Alex Goodman
Alex Goodman
It would be ideal to be able to `exec` into an ECS task (container) and keep and inventory that is searchable by ECS service name.
Though there is a configured user, it would be nice to override the user on cli via the `@` approach that all ssh-like tools support
It would be nice to have something that acted like `ssh ... -t tmux attach-session` or `ssh ... -t -- bash -c "tmux attach || tmux new"` to attach or...
This issue is meant to be a spot to host discussion on a couple of related topics: - should syft **gather** information from external sources (e.g. maven.org, pypi.org, rubygems.org, etc.)...
It would be ideal to be able to identify and catalog [Nix](https://nixos.org/) packages.
It would be useful to catalog NuGet packages. We should consider deriving this information from one or more sources: - `packages.lock.json` which has pinned dependencies listed - `.nuspec` which contains...
syft should be aware of user-specified content files, which can override or add additional known packages to a catalog. This should be in feature parity with https://github.com/anchore/enterprise/issues/185
With #843 (via #1038 ) now you can set the specific set of catalogers to run when generating an SBOM: ``` syft myimg:latest --catalogers go-mod-cataloger # run the go.mod package...
**What would you like to be added**: More reusable primitives when syft is used as a library. This would be able to do at least the following tasks: - get...
**What would you like to be added**: If a container image (or directory) being scanned contains an SBOM it would be interesting to consider taking additional actions based on detecting...