Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: allow grype db diff to specify local db directories #1058

Merged
merged 2 commits into from Jan 12, 2023
Merged

feat: allow grype db diff to specify local db directories #1058

merged 2 commits into from Jan 12, 2023

Conversation

kzantow
Copy link
Contributor

@kzantow kzantow commented Jan 11, 2023
edited

This change allows both URLs and local file directories to be used with the grype db diff command, e.g.

grype db diff db-1 db-2

Where db-1 and db-2 are both directories containing a grype db. This means each db must have the following structure:

<dir>/
  <db-version>/
    metadata.json
    vulnerability.db

currently, db-1 would then be:

db-1/
  5/
    metadata.json
    vulnerability.db

Fixes: #1059

@kzantow
feat: allow grype db diff to specify local db directories
e3321cd 
Signed-off-by: Keith Zantow <kzantow@gmail.com>
@kzantow kzantow requested a review from a team January 11, 2023 18:41
@kzantow kzantow merged commit bc6d838 into anchore:main Jan 12, 2023
@kzantow kzantow deleted the feat/db-diff-files branch January 12, 2023 16:26
spiffcs added a commit to willyw0nka/grype that referenced this pull request Jan 24, 2023
@spiffcs
Merge branch 'main' into feature/grype-update
fc34c3f 
* main: (56 commits)
  fix: always include severity in cyclonedx output (anchore#1067)
  Update Syft to v0.68.0 (anchore#1064)
  Add protobuf FPs to default ignore list (anchore#1062)
  chore: update Syft to v0.66.2 (anchore#1060)
  Update grype bootstrap tools to latest versions. (anchore#1055)
  feat: allow grype db diff to specify local db directories (anchore#1058)
  chore: claim artifacthub package ownership from developer-guy (anchore#661)
  chore: add github token to quality tests (anchore#1056)
  chore: update yardstick to diagnose intermittent failures (anchore#1054)
  Update grype bootstrap tools to latest versions. (anchore#1048)
  fix: sort vulnerability results (anchore#1052)
  Adding internal/file/hasher test cases (anchore#1049)
  fix: orient by cve merging (anchore#1046)
  Update Syft to v0.64.0 (anchore#1047)
  fix: update removing results based on ownership-by-file-overlap (anchore#1045)
  feat: swap custom cyclone-dx model for cyclone-dx library (anchore#1038)
  chore: add GitLab Community Edition image to quality gate (anchore#1035)
  Update Syft to v0.63.0 (anchore#1037)
  fix: Exclude binary packages that have overlap by file ownership relationship (anchore#1024)
  docs: update quality gate docs (anchore#1032)
  ...
This was referenced Feb 16, 2023
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@wagoodman wagoodman wagoodman approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Allow db diff to specify local files
2 participants
@kzantow @wagoodman