mirror of
https://github.com/anchore/syft
synced 2024-11-10 14:24:12 +00:00
f9407d0ce4
* Adds java and npm package comparison * Adds probable matching of extra packages syft found and missing packages that syft did not find (but inline did). This way there is a section of output that fuzzy-matches the package names to get a better sense of "real" problems (actual missing packages) vs slightly mismatched metadata during troubleshooting. * Adds a set or probable missing packages to the report based on the probable matches (again, to aid in troubleshooting) * Fixes image reference clean function to support references with registries * Only shows metadata differences when the package was found by both inline and syft * Splits the inline-compare code into more manageable pieces Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
5 lines
95 B
Python
5 lines
95 B
Python
import os
|
|
|
|
|
|
def clean(image: str) -> str:
|
|
return os.path.basename(image.replace(":", "_"))
|