We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. Weβll occasionally send you account related emails.
Already on GitHub? Sign in to your account
π
What happened:
There appears to be a missing dependency when running make test.
make test
PASS ok github.com/anchore/grype/test/integration 372.701s go run cmd/grype/main.go alpine:latest β Vulnerability DB [updated] β Pulled image β Loaded image alpine:latest β Parsed image sha256:05455a08881ea9cf0e752bc48e61bbd71a34c029bb13df01e40e3e70e0d007bd β Cataloged contents 686b46a0213ffe2331b98dd30f3e0b552bb602845c2246ac85b8dea35403e62a βββ β Packages [15 packages] βββ β File digests [80 files] βββ β File metadata [80 locations] βββ β Executables [17 executables] β Scanned for vulnerabilities [12 vulnerability matches] βββ by severity: 0 critical, 0 high, 12 medium, 0 low, 0 negligible βββ by status: 0 fixed, 12 not-fixed, 0 ignored NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY busybox 1.36.1-r15 apk CVE-2023-42366 Medium busybox 1.36.1-r15 apk CVE-2023-42365 Medium busybox 1.36.1-r15 apk CVE-2023-42364 Medium busybox 1.36.1-r15 apk CVE-2023-42363 Medium busybox-binsh 1.36.1-r15 apk CVE-2023-42366 Medium busybox-binsh 1.36.1-r15 apk CVE-2023-42365 Medium busybox-binsh 1.36.1-r15 apk CVE-2023-42364 Medium busybox-binsh 1.36.1-r15 apk CVE-2023-42363 Medium ssl_client 1.36.1-r15 apk CVE-2023-42366 Medium ssl_client 1.36.1-r15 apk CVE-2023-42365 Medium ssl_client 1.36.1-r15 apk CVE-2023-42364 Medium ssl_client 1.36.1-r15 apk CVE-2023-42363 Medium cd schema/cyclonedx && make make[1]: Entering directory '/home/alan/Source/anchore/grype/schema/cyclonedx' go run ../../cmd/grype -c ../../test/grype-test-config.yaml ubuntu:latest -v -o cyclonedx-xml > bom.xml [0000] INFO grype version: [not provided] [0012] INFO found 40 vulnerability matches across 102 packages xmllint --noout --schema ./cyclonedx.xsd bom.xml make[1]: xmllint: No such file or directory make[1]: *** [Makefile:9: validate-schema-xml] Error 127 make[1]: Leaving directory '/home/alan/Source/anchore/grype/schema/cyclonedx' make: *** [Makefile:95: validate-cyclonedx-schema] Error 2
What you expected to happen:
Tests to run, and pass. π€
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know?:
Environment:
grype version
cat /etc/os-release
cat /etc/os-release PRETTY_NAME="Ubuntu 23.10" NAME="Ubuntu" VERSION_ID="23.10" VERSION="23.10 (Mantic Minotaur)" VERSION_CODENAME=mantic ID=ubuntu ID_LIKE=debian HOME_URL="https://www.ubuntu.com/" SUPPORT_URL="https://help.ubuntu.com/" BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/" PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy" UBUNTU_CODENAME=mantic LOGO=ubuntu-logo
The text was updated successfully, but these errors were encountered:
Definitely related to #1773
Grype seems to have some technical debt associated with it's current dev flows that are not observed in syft.
We should migrate grype over to use the binny workflows so that our installed tooling is consistent: https://github.com/anchore/syft/blob/main/.binny.yaml
binny
Thanks for the report @popey!
Sorry, something went wrong.
No branches or pull requests
π
What happened:
There appears to be a missing dependency when running
make test
.What you expected to happen:
Tests to run, and pass. π€
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know?:
Environment:
grype version
: Tip of gitcat /etc/os-release
or similar):The text was updated successfully, but these errors were encountered: