cataloger

package

v0.88.0 Latest Latest Go to latest Published: Aug 25, 2023 License: Apache-2.0 Imports: 42 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/anchore/syft

Links

Open Source Insights

Documentation ¶

Overview ¶

Package cataloger provides the ability to process files from a container image or file system and discover packages (gems, wheels, jars, rpms, debs, etc). Specifically, this package contains both a catalog function to utilize all catalogers defined in child packages as well as the interface definition to implement a cataloger.

Index ¶

Constants
func AllCatalogers(cfg Config) []pkg.Cataloger
func Catalog(resolver file.Resolver, _ *linux.Release, parallelism int, ...) (*pkg.Collection, []artifact.Relationship, error)
func DirectoryCatalogers(cfg Config) []pkg.Cataloger
func ExcludeBinaryByFileOwnershipOverlap(r artifact.Relationship, c *pkg.Collection) bool
func ImageCatalogers(cfg Config) []pkg.Cataloger
func RequestedAllCatalogers(cfg Config) bool
type Config
- func DefaultConfig() Config
- func (c Config) Java() java.Config
type Monitor
type SearchConfig
- func DefaultSearchConfig() SearchConfig

Constants ¶

View Source

const AllCatalogersPattern = "all"

Variables ¶

This section is empty.

Functions ¶

func AllCatalogers ¶ added in v0.30.0

func AllCatalogers(cfg Config) []pkg.Cataloger

AllCatalogers returns all implemented catalogers

func Catalog ¶

func Catalog(resolver file.Resolver, _ *linux.Release, parallelism int, catalogers ...pkg.Cataloger) (*pkg.Collection, []artifact.Relationship, error)

Catalog a given source (container image or filesystem) with the given catalogers, returning all discovered packages. In order to efficiently retrieve contents from a underlying container image the content fetch requests are done in bulk. Specifically, all files of interest are collected from each catalogers and accumulated into a single request.

func DirectoryCatalogers ¶

func DirectoryCatalogers(cfg Config) []pkg.Cataloger

DirectoryCatalogers returns a slice of locally implemented catalogers that are fit for detecting packages from index files (and select installations)

func ExcludeBinaryByFileOwnershipOverlap ¶ added in v0.87.0

func ExcludeBinaryByFileOwnershipOverlap(r artifact.Relationship, c *pkg.Collection) bool

ExcludeBinaryByFileOwnershipOverlap will remove packages from a collection given the following properties are true 1) the relationship between packages is OwnershipByFileOverlap 2) the parent is an "os" package 3) the child is a synthetic package generated by the binary cataloger 4) the package names are identical This was implemented as a way to help resolve: https://github.com/anchore/syft/issues/931

func ImageCatalogers ¶

func ImageCatalogers(cfg Config) []pkg.Cataloger

ImageCatalogers returns a slice of locally implemented catalogers that are fit for detecting installations of packages.

func RequestedAllCatalogers ¶ added in v0.50.0

func RequestedAllCatalogers(cfg Config) bool

Types ¶

type Config ¶ added in v0.35.0

type Config struct {
	Search                          SearchConfig
	Golang                          golang.GoCatalogerOpts
	LinuxKernel                     kernel.LinuxCatalogerConfig
	Python                          python.CatalogerConfig
	Catalogers                      []string
	Parallelism                     int
	ExcludeBinaryOverlapByOwnership bool
}

TODO: these field naming vs helper function naming schemes are inconsistent.

func DefaultConfig ¶ added in v0.35.0

func DefaultConfig() Config

func (Config) Java ¶ added in v0.35.0

func (c Config) Java() java.Config

type Monitor ¶

type Monitor struct {
	FilesProcessed     progress.Monitorable // the number of files selected and contents analyzed from all registered catalogers
	PackagesDiscovered progress.Monitorable // the number of packages discovered from all registered catalogers
}

Monitor provides progress-related data for observing the progress of a Catalog() call (published on the event bus).

type SearchConfig ¶ added in v0.35.0

type SearchConfig struct {
	IncludeIndexedArchives   bool
	IncludeUnindexedArchives bool
	Scope                    source.Scope
}

func DefaultSearchConfig ¶ added in v0.35.0

func DefaultSearchConfig() SearchConfig

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
alpm
apkdb Package apkdb provides a concrete Cataloger implementation for Alpine DB files.	Package apkdb provides a concrete Cataloger implementation for Alpine DB files.
binary
common
cpe
cpe/dictionary
cpe/dictionary/index-generator This program downloads the latest CPE dictionary from NIST and processes it into a JSON file that can be embedded into Syft for more accurate CPE results.	This program downloads the latest CPE dictionary from NIST and processes it into a JSON file that can be embedded into Syft for more accurate CPE results.
cpp
dart
deb Package deb provides a concrete Cataloger implementation for Debian package DB status files.	Package deb provides a concrete Cataloger implementation for Debian package DB status files.
dotnet
elixir Package elixir provides a concrete Cataloger implementation for elixir specific package manger files.	Package elixir provides a concrete Cataloger implementation for elixir specific package manger files.
erlang Package erlang provides a concrete Cataloger implementation for erlang specific package manger files.	Package erlang provides a concrete Cataloger implementation for erlang specific package manger files.
generic
golang Package golang provides a concrete Cataloger implementation for go.mod files.	Package golang provides a concrete Cataloger implementation for go.mod files.
internal/xcoff
haskell
internal
pkgtest
unionreader
java Package java provides a concrete Cataloger implementation for Java archives (jar, war, ear, par, sar, jpi, hpi, and native-image formats).	Package java provides a concrete Cataloger implementation for Java archives (jar, war, ear, par, sar, jpi, hpi, and native-image formats).
javascript Package javascript provides a concrete Cataloger implementation for JavaScript ecosystem files (yarn and npm).	Package javascript provides a concrete Cataloger implementation for JavaScript ecosystem files (yarn and npm).
kernel Package kernel provides a concrete Cataloger implementation for linux kernel and module files.	Package kernel provides a concrete Cataloger implementation for linux kernel and module files.
nix
php Package php provides a concrete Cataloger implementation for PHP ecosystem files.	Package php provides a concrete Cataloger implementation for PHP ecosystem files.
portage Package portage provides a concrete Cataloger implementation for Gentoo Portage.	Package portage provides a concrete Cataloger implementation for Gentoo Portage.
python
r
rpm Package rpm provides a concrete DBCataloger implementation for RPM "Package" DB files and a FileCataloger for RPM files.	Package rpm provides a concrete DBCataloger implementation for RPM "Package" DB files and a FileCataloger for RPM files.
ruby Package ruby bundler provides a concrete Cataloger implementation for Ruby Gemfile.lock bundler files.	Package ruby bundler provides a concrete Cataloger implementation for Ruby Gemfile.lock bundler files.
rust Package rust provides a concrete Cataloger implementation for Cargo.lock files.	Package rust provides a concrete Cataloger implementation for Cargo.lock files.
sbom
swift Package swift provides a concrete Cataloger implementation for Podfile.lock and Package.resolved files.	Package swift provides a concrete Cataloger implementation for Podfile.lock and Package.resolved files.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL