commit grype for openSUSE:Factory

Source-Sync Fri, 10 Mar 2023 13:07:49 -0800

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-03-10 22:07:21
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and      /work/SRC/openSUSE:Factory/.grype.new.31432 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "grype"

Fri Mar 10 22:07:21 2023 rev:20 rq:1070558 version:0.59.1

Changes:
--------
--- /work/SRC/openSUSE:Factory/grype/grype.changes      2023-03-04 
22:44:21.768082963 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.31432/grype.changes   2023-03-10 
22:07:25.513144872 +0100
@@ -1,0 +2,8 @@
+Thu Mar 09 15:31:48 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.59.1:
+  * Update grype bootstrap tools to latest versions. (#1163)
+  * Update Syft to v0.74.1 (#1168)
+  * fix: correct APK CPE version comparison logic (#1165)
+
+-------------------------------------------------------------------

Old:
----
  grype-0.59.0.tar.gz

New:
----
  grype-0.59.1.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ grype.spec ++++++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.601154379 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.605154397 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:           grype
-Version:        0.59.0
+Version:        0.59.1
 Release:        0
 Summary:        A vulnerability scanner for container images and filesystems
 License:        Apache-2.0

++++++ _service ++++++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.645154579 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.649154597 +0100
@@ -3,7 +3,7 @@
     <param name="url">https://github.com/anchore/grype</param>
     <param name="scm">git</param>
     <param name="exclude">.git</param>
-    <param name="revision">v0.59.0</param>
+    <param name="revision">v0.59.1</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="changesgenerate">enable</param>
     <param name="versionrewrite-pattern">v(.*)</param>
@@ -17,7 +17,7 @@
     <param name="compression">gz</param>
   </service>
   <service name="go_modules" mode="disabled">
-    <param name="archive">grype-0.59.0.tar.gz</param>
+    <param name="archive">grype-0.59.1.tar.gz</param>
   </service>
 </services>
 

++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.677154724 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.681154742 +0100
@@ -1,6 +1,6 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/anchore/grype</param>
-              <param 
name="changesrevision">5754360376ace11befb1bd9fa4b0f97d79ea2344</param></service></servicedata>
+              <param 
name="changesrevision">29b646568901d1ef48a528cf35f67f3cead49c9f</param></service></servicedata>
 (No newline at EOF)
 

