grype icon indicating copy to clipboard operation
grype copied to clipboard

Published 20 hours ago verified publisher icon anchore

Inconsistent naming of matchDetails.searchedBy.package field

Open andre-aktivconsultancy opened this issue 9 months ago • 0 comments

What happened: I noticed that the 'package' field in matchDetails.searchedBy object sometimes starts with a capital and sometimes not.

What you expected to happen: Consistent naming.

How to reproduce it (as minimally and precisely as possible):

grype eclipse-mosquitto:2.0.18 -o json | jq '.matches[].matchDetails[] | {matcher, package: .searchedBy.package, Package: .searchedBy.Package }'

The output will sometimes show package and sometimes Package.

{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "openssl",
    "version": "3.1.4-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  },
  "Package": null
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}
{
  "matcher": "apk-matcher",
  "package": null,
  "Package": {
    "name": "busybox",
    "version": "1.36.1-r5"
  }
}

Anything else we need to know?:

Environment:

  • Output of grype version:
Application:         grype
Version:             0.77.3
BuildDate:           2024-05-06T19:57:22Z
GitCommit:           88b6139c69476a7c0d4123375b42d136ecaec767
GitDescription:      v0.77.3
Platform:            linux/amd64
GoVersion:           go1.21.9
Compiler:            gc
Syft Version:        v1.3.0
Supported DB Schema: 5
  • OS (e.g: cat /etc/os-release or similar):
PRETTY_NAME="Ubuntu 22.04.4 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04.4 LTS (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=jammy

andre-aktivconsultancy avatar May 23 '24 09:05 andre-aktivconsultancy