Commit graph

  • 68b96ae444
    chore(deps): bump github.com/docker/docker (#3066) dependabot[bot] 2024-07-25 13:50:33 -0400
  • 3917989f86
    chore(deps): bump github/codeql-action from 3.25.13 to 3.25.14 (#3072) dependabot[bot] 2024-07-25 13:50:06 -0400
  • 80253f77fa
    chore: use structured logging Keith Zantow 2024-07-25 12:04:16 -0400
  • e8b14f717c
    chore: use structured logging Keith Zantow 2024-07-25 12:01:17 -0400
  • 2fd4f93981
    Merge remote-tracking branch 'upstream/main' into feat/known-unknowns Keith Zantow 2024-07-25 10:17:39 -0400
  • d670de7c3d
    chore(deps): bump github/codeql-action from 3.25.13 to 3.25.14 #3072 dependabot[bot] 2024-07-25 13:24:10 +0000
  • 103a608cd8
    Merge remote-tracking branch 'origin/fix/deterministic-java-pom-properties-order' into feature-improved-java-cataloging Keith Zantow 2024-07-24 20:34:15 -0400
  • d06334b463
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-24 20:28:24 -0400
  • 9a047e426e
    fix: improve determinism in java archive identification Keith Zantow 2024-07-24 20:27:02 -0400
  • 0f41319059
    chore: properly resolve maven ID info Keith Zantow 2024-07-24 17:16:57 -0400
  • 85057d8a24 python-cataloger: normalize package names #3069 mikcl 2024-07-24 20:08:40 +0100
  • 1b17f9cc9a python cataloger: allow dots in python package names #3070 mikcl 2024-07-24 20:16:54 +0100
  • 741c8fb9bd
    fix: SPDX output performance with many relationships (#3053) Keith Zantow 2024-07-24 10:14:20 -0400
  • 81baec7cae
    chore(deps): bump github.com/docker/docker #3066 dependabot[bot] 2024-07-24 13:47:51 +0000
  • 9573f557d1
    better go mod detection from partial package builds (#3060) Alex Goodman 2024-07-24 09:34:40 -0400
  • 7b2fb7a048
    chore: improve property resolution for boms Keith Zantow 2024-07-23 19:12:39 -0400
  • a1fb9d7efd
    chore: refactor pom cataloger to scan and index all poms in the resolver Keith Zantow 2024-07-23 18:14:54 -0400
  • 6472bdff59
    chore: lint-fix Keith Zantow 2024-07-23 15:31:19 -0400
  • bbcf9652e6
    feat: add maven relativePath parent resolution Keith Zantow 2024-07-23 15:25:41 -0400
  • cfed925e34 Only match ldflag version if it matches the main module or targets main.version #3062 Laurent Goderre 2024-07-23 15:02:14 -0400
  • ca945d16e0
    chore(deps): update tools to latest versions (#3061) anchore-actions-token-generator[bot] 2024-07-23 10:16:25 -0400
  • 7441c1d314
    chore: minor renaming #3053 Keith Zantow 2024-07-23 04:17:46 -0400
  • 2c547ff12f chore(deps): update tools to latest versions #3061 spiffcs 2024-07-23 08:08:12 +0000
  • 938c341c50
    chore: update tests Keith Zantow 2024-07-22 21:29:01 -0400
  • 7a75356687 better go mod detection from partial package builds #3060 Alex Goodman 2024-07-22 18:55:10 -0400
  • a731f47e5b
    chore: refactor relationship.Index implementation Keith Zantow 2024-07-22 18:03:04 -0400
  • fe7c5a7174
    chore(deps): bump github.com/charmbracelet/lipgloss from 0.11.1 to 0.12.1 (#3040) dependabot[bot] 2024-07-22 10:43:17 -0700
  • 847b543e91
    Merge branch 'main' into dependabot/go_modules/github.com/charmbracelet/lipgloss-0.12.1 #3040 Christopher Angelo Phillips 2024-07-22 13:23:09 -0400
  • b06d8cafdd
    chore: pin fedora linux/amd64 to sha Christopher Phillips 2024-07-22 13:20:52 -0400
  • 125c787e40
    chore: add debug logging for errors reading RPM files (#3051) Keith Zantow 2024-07-22 13:05:04 -0400
  • 4a7b5b6e9d
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-22 12:35:28 -0400
  • bfe6f5204a
    chore(deps): update CPE dictionary index (#3035) anchore-actions-token-generator[bot] 2024-07-22 08:56:58 -0700
  • aead40e1de
    chore(deps): bump github.com/docker/docker (#3055) dependabot[bot] 2024-07-22 08:56:01 -0700
  • 536611fa25
    chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.4 to 0.5.5 (#3056) dependabot[bot] 2024-07-22 08:45:25 -0700