++++++ grype-0.59.0.tar.gz -> grype-0.59.1.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/Makefile new/grype-0.59.1/Makefile
--- old/grype-0.59.0/Makefile   2023-03-03 22:17:44.000000000 +0100
+++ new/grype-0.59.1/Makefile   2023-03-09 15:41:19.000000000 +0100
@@ -14,7 +14,7 @@
 GOSIMPORTS_VERSION := v0.3.7
 BOUNCER_VERSION := v0.4.0
 CHRONICLE_VERSION := v0.6.0
-GORELEASER_VERSION := v1.15.2
+GORELEASER_VERSION := v1.16.0
 YAJSV_VERSION := v1.4.1
 QUILL_VERSION := v0.2.0
 GLOW_VERSION := v1.5.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/go.mod new/grype-0.59.1/go.mod
--- old/grype-0.59.0/go.mod     2023-03-03 22:17:44.000000000 +0100
+++ new/grype-0.59.1/go.mod     2023-03-09 15:41:19.000000000 +0100
@@ -36,7 +36,7 @@
        github.com/scylladb/go-set v1.0.3-0.20200225121959-cc7b2070d91e
        github.com/sergi/go-diff v1.3.1
        github.com/sirupsen/logrus v1.9.0
-       github.com/spf13/afero v1.9.4
+       github.com/spf13/afero v1.9.5
        github.com/spf13/cobra v1.6.1
        github.com/spf13/pflag v1.0.5
        github.com/spf13/viper v1.15.0
@@ -45,7 +45,7 @@
        github.com/wagoodman/go-progress v0.0.0-20230301185719-21920a456ad5
        github.com/wagoodman/jotframe v0.0.0-20211129225309-56b0d0a4aebb
        github.com/x-cray/logrus-prefixed-formatter v0.5.2
-       golang.org/x/term v0.5.0
+       golang.org/x/term v0.6.0
        gopkg.in/yaml.v2 v2.4.0
        gorm.io/gorm v1.23.10
 )
@@ -53,7 +53,7 @@
 require (
        github.com/anchore/go-logger v0.0.0-20220728155337-03b66a5207d8
        github.com/anchore/sqlite v1.4.6-0.20220607210448-bcc6ee5c4963
-       github.com/anchore/syft v0.74.0
+       github.com/anchore/syft v0.74.1
        github.com/hako/durafmt v0.0.0-20210608085754-5c1018a4e16b
        github.com/mitchellh/mapstructure v1.5.0
 )
@@ -154,14 +154,14 @@
        go.uber.org/goleak v1.2.0 // indirect
        golang.org/x/crypto v0.5.0 // indirect
        golang.org/x/exp v0.0.0-20230202163644-54bba9f4231b // indirect
-       golang.org/x/mod v0.8.0 // indirect
-       golang.org/x/net v0.7.0 // indirect
+       golang.org/x/mod v0.9.0 // indirect
+       golang.org/x/net v0.8.0 // indirect
        golang.org/x/oauth2 v0.4.0 // indirect
        golang.org/x/sync v0.1.0 // indirect
-       golang.org/x/sys v0.5.0 // indirect
-       golang.org/x/text v0.7.0 // indirect
+       golang.org/x/sys v0.6.0 // indirect
+       golang.org/x/text v0.8.0 // indirect
        golang.org/x/time v0.2.0 // indirect
-       golang.org/x/tools v0.2.0 // indirect
+       golang.org/x/tools v0.6.0 // indirect
        golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 // indirect
        google.golang.org/api v0.107.0 // indirect
        google.golang.org/appengine v1.6.7 // indirect
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/go.sum new/grype-0.59.1/go.sum
--- old/grype-0.59.0/go.sum     2023-03-03 22:17:44.000000000 +0100
+++ new/grype-0.59.1/go.sum     2023-03-09 15:41:19.000000000 +0100
@@ -234,8 +234,8 @@
 github.com/anchore/sqlite v1.4.6-0.20220607210448-bcc6ee5c4963/go.mod 
h1:AVRyXOUP0hTz9Cb8OlD1XnwA8t4lBPfTuwPHmEUuiLc=
 github.com/anchore/stereoscope v0.0.0-20230301191755-abfb374a1122 
h1:Oe2PE8zNbJH4nGZoCIC/VZBgpr62BInLnUqIMZICUOk=
 github.com/anchore/stereoscope v0.0.0-20230301191755-abfb374a1122/go.mod 
h1:IihP/SUVHP94PBwIP2bepOB/c0MVadcII7lxo13Ijzs=
-github.com/anchore/syft v0.74.0 h1:a3ogFiZfC0IWQVz2rNeXH/fhcd+jzeNG+MWlSpkZOzg=
-github.com/anchore/syft v0.74.0/go.mod 
h1:zVJ7rhUaW3dxNNYhSWVTgfi7e4oJ9codJD48Uq5xnP8=
+github.com/anchore/syft v0.74.1 h1:gR0I9t76hYz97gZOak9ahPTwT4POkXHxad/x2xilbpA=
+github.com/anchore/syft v0.74.1/go.mod 
h1:TljwLtC66GzBIiJmGhAMctgV9wjVp4g71aTJs4LkEyc=
 github.com/andreyvit/diff v0.0.0-20170406064948-c7f18ee00883/go.mod 
h1:rCTlJbsFo29Kk6CurOXKm700vrz8f0KW0JNfpkRJY/8=
 github.com/andybalholm/brotli v1.0.1/go.mod 
h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y=
 github.com/andybalholm/brotli v1.0.4 
h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
@@ -731,8 +731,8 @@
 github.com/spdx/tools-golang v0.5.0-rc1/go.mod 
h1:LI6onw172PdO57Ob/hgnLDD4Y2PMnroeNT3wO/2WJJI=
 github.com/spf13/afero v1.3.3/go.mod 
h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/spf13/afero v1.6.0/go.mod 
h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
-github.com/spf13/afero v1.9.4 h1:Sd43wM1IWz/s1aVXdOBkjJvuP8UdyqioeE4AmM0QsBs=
-github.com/spf13/afero v1.9.4/go.mod 
h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcDf8Y=
+github.com/spf13/afero v1.9.5 h1:stMpOSZFs//0Lv29HduCmli3GUfpFoF3Y1Q/aXj/wVM=
+github.com/spf13/afero v1.9.5/go.mod 
h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
