @spiffcs]
    • 

  • Wrong parsing after v0.85.0 syft for some components [#2241 #2273 @spiffcs]
    • 

  • SPDX-2.3 is misidentified as SPDX-2.2 [#2112 #2186 @wagoodman]
    • 

  • Jar parser chokes on empty lines [#2179 #2254 @spiffcs]
    • 

  • Add a new Java configuration option to recursively search parent poms… [#2274 @coheigea]
    • 

  • Fix directory resolver to always return virtual path [#2259 @wagoodman]
    • 

  • Syft can now handle the case of parsing a jar with multiple poms [#2231 @coheigea]
    • 

  • Add ruby.NewGemSpecCataloger to DirectoryCatalogers [#1971 @evanchaoli]
    • 



Breaking Changes


    

  • Introduce cataloger naming conventions [#1578 #2277 @wagoodman]
    • 

  • Remove MetadataType from the core package struct [#1735 #1983 @wagoodman]
    • 

  • Add convention for JSON metadata type names and port existing values to the new convention [#1844 #1983 @wagoodman]
    • 

  • Remove deprecated syft.Format functions [#1344 #2186 @wagoodman]
    • 



Additional Changes


    

  • Upgrade tool management [#2188 @wagoodman]
    • 

  • Fix homebrew post-release workflow [#2242 @wagoodman]
    • 



(Full Changelog)

@github-actions github-actions bot added go Go use is a significant feature of the PR or issue bump-formula-pr PR was created using `brew bump-formula-pr` labels Nov 7, 2023
@chenrui333
Copy link
Member 

  ==> /opt/homebrew/Cellar/syft/0.95.0/bin/syft convert /private/tmp/syft-test-20231107-7002-jfro5a/micronaut.json
  25l[0000]  WARN convert is an experimental feature, run `syft convert -h` for help
  
  25h1002l1003l1 error occurred:
  	* failed to decode SBOM: sbom format not recognized
  
  Error: syft: failed
  An exception occurred within a child process:
    Minitest::Assertion: Expected: 0
    Actual: 1

@chenrui333 chenrui333 added the test failure CI fails while running the test-do block label Nov 7, 2023
@chenrui333 chenrui333 mentioned this pull request Nov 7, 2023
Closed
@chenrui333 chenrui333 added the upstream issue An upstream issue report is needed label Nov 7, 2023
@chenrui333
Copy link
Member

@Porkepix @chenrui333
syft 0.95.0
5e329d7 
syft: add upstream build patch and update build

Signed-off-by: Rui Chen <rui@chenrui.dev>
@chenrui333
Copy link
Member

upstream has fixed it, should be good now.

@chenrui333 chenrui333 added ready to merge PR can be merged once CI is green and removed upstream issue An upstream issue report is needed test failure CI fails while running the test-do block labels Nov 8, 2023
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Nov 8, 2023

🤖 An automated task has requested bottles to be published to this PR.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Nov 8, 2023
@BrewTestBot BrewTestBot added this pull request to the merge queue Nov 8, 2023
Merged via the queue into Homebrew:master with commit 8b8c746 Nov 8, 2023
12 checks passed
@github-actions github-actions bot added the outdated PR was locked due to age label Dec 9, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Dec 9, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@chenrui333 chenrui333 chenrui333 approved these changes

@iMichka iMichka iMichka approved these changes

@github-actions github-actions[bot] github-actions approved these changes

Assignees
No one assigned
Labels
bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. go Go use is a significant feature of the PR or issue outdated PR was locked due to age ready to merge PR can be merged once CI is green
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@Porkepix @chenrui333 @iMichka @BrewTestBot