Benji Visser
Benji Visser
implements the same functionality desired by https://github.com/anchore/syft/issues/2020 This PR implements a new cataloger called javascript-cataloger that collects full dependency trees and packages with for javascript ecosystem pkg managers -- [pnpm,...
cc: @usmanbashir
specifically, case sensitivity depending on whether it's `Azure ML` or `Databricks` https://github.com/package-url/purl-spec/blob/master/PURL-TYPES.rst#mlflow
I can get a code block and surrounding comments context with `.getFullText()` (line numbers added by me for this example) ``` 3 4 // @ts-expect-error TS(7016) FIXME: Could not find...
Fixes: https://github.com/aquasecurity/go-dep-parser/issues/257 cc: @nikpivkin @DmitriyLewen
I originally posted this on the trivy repo, but figured it should actually be posted here. Original post: https://github.com/aquasecurity/trivy/discussions/5208 ---- ### Description Trivy doesn't generate a correct .NET dependency tree...
Whenever `-e autoscale=True` is called it creates a new launch configuration. However, it doesn't clean up after itself. We should add a task to clean old launch configs.
**What would you like to be added**: Related to https://github.com/xeol-io/xeol/issues/269 Managing a list of regex's for all potential package version strings is likely to become really tedious. Instead of hard...
**What would you like to be added**: Motivated by [this LinkedIn post](https://www.linkedin.com/posts/rorym_a-one-image-illustration-of-why-supply-chain-activity-7125043980777484288-HA5P) by Rory McCune  We should be able to identify and flag deprecated base images. There is work...