 github.com/spf13/cast v1.3.1/go.mod 
h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cast v1.4.1/go.mod 
h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cast v1.5.0 h1:rj3WzYc11XZaIZMPKmwP96zkFEnnAmV8s6XbB2aY32w=
@@ -839,7 +839,7 @@
 golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod 
h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod 
h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod 
h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa/go.mod 
h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod 
h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.3.0/go.mod 
h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4=
 golang.org/x/crypto v0.5.0 h1:U/0M97KRkSFvyD/3FSmdP5W5swImpNgle/EHFhOsQPE=
 golang.org/x/crypto v0.5.0/go.mod 
h1:NK/OQwhpMQP3MwtdjgLlYHnH9ebylxKWv3e0fK+mkQU=
@@ -882,8 +882,8 @@
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod 
h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.8.0 h1:LUYupSeNrTNCGzR/hVBk2NHZO4hXcVaW1k4Qx7rjPx8=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.9.0 h1:KENHtAZL2y3NLMYZeHY9DW8HW8V+kQyJsY/V9JlKvCs=
+golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod 
h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod 
h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod 
h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -928,6 +928,7 @@
 golang.org/x/net v0.0.0-20210410081132-afb366fc7cd1/go.mod 
h1:9tjilg8BloeKEkVJvy7fQ90B1CfIiPueXVOjqfkSzI8=
 golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod 
h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod 
h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod 
h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod 
h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod 
h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220325170049-de3da57026de/go.mod 
h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
@@ -941,8 +942,8 @@
 golang.org/x/net v0.0.0-20221014081412-f15817d10f9b/go.mod 
h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
 golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
-golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.8.0 h1:Zrh2ngAOFYneWTAIAPethzeaQLuHwhuBkuV6ZiRnUaQ=
+golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod 
h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod 
h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod 
h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -1081,16 +1082,16 @@
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod 
h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.6.0 h1:MVltZSvRTcU2ljQOhs94SXPftV6DCNnZViHeQps87pQ=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod 
h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod 
h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod 
h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod 
h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
-golang.org/x/term v0.5.0 h1:n2a8QNdAb0sZNpU9R1ALUXBbY+w51fCQDN+7EdxNBsY=
-golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
+golang.org/x/term v0.6.0 h1:clScbb1cHjoCkyRbWwBEUZ5H/tIFu5TAXIqaZD0Gcjw=
+golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod 
h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod 
h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -1101,8 +1102,8 @@
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.8.0 h1:57P1ETyNKtuIjB4SRd15iJxuhj8Gc416Y78H3qgMh68=
+golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod 
h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod 
h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod 
h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -1167,8 +1168,8 @@
 golang.org/x/tools v0.1.4/go.mod 
h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod 
h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.12/go.mod 
h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.2.0 h1:G6AHpWxTMGY1KyEYoAQ5WTtIekUUvDNjan3ugu60JvE=
-golang.org/x/tools v0.2.0/go.mod 
h1:y4OqIKeOV/fWJetJ8bXPU1sEVniLMIyDAZWeHdV+NTA=
+golang.org/x/tools v0.6.0 h1:BOw41kyTf3PuCW1pVQf8+Cyg8pMlkYB1oo9iJ6D/lKM=
+golang.org/x/tools v0.6.0/go.mod 
h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod 
h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod 
h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod 
h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/grype/matcher/apk/matcher_test.go 
new/grype-0.59.1/grype/matcher/apk/matcher_test.go
--- old/grype-0.59.0/grype/matcher/apk/matcher_test.go  2023-03-03 
22:17:44.000000000 +0100
+++ new/grype-0.59.1/grype/matcher/apk/matcher_test.go  2023-03-09 
15:41:19.000000000 +0100
@@ -368,6 +368,81 @@
        assertMatches(t, expected, actual)
 }
 
