Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: anchore/syft
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v1.30.0
Choose a base ref
...
head repository: anchore/syft
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v1.31.0
Choose a head ref
  • 9 commits
  • 63 files changed
  • 7 contributors

Commits on Aug 11, 2025

  1. chore(deps): update CPE dictionary index (#4126) 

    Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: wagoodman <590471+wagoodman@users.noreply.github.com>
    @anchore-actions-token-generator @wagoodman
    anchore-actions-token-generator[bot] and wagoodman authored Aug 11, 2025
    Configuration menu
    Copy the full SHA
    3e5befc View commit details
    Browse the repository at this point in the history

  2. chore: update GoReleaser configurations (#4128) 

    Signed-off-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>
    @emmanuel-ferdman
    emmanuel-ferdman authored Aug 11, 2025
    Configuration menu
    Copy the full SHA
    21496e7 View commit details
    Browse the repository at this point in the history

  3. chore(deps): bump actions/checkout from 4.2.2 to 5.0.0 (#4130) 

    Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.2 to 5.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@11bd719...08c6903)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Aug 11, 2025
    Configuration menu
    Copy the full SHA
    6452a19 View commit details
    Browse the repository at this point in the history

Commits on Aug 12, 2025

  1. fix: closed reader during java binary detection (#4129) 

    Signed-off-by: Keith Zantow <kzantow@gmail.com>
    @kzantow
    kzantow authored Aug 12, 2025
    Configuration menu
    Copy the full SHA
    9f956dc View commit details
    Browse the repository at this point in the history

  2. fix: support multiple letters in openssl patch version (#4106) 

    Signed-off-by: honigbot <thesoftbear@gmail.com>
    @honigbot
    honigbot authored Aug 12, 2025
    Configuration menu
    Copy the full SHA
    80e6117 View commit details
    Browse the repository at this point in the history

  3. chore(deps): bump github/codeql-action from 3.29.8 to 3.29.9 (#4134) 

    Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.29.8 to 3.29.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@76621b6...df55935)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 3.29.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Aug 12, 2025
    Configuration menu
    Copy the full SHA
    104df88 View commit details
    Browse the repository at this point in the history

  4. feat: update syft license construction to be able to look up by URL (#… 

    …4132)

---------
Signed-off-by: Christopher Phillips <32073428+spiffcs@users.noreply.github.com>
    @spiffcs
    spiffcs authored Aug 12, 2025
    Configuration menu
    Copy the full SHA
    89470ec View commit details
    Browse the repository at this point in the history

  5. feat: add package supplier flag (#4131) 

    ---------

Signed-off-by: Christopher Phillips <32073428+spiffcs@users.noreply.github.com>
    @spiffcs
    spiffcs authored Aug 12, 2025
    Configuration menu
    Copy the full SHA
    6b48bd4 View commit details
    Browse the repository at this point in the history

Commits on Aug 13, 2025

  1. chore(deps): bump zizmorcore/zizmor-action from 0.1.1 to 0.1.2 (#4135) 

    Bumps [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) from 0.1.1 to 0.1.2.
- [Release notes](https://github.com/zizmorcore/zizmor-action/releases)
- [Commits](zizmorcore/zizmor-action@f52a838...5ca5fc7)

---
updated-dependencies:
- dependency-name: zizmorcore/zizmor-action
  dependency-version: 0.1.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Aug 13, 2025
    Configuration menu
    Copy the full SHA
    ab9db00 View commit details
    Browse the repository at this point in the history
Loading