  • d0a7d4c43e
    chore(deps): bump modernc.org/sqlite from 1.30.2 to 1.31.1 (#3057) dependabot[bot] 2024-07-22 08:45:01 -0700
  • 0c53a087f0
    chore(deps): bump docker/login-action from 3.2.0 to 3.3.0 (#3058) dependabot[bot] 2024-07-22 08:44:06 -0700
  • b263b1ec1f
    chore(deps): bump github/codeql-action from 3.25.12 to 3.25.13 (#3059) dependabot[bot] 2024-07-22 10:55:55 -0400
  • 3a4dc5f238
    chore(deps): bump github/codeql-action from 3.25.12 to 3.25.13 #3059 dependabot[bot] 2024-07-22 14:02:12 +0000
  • 9c5f1e3010
    chore(deps): bump docker/login-action from 3.2.0 to 3.3.0 #3058 dependabot[bot] 2024-07-22 14:02:04 +0000
  • e8adec3529
    chore(deps): bump modernc.org/sqlite from 1.30.2 to 1.31.1 #3057 dependabot[bot] 2024-07-22 13:18:48 +0000
  • 40449f08d9
    chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.4 to 0.5.5 #3056 dependabot[bot] 2024-07-22 13:18:37 +0000
  • c57af9b554
    chore(deps): bump github.com/docker/docker #3055 dependabot[bot] 2024-07-22 13:18:30 +0000
  • 1bff619535 chore(deps): update CPE dictionary index #3035 wagoodman 2024-07-22 01:29:03 +0000
  • 53c7931518
    chore: update tests Keith Zantow 2024-07-21 15:44:08 -0400
  • 9627cb88c1
    fix: spdx output performance with many relationships Keith Zantow 2024-07-21 15:28:36 -0400
  • f01e7c1776
    chore: add debug logging for errors reading RPM files #3051 Keith Zantow 2024-07-19 11:30:43 -0400
  • 3486497777
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-18 14:29:00 -0400
  • 5b3c2a91a2
    Merge remote-tracking branch 'upstream/main' into feat/known-unknowns Keith Zantow 2024-07-18 14:28:28 -0400
  • 034a98f029
    chore(deps): update stereoscope to 487b11e5ba2622d976acda10c605da63b4fbbb0a (#3032) anchore-actions-token-generator[bot] 2024-07-18 09:26:01 -0700
  • 7b5a798a9e
    chore: allow unlicense #3032 Christopher Phillips 2024-07-18 12:11:07 -0400
  • 69031b0646
    chore(deps): update tools to latest versions (#3050) anchore-actions-token-generator[bot] 2024-07-18 08:21:31 -0700
  • fef5981126 chore(deps): update stereoscope to 487b11e5ba2622d976acda10c605da63b4fbbb0a kzantow 2024-07-18 08:08:16 +0000
  • 6c093fcb02 chore(deps): update tools to latest versions #3050 spiffcs 2024-07-18 08:07:31 +0000
  • 1960f704db
    chore: trim test files Keith Zantow 2024-07-17 21:47:57 -0400
  • f11cb49437
    chore: maven_resolver refactoring Keith Zantow 2024-07-17 21:38:52 -0400
  • a3485b3121
    chore: update some comments Keith Zantow 2024-07-17 21:27:33 -0400
  • b51c5eb158
    chore: fix env var names Keith Zantow 2024-07-17 21:22:22 -0400
  • 14536a0f12
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-17 21:15:49 -0400
  • 9864efe073
    chore: refactor parsedPomProject Keith Zantow 2024-07-17 21:15:25 -0400
  • 761a161e7f
    docs: CODE_OF_CONDUCT.md (#3046) Alan Pope 2024-07-17 22:33:17 +0100
  • ba31c2f1ae
    fix: include CPEs with Maven groupId as vendor (#3045) Keith Zantow 2024-07-17 14:23:58 -0400
  • 5d729a5e9e
    chore(deps): bump github.com/google/go-containerregistry (#3047) dependabot[bot] 2024-07-17 11:21:23 -0700
  • 276df95768
    chore(deps): bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2 (#3048) dependabot[bot] 2024-07-17 11:21:14 -0700
  • 8bcd53cfd4
    chore: cache maven pom files directly Keith Zantow 2024-07-17 13:17:54 -0400
  • 9b7f3dcaac
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-17 12:17:54 -0400
  • 2922853b0a
    chore: refactor maven_repo_utils Keith Zantow 2024-07-17 12:17:42 -0400
  • d67616c277
    chore(deps): bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2 #3048 dependabot[bot] 2024-07-17 13:47:04 +0000
  • fb938085dc
    chore(deps): bump github.com/google/go-containerregistry #3047 dependabot[bot] 2024-07-17 13:46:57 +0000