+func TestNvdMatchesProperVersionFiltering(t *testing.T) {
+       nvdVulnMatch := grypeDB.Vulnerability{
+               ID:                "CVE-2020-1",
+               VersionConstraint: "<= 0.9.11",
+               VersionFormat:     "unknown",
+               CPEs:              
[]string{`cpe:2.3:a:lib_vnc_project-\(server\):libvncserver:*:*:*:*:*:*:*:*`},
+               Namespace:         "nvd:cpe",
+       }
+       nvdVulnNoMatch := grypeDB.Vulnerability{
+               ID:                "CVE-2020-2",
+               VersionConstraint: "< 0.9.11",
+               VersionFormat:     "unknown",
+               CPEs:              
[]string{`cpe:2.3:a:lib_vnc_project-\(server\):libvncserver:*:*:*:*:*:*:*:*`},
+               Namespace:         "nvd:cpe",
+       }
+       store := mockStore{
+               backend: map[string]map[string][]grypeDB.Vulnerability{
+                       "nvd:cpe": {
+                               "libvncserver": 
[]grypeDB.Vulnerability{nvdVulnMatch, nvdVulnNoMatch},
+                       },
+               },
+       }
+
+       provider, err := db.NewVulnerabilityProvider(&store)
+       require.NoError(t, err)
+
+       m := Matcher{}
+       d, err := distro.New(distro.Alpine, "3.12.0", "")
+       if err != nil {
+               t.Fatalf("failed to create a new distro: %+v", err)
+       }
+       p := pkg.Package{
+               ID:      pkg.ID(uuid.NewString()),
+               Name:    "libvncserver",
+               Version: "0.9.11-r10",
+               Type:    syftPkg.ApkPkg,
+               CPEs: []cpe.CPE{
+                       
cpe.Must("cpe:2.3:a:*:libvncserver:0.9.11:*:*:*:*:*:*:*"),
+               },
+       }
+
+       vulnFound, err := vulnerability.NewVulnerability(nvdVulnMatch)
+       assert.NoError(t, err)
+       vulnFound.CPEs = []cpe.CPE{cpe.Must(nvdVulnMatch.CPEs[0])}
+
+       expected := []match.Match{
+               {
+
+                       Vulnerability: *vulnFound,
+                       Package:       p,
+                       Details: []match.Detail{
+                               {
+                                       Type:       match.CPEMatch,
+                                       Confidence: 0.9,
+                                       SearchedBy: search.CPEParameters{
+                                               CPEs:      
[]string{"cpe:2.3:a:*:libvncserver:0.9.11:*:*:*:*:*:*:*"},
+                                               Namespace: "nvd:cpe",
+                                       },
+                                       Found: search.CPEResult{
+                                               CPEs:              
[]string{vulnFound.CPEs[0].BindToFmtString()},
+                                               VersionConstraint: 
vulnFound.Constraint.String(),
+                                               VulnerabilityID:   "CVE-2020-1",
+                                       },
+                                       Matcher: match.ApkMatcher,
+                               },
+                       },
+               },
+       }
+
+       actual, err := m.Match(provider, d, p)
+       assert.NoError(t, err)
+
+       assertMatches(t, expected, actual)
+}
+
 func TestNvdMatchesWithSecDBFix(t *testing.T) {
        nvdVuln := grypeDB.Vulnerability{
                ID:                "CVE-2020-1",
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/grype/search/cpe.go 
new/grype-0.59.1/grype/search/cpe.go
--- old/grype-0.59.0/grype/search/cpe.go        2023-03-03 22:17:44.000000000 
+0100
+++ new/grype-0.59.1/grype/search/cpe.go        2023-03-09 15:41:19.000000000 
+0100
@@ -3,6 +3,7 @@
 import (
        "fmt"
        "sort"
+       "strings"
 
