kl-sinclair ca64d7fc31 feat(report): Include dependencies into scan result and cyclondex for supply chain security on Integration with GitHub Security Alerts (#1584) ...

* feat(report): Enhance scan result and cyclondex for supply chain security on Integration with GitHub Security Alerts

* derive ecosystem/version from dependency graph

* fix vars name && fetch manifest info on GSA && arrange ghpkgToPURL structure

* fix miscs

* typo in error message

* fix ecosystem equally to trivy

* miscs

* refactoring

* recursive dependency graph pagination

* change var name && update comments

* omit map type of ghpkgToPURL in signatures

* fix vars name

* goimports

* make fmt

* fix comment

Co-authored-by: MaineK00n <mainek00n.1229@gmail.com>

2023-01-20 15:32:36 +09:00

..

bolt_test.go

chore: tidy go.mod, add arm64 and workflows update (#1461)

2022-06-09 06:10:07 +09:00

bolt.go

feat(report): Include dependencies into scan result and cyclondex for supply chain security on Integration with GitHub Security Alerts (#1584)

2023-01-20 15:32:36 +09:00

db.go

Change GPL v3 to AGPL v3 because of aquasecurity/trivy dependency (#897)

2019-09-09 21:12:17 +09:00