  • cca9a06a64
    chore(deps): bump modernc.org/sqlite from 1.30.1 to 1.30.2 (#3039) dependabot[bot] 2024-07-17 09:10:34 -0400
  • a7ed0c09d2 docs: CODE_OF_CONDUCT.md #3046 Alan Pope 2024-07-17 09:26:53 +0100
  • 2ad3c5df46
    Merge remote-tracking branch 'upstream/main' into feature-improved-java-cataloging Keith Zantow 2024-07-17 03:06:17 -0400
  • f941def456
    chore: initial refactor to use mavenResolver Keith Zantow 2024-07-17 03:05:48 -0400
  • 93a52d4de9
    chore(deps): bump modernc.org/sqlite from 1.30.1 to 1.30.2 #3039 dependabot[bot] 2024-07-17 00:17:30 +0000
  • 856cbec480
    Merge remote-tracking branch 'upstream/main' into feat/known-unknowns Keith Zantow 2024-07-16 20:15:40 -0400
  • 14fc6e1629
    fix: include CPEs with Maven groupId as vendor #3045 Keith Zantow 2024-07-16 12:36:19 -0400
  • 4d23990dd4
    docs: link to contrib/dev docs in readme (#3029) Bradley Jones 2024-07-16 14:59:31 +0100
  • d4fa61e0a2
    chore: Fix apache shield in readme (#3021) Adam McClenaghan 2024-07-16 14:59:14 +0100
  • d4d4e003e9
    chore(deps): update tools to latest versions (#3031) anchore-actions-token-generator[bot] 2024-07-16 06:58:33 -0700
  • 6bf91a410d
    chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12 (#3034) dependabot[bot] 2024-07-16 06:58:18 -0700
  • 77c300d617
    chore(deps): bump anchore/sbom-action from 0.16.1 to 0.17.0 (#3044) dependabot[bot] 2024-07-16 06:58:07 -0700
  • 75902b0540
    fix: stop panicking on "devel" version go stdlib (#3043) William Murphy 2024-07-16 09:51:14 -0400
  • 72246b2149
    chore(deps): bump anchore/sbom-action from 0.16.1 to 0.17.0 #3044 dependabot[bot] 2024-07-16 13:46:11 +0000
  • d8cbe6bd59 chore(deps): update tools to latest versions #3031 spiffcs 2024-07-16 08:08:16 +0000
  • 8b2781e66e fix: stop panicking on "devel" version go stdlib #3043 Will Murphy 2024-07-15 21:41:47 -0400
  • 278b72d39b
    chore: pin fedora image for elf binary test (#3041) Keith Zantow 2024-07-15 12:37:09 -0400
  • 8af237e34a
    chore: pin fedora image for elf binary test #3041 Keith Zantow 2024-07-15 12:27:06 -0400
  • ec35ecdc80
    chore(deps): bump github.com/charmbracelet/lipgloss dependabot[bot] 2024-07-15 13:31:41 +0000
  • 20867aa436
    chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12 #3034 dependabot[bot] 2024-07-12 13:38:16 +0000
  • 863c1ff261
    chore(deps): bump github.com/charmbracelet/lipgloss #3033 dependabot[bot] 2024-07-12 13:11:02 +0000
  • d649846682
    docs: link to contrib/dev docs in readme #3029 Bradley Jones 2024-07-11 22:17:03 +0100
  • 37245a21cc
    chore(deps): bump anchore/sbom-action from 0.16.0 to 0.16.1 (#3023) dependabot[bot] 2024-07-11 14:50:48 -0400
  • e2fe955262
    chore(deps): update stereoscope to 27b66b76fc6686fcf6bde656aa09e1f0e047fec1 (#3026) anchore-actions-token-generator[bot] 2024-07-11 10:38:10 -0700
  • 4e09908ba1
    chore(deps): bump actions/setup-go from 5.0.1 to 5.0.2 (#3027) v1.9.0 dependabot[bot] 2024-07-11 10:19:48 -0700
  • 863793a3cc
    chore(deps): bump github.com/charmbracelet/lipgloss (#3028) dependabot[bot] 2024-07-11 10:19:14 -0700
  • 05b3afa453
    chore(deps): bump github.com/charmbracelet/lipgloss #3028 dependabot[bot] 2024-07-11 14:00:04 +0000
  • 756550cf79
    chore(deps): bump actions/setup-go from 5.0.1 to 5.0.2 #3027 dependabot[bot] 2024-07-11 13:36:28 +0000
  • c7e41e59b0 chore(deps): update stereoscope to 27b66b76fc6686fcf6bde656aa09e1f0e047fec1 #3026 kzantow 2024-07-11 08:08:22 +0000
  • f438be5a73
    chore(deps): bump anchore/sbom-action from 0.16.0 to 0.16.1 #3023 dependabot[bot] 2024-07-10 13:18:34 +0000
  • b889150ef4
    Merge branch 'main' into rust-dep-info C0D3 M4513R 2024-07-09 22:02:14 +0200
  • f7ffcc534f
    fix: stabilize cpe sorting during collection sort (#3009) Christopher Angelo Phillips 2024-07-09 14:24:21 -0400