You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
How to reproduce it (as minimally and precisely as possible):
Run grype -o embedded-cyclonedx-vex-json bom.json for the above example (version 0.55.0 required).
What happened:
Since version 0.55.0 grype is not reporting severities in the
embedded-cyclonedx-vex-json
format. This works if using grype 0..54.0.What you expected to happen:
The
embedded-cyclonedx-vex-json
should report the same severity as the console output:Sample sbom file used for the output above:
How to reproduce it (as minimally and precisely as possible):
Run
grype -o embedded-cyclonedx-vex-json bom.json
for the above example (version 0.55.0 required).Anything else we need to know?:
Environment:
grype version
:Application: grype
Version: 0.55.0
Syft Version: v0.65.0
BuildDate: 2023-01-04T21:18:26Z
GitCommit: c559833
GitDescription: v0.55.0
Platform: darwin/amd64
GoVersion: go1.18.9
Compiler: gc
Supported DB Schema: 5
cat /etc/os-release
or similar): MacOSThe text was updated successfully, but these errors were encountered: