Tim Gerla

Thanks @luhring, we'll add this to the backlog.

Hi @EnguerrandDeclercq, thank you for the suggestion, and sorry for the long time taken to reply! We think this is a good suggestion and we'll put it in our backlog...

Hi @amouat, thanks for the report and sorry it's taken us so long to acknowledge. We have some work to do to fix the summary counts so we'll put this...

Hi @luhring, I believe you brought something like this up on the Anchore Slack recently? Just wanted to make sure you were aware of this issue.

Hi @lucacome, thanks for the report. Are you able to share the yaml code of the GitHub action you are running, or some other way to reproduce this issue? That...

Hi @edhinard, thanks for the report. We need to do some more investigation here. Please stay tuned and we'll get in touch if we need any more info. We think...

Hi @nishakm, I ran Syft on both of these SBOMs for a quick test to see what was going on: ``` tgerla@Timothys-MacBook-Pro-2 syft-2525 % syft package_json.spdx.json ✔ Indexed file system...

Hi @dwertent, thank you for the detailed report. We do have some circumstances where the summary count won't line up with the default table view output, specifically when there are...

Hi @lmco-seth, thanks for the report! It looks like we probably need to improve the CycloneDX importer to handle this case. We will put this in our backlog for a...

Hi @fingeromer, thanks for the suggestion. We have an issue to track dependency relationships in more ecosystems, including Javascript: https://github.com/anchore/syft/issues/572 -- once implemented, we could use those relationships to filter...