8000 Empty source during decoding an SBOM document should not be fatal by wagoodman · Pull Request #3791 · anchore/syft · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Empty source during decoding an SBOM document should not be fatal #3791

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 11, 2025
Merged

Empty source during decoding an SBOM document should not be fatal #3791

merged 1 commit into from
Apr 11, 2025

Conversation

wagoodman
Copy link
Contributor

When decoding an SBOM document that does not have a source or primary purpose package there we should still allow for the decoding to continue without error; today we get this:

[0000] ERROR failed to catalog: unable to decode sbom: unable to decode syft-json document: unable to find source metadata type=""

With this fix the decoding would be allowed to continue.

Type of change

  • Bug fix (non-breaking change which fixes an issue)

Checklist:

  • I have added unit tests that cover changed behavior
  • I have tested my code in common scenarios and confirmed there are no regressions
  • I have added comments to my code, particularly in hard-to-understand sections

@wagoodman
empty source during decoding should not be fatal
a18a25f 
Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>
@wagoodman wagoodman added the bug Something isn't working label Apr 11, 2025
@wagoodman wagoodman self-assigned this Apr 11, 2025
@wagoodman wagoodman added this to OSS Apr 11, 2025
@wagoodman wagoodman changed the title Empty source during decoding should not be fatal Empty source during decoding an SBOM document should not be fatal Apr 11, 2025
@wagoodman wagoodman moved this to In Review in OSS Apr 11, 2025
@wagoodman wagoodman enabled auto-merge (squash) April 11, 2025 13:01
@wagoodman wagoodman requested a review from a team April 11, 2025 13:01
@wagoodman wagoodman merged commit 24df095 into main Apr 11, 2025
13 checks passed
@wagoodman wagoodman deleted the fix-empty-source branch April 11, 2025 14:12
@github-project-automation github-project-automation bot moved this from In Review to Done in OSS Apr 11, 2025
douglasclarke pushed a commit to douglasclarke/syft that referenced this pull request Apr 17, 2025
@wagoodman @douglasclarke
empty source during decoding should not be fatal (anchore#3791)
c05cb6f 
Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@spiffcs spiffcs spiffcs approved these changes

Assignees

@wagoodman wagoodman

Labels
bug Something isn't working
Projects
OSS
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@wagoodman @spiffcs
0