Munish Chouhan

@pditommaso its ready for review

I have moved the docs changes to https://github.com/seqeralabs/wave/pull/464 it will easier to apply once the docs repo is in sync with wave

Suggestion from @ewels Was thinking about what you were saying about ASCII codes in the logs yesterday . I wonder if we can keep them (maybe via a flag in...

> Please keep colour outside of this PR. We need fist makes the logs stream to work I will create another issue

merged get messed up, moving to draft

Working on this issue now, getting error with the sbom command, researching on that:

> Does this require a separate job or it can be done along with the scan? We can use existing scan job. we need to add `--list-all-pkgs` flag in our...

like this `docker run --rm aquasec/trivy:0.55.0 -q image --format json --list-all-pkgs ubuntu:20.04 ` it will have new package section which will contain ``` "Results": [ { "Target": "ubuntu:20.04 (ubuntu 20.04)",...

There are two main industry standards for SBOMs: 1. Software Package Data Exchange (SPDX and SPDX Lite), an ISO standard hosted by the Linux Foundation, which outlines the components, licenses,...

> Can both of them be created with the same scan command? no we need to provide the specific format for it in case of CycloneDX, we get vulnerabilities too,...