Marco Deicas
Marco Deicas
# Motivation It is not always possible to look inside executables and report accurate information on their contents and dependencies. This information is accessible at the build time of executables,...
**Is your feature request related to a problem? Please describe.** `IsDependency` nodes contain a justification explaining why they were created, but they are string justifications that look like "Derived from...
When a digest is available for the subject of an SBOM, the `HasSbom` node should be attached to an `Artifact` corresponding to that digest, and then an `IsOccurrence` should link...
#1326 and [design doc](https://github.com/guacsec/guac/blob/main/cmd/guacrest/design.md) provides the motivation for developing a new REST API in Guac. A proof of concept [API Server](https://github.com/guacsec/guac/tree/main/cmd/guacrest) has also already been added to Guac. This issue...
Opening this issue to discuss and collect feedback on what areas of Guac need improved documentation. Feel free to comment with any shortcomings you've encountered in the documentation. Some possible...
**Summary** In some calls to the deps.dev [`GetProject`](https://docs.deps.dev/api/v3alpha/#getproject) endpoint, the source repository argument is malformed. The arguments have a `.git` suffix, which is not expected by that endpoint. **More Detail**...
Adds the specification of a predicate to address #179. One question I had was how to express what content the reference contains. I think the current use cases are met...
Deps.dev now specifies how the relationship between package versions and projects (e.g. github source) have been derived. This is useful information because it indicates how trustworthy that link is --...