Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package grype for openSUSE:Factory checked in at 2026-04-11 22:25:59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/grype (Old) and /work/SRC/openSUSE:Factory/.grype.new.21863 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "grype" Sat Apr 11 22:25:59 2026 rev:119 rq:1346040 version:0.111.0 Changes: -------- --- /work/SRC/openSUSE:Factory/grype/grype.changes 2026-03-20 21:22:07.815304850 +0100 +++ /work/SRC/openSUSE:Factory/.grype.new.21863/grype.changes 2026-04-11 22:30:36.454779252 +0200 @@ -1,0 +2,46 @@ +Sat Apr 11 07:15:24 UTC 2026 - Johannes Kastl <[email protected]> + +- Update to version 0.111.0: + * Added Features + - db diff for v6 [#3277 @kzantow] + - add ProvideFromReader for in-memory SBOM processing [#3344 + @jspilman] + - match on hummingbird [#3331 @willmurphyscode] + - CSAF vex transformer [#3349 @willmurphyscode] + - curated mapping of known CPE to grype package specifiers + [#3332 @westonsteimel] + - templates/html.tmpl - Add Grype version and vulnerability DB + version [#2877 #3345 @kenvez] + * Bug Fixes + - normalise version constraint types in v6 db [#3328 + @westonsteimel] + - set alpm ecosystem for Arch Linux packages [#3324 + @westonsteimel] + - spec-compliant CPE string formatting for db search commands + [#3308 @westonsteimel] + - Update APK NAK handling to be based on + ownership-by-file-overlap relationship [#3267 #3286 @kzantow] + - Wrong version output [#3306] + * Additional Changes + - update anchore dependencies [#3321 @anchore-oss-update-bot] + - update tool versions [#3319 @anchore-oss-update-bot] + - chore(deps): update tools to latest versions (#3320) + - chore(deps): bump actions/setup-go in + /.github/actions/bootstrap (#3323) + - chore(deps): bump anchore/sbom-action from 0.23.1 to 0.24.0 + (#3322) + - chore(deps): bump github.com/klauspost/compress from 1.18.4 + to 1.18.5 (#3317) + - chore(deps): bump slackapi/slack-github-action from 2.1.1 to + 3.0.1 (#3303) + - chore(deps): bump github.com/google/go-containerregistry + (#3313) + - chore(deps): bump actions/cache in /.github/actions/bootstrap + (#3315) + - chore(deps): bump actions/cache from 5.0.3 to 5.0.4 (#3314) + - chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.20 + to 0.5.21 (#3309) + - chore(deps): pin some go dependencies (#3311) + - chore(deps): update tools to latest versions (#3307) + +------------------------------------------------------------------- Old: ---- grype-0.110.0.obscpio New: ---- grype-0.111.0.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ grype.spec ++++++ --- /var/tmp/diff_new_pack.53FDnI/_old 2026-04-11 22:30:38.498862855 +0200 +++ /var/tmp/diff_new_pack.53FDnI/_new 2026-04-11 22:30:38.514863509 +0200 @@ -17,7 +17,7 @@ Name: grype -Version: 0.110.0 +Version: 0.111.0 Release: 0 Summary: A vulnerability scanner for container images and filesystems License: Apache-2.0 ++++++ _service ++++++ --- /var/tmp/diff_new_pack.53FDnI/_old 2026-04-11 22:30:38.574865963 +0200 +++ /var/tmp/diff_new_pack.53FDnI/_new 2026-04-11 22:30:38.590866618 +0200 @@ -3,7 +3,7 @@ <param name="url">https://github.com/anchore/grype</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v0.110.0</param> + <param name="revision">v0.111.0</param> <param name="match-tag">v*</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.53FDnI/_old 2026-04-11 22:30:38.650869072 +0200 +++ /var/tmp/diff_new_pack.53FDnI/_new 2026-04-11 22:30:38.654869235 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/anchore/grype</param> - <param name="changesrevision">dee8de483dfba5b4e0bc0aa8e4ab2ce52137e490</param></service></servicedata> + <param name="changesrevision">1f19355a7ee2d7e2bd58da6255bdeb618eb0c0d1</param></service></servicedata> (No newline at EOF) ++++++ grype-0.110.0.obscpio -> grype-0.111.0.obscpio ++++++ ++++ 19220 lines of diff (skipped) ++++++ grype.obsinfo ++++++ --- /var/tmp/diff_new_pack.53FDnI/_old 2026-04-11 22:30:59.163708047 +0200 +++ /var/tmp/diff_new_pack.53FDnI/_new 2026-04-11 22:30:59.175708538 +0200 @@ -1,5 +1,5 @@ name: grype -version: 0.110.0 -mtime: 1773941825 -commit: dee8de483dfba5b4e0bc0aa8e4ab2ce52137e490 +version: 0.111.0 +mtime: 1775682860 +commit: 1f19355a7ee2d7e2bd58da6255bdeb618eb0c0d1 ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/grype/vendor.tar.gz /work/SRC/openSUSE:Factory/.grype.new.21863/vendor.tar.gz differ: char 13, line 1