        "github.com/facebookincubator/nvdtools/wfn"
        "github.com/scylladb/go-set/strset"
@@ -12,6 +13,7 @@
        "github.com/anchore/grype/grype/version"
        "github.com/anchore/grype/grype/vulnerability"
        "github.com/anchore/syft/syft/cpe"
+       syftPkg "github.com/anchore/syft/syft/pkg"
 )
 
 type CPEParameters struct {
@@ -56,6 +58,22 @@
        return true
 }
 
+func alpineCPEComparableVersion(version string) string {
+       // clean the alpine package version so that it compares correctly with 
the CPE version comparison logic
+       // alpine versions are suffixed with -r{buildindex}; however, if left 
intact CPE comparison logic will
+       // incorrectly treat these as a pre-release.  In actuality, we just 
want to treat 1.2.3-r21 as equivalent to
+       // 1.2.3 for purposes of CPE-based matching since the alpine fix should 
filter out any cases where a later
+       // build fixes something that was vulnerable in 1.2.3
+       components := strings.Split(version, "-r")
+       cpeComparableVersion := version
+
+       if len(components) == 2 {
+               cpeComparableVersion = components[0]
+       }
+
+       return cpeComparableVersion
+}
+
 // ByPackageCPE retrieves all vulnerabilities that match the generated CPE
 func ByPackageCPE(store vulnerability.ProviderByCPE, p pkg.Package, 
upstreamMatcher match.MatcherType) ([]match.Match, error) {
        // we attempt to merge match details within the same matcher when 
searching by CPEs, in this way there are fewer duplicated match
@@ -64,6 +82,11 @@
        for _, c := range p.CPEs {
                // prefer the CPE version, but if npt specified use the package 
version
                searchVersion := c.Version
+
+               if p.Type == syftPkg.ApkPkg {
+                       searchVersion = 
alpineCPEComparableVersion(searchVersion)
+               }
+
                if searchVersion == wfn.NA || searchVersion == wfn.Any {
                        searchVersion = p.Version
                }
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/.yardstick.yaml 
new/grype-0.59.1/test/quality/vulnerability-match-labels/.yardstick.yaml
--- old/grype-0.59.0/test/quality/vulnerability-match-labels/.yardstick.yaml    
2023-03-03 22:17:44.000000000 +0100
+++ new/grype-0.59.1/test/quality/vulnerability-match-labels/.yardstick.yaml    
2023-03-09 15:41:19.000000000 +0100
@@ -86,6 +86,6 @@
 
