guac
guac copied to clipboard
guacsec
GUAC aggregates software security metadata into a high fidelity graph database.
It would be nice to have a collector that can clone/pull down files from Git. It would also be useful to have a collector that can ingest from Github releases...
# Description of the PR Support collecting all OCI artifacts in an OCI registry that has the `/v2/_catalog` endpoint enabled. TODO: - [ ] Add unit tests - [ ]...
# Description of the PR Previously all the messages were being grabbed from the queue and placed into a channel for processing. This resulted in one `ingestor` grabbing majority of...
Bumps [github.com/getkin/kin-openapi](https://github.com/getkin/kin-openapi) from 0.123.0 to 0.124.0. Release notes Sourced from github.com/getkin/kin-openapi's releases. v0.124.0 What's Changed ci: make sure go-run'ing binaries works by @fenollp in getkin/kin-openapi#894 Make the JSON body decode...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
# Description of the PR - The overview diagram had a red underline under `OpenSSF` because of a spelling error; this PR fixes that. - There is also a PR...
# Description of the PR This PR incorporates a child logging system that records a unique `documentHash`. Since the `documentHash` is being added to the child logger, the entire logging...
# Description of the PR * The code gets all dependencies using `hasSBOM` * This code finds the number of dependents for each package by finding the number of packages...
**Is your feature request related to a problem? Please describe.** With the new addition of the blob store, GUAC now can store documents that were collected and ingested into GUAC....
# Description of the PR Analyze command for guacone `Comparing SBOMs with only patch version differences` `guacone analyze diff --uri --sboms=https://anchore.com/syft/image/k8s.gcr.io/kube-apiserver-v1.24.1-583a02ce-8f7e-4794-91af-35f27ffeb73d,https://anchore.com/syft/image/k8s.gcr.io/kube-apiserver-v1.24.2-ee7e0a81-87de-4761-9689-4f7162d81e44` The diff is a 4 step process: - Create...
# Description of the PR Change all backends to format timestamp in UTC when storing See:https://github.com/guacsec/guac/issues/1417 # PR Checklist - [x] All commits have [a Developer Certificate of Origin (DCO)](https://wiki.linuxfoundation.org/dco)...
