-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(sbom): attach nested packages to Application #8144
fix(sbom): attach nested packages to Application #8144
Conversation
Signed-off-by: knqyf263 <[email protected]>
Signed-off-by: knqyf263 <[email protected]>
Signed-off-by: knqyf263 <[email protected]>
@DmitriyLewen I've added three changes to prevent potential issues:
Please verify these changes maintain the expected behavior while addressing the identified issues. |
Signed-off-by: knqyf263 <[email protected]>
Thank you for handling the OS packages. Looks good now 👍
It works as expected. |
@aqua-bot backport release/v0.58 |
Signed-off-by: knqyf263 <[email protected]> Co-authored-by: knqyf263 <[email protected]>
Backport PR created: #8168 |
Description
There is a problem with decoding nested packages.
We create 2 attachments for them (see #8143).
This PR recursively checks all related packages and associates them with an attachment.
Example (test file packages:
Before:
After:
Related issues
sbom
mode #8143Checklist