         - name: syft
           # note: we want to use a fixed version of syft for capturing all 
results (NOT "latest")
-          version: v0.68.1
+          version: v0.74.0
           # once we have results captured, don't re-capture them
           refresh: false
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/52616137-a980-4a3d-8201-18d3d0c1b357.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/52616137-a980-4a3d-8201-18d3d0c1b357.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/52616137-a980-4a3d-8201-18d3d0c1b357.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/52616137-a980-4a3d-8201-18d3d0c1b357.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "52616137-a980-4a3d-8201-18d3d0c1b357", "effective_cve": 
"CVE-2017-3735", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libssl1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:02:13+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3735"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/552e5171-93d4-41bb-9b2b-c8cc50fb78af.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/552e5171-93d4-41bb-9b2b-c8cc50fb78af.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/552e5171-93d4-41bb-9b2b-c8cc50fb78af.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/552e5171-93d4-41bb-9b2b-c8cc50fb78af.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "552e5171-93d4-41bb-9b2b-c8cc50fb78af", "effective_cve": 
"CVE-2020-28928", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "musl", "version": "1.1.11-r5"}, 
"timestamp": "2023-03-08T12:02:25+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-28928"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/be838420-aa57-44e6-ab3c-1b8e31fef60c.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/be838420-aa57-44e6-ab3c-1b8e31fef60c.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/be838420-aa57-44e6-ab3c-1b8e31fef60c.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/be838420-aa57-44e6-ab3c-1b8e31fef60c.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "be838420-aa57-44e6-ab3c-1b8e31fef60c", "effective_cve": 
"CVE-2017-3737", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libcrypto1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:01:55+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3737"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/bfc18374-6aa2-4320-97d8-b0548a2264f3.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/bfc18374-6aa2-4320-97d8-b0548a2264f3.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/bfc18374-6aa2-4320-97d8-b0548a2264f3.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/bfc18374-6aa2-4320-97d8-b0548a2264f3.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "bfc18374-6aa2-4320-97d8-b0548a2264f3", "effective_cve": 
"CVE-2017-3738", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libcrypto1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:02:07+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3738"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/c3444b9c-9ab6-47fe-a9d2-9036a7c09e8f.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/c3444b9c-9ab6-47fe-a9d2-9036a7c09e8f.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/c3444b9c-9ab6-47fe-a9d2-9036a7c09e8f.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/c3444b9c-9ab6-47fe-a9d2-9036a7c09e8f.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "c3444b9c-9ab6-47fe-a9d2-9036a7c09e8f", "effective_cve": 
"CVE-2017-3737", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libssl1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:02:14+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3737"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/dc7960ec-9828-412c-80f6-3c8c45957eee.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/dc7960ec-9828-412c-80f6-3c8c45957eee.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/dc7960ec-9828-412c-80f6-3c8c45957eee.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/dc7960ec-9828-412c-80f6-3c8c45957eee.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "dc7960ec-9828-412c-80f6-3c8c45957eee", "effective_cve": 
"CVE-2019-14697", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "musl", "version": "1.1.11-r5"}, 
"timestamp": "2023-03-08T12:02:23+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2019-14697"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e057d36c-87c0-4f56-9f1c-faa61874a10f.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e057d36c-87c0-4f56-9f1c-faa61874a10f.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e057d36c-87c0-4f56-9f1c-faa61874a10f.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e057d36c-87c0-4f56-9f1c-faa61874a10f.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "e057d36c-87c0-4f56-9f1c-faa61874a10f", "effective_cve": 
"CVE-2017-3738", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libssl1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:02:14+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3738"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e214b93f-8cb6-4b86-9e72-8cdbfa4f3ddd.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e214b93f-8cb6-4b86-9e72-8cdbfa4f3ddd.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e214b93f-8cb6-4b86-9e72-8cdbfa4f3ddd.json
  1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9/e214b93f-8cb6-4b86-9e72-8cdbfa4f3ddd.json
  2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "e214b93f-8cb6-4b86-9e72-8cdbfa4f3ddd", "effective_cve": 
"CVE-2017-3735", "image": {"exact": 
"docker.io/alpine@sha256:ddac200f3ebc9902fb8cfcd599f41feb2151f1118929da21bcef57dc276975f9"},
 "label": "TP", "package": {"name": "libcrypto1.0", "version": "1.0.2k-r0"}, 
"timestamp": "2023-03-08T12:01:23+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-3735"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/8a8f9b4e-602b-4af8-a886-bbf12a2a53d2.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/8a8f9b4e-602b-4af8-a886-bbf12a2a53d2.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/8a8f9b4e-602b-4af8-a886-bbf12a2a53d2.json
     2023-03-03 22:17:44.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/8a8f9b4e-602b-4af8-a886-bbf12a2a53d2.json
     1970-01-01 01:00:00.000000000 +0100
@@ -1 +0,0 @@
-{"ID": "8a8f9b4e-602b-4af8-a886-bbf12a2a53d2", "effective_cve": 
"CVE-2021-3733", "image": {"exact": 
"docker.io/anchore/test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f"},
 "label": "TP", "package": {"name": "python3", "version": "3.8.10-r0"}, 
"timestamp": "2023-02-13T17:39:12+00:00", "tool": "grype@v0.56.0-30-g17e11ac", 
"user": "westonsteimel", "vulnerability_id": "CVE-2021-3733"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/ad4ef1af-3e45-4652-9668-9fc159961e1a.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/ad4ef1af-3e45-4652-9668-9fc159961e1a.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/ad4ef1af-3e45-4652-9668-9fc159961e1a.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f/ad4ef1af-3e45-4652-9668-9fc159961e1a.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "ad4ef1af-3e45-4652-9668-9fc159961e1a", "effective_cve": 
"CVE-2021-3733", "image": {"exact": 
"docker.io/anchore/test_images@sha256:0825acea611c7c5cc792bc7cc20de44d7413fd287dc5afc4aab9c1891d037b4f"},
 "label": "FP", "package": {"name": "python3", "version": "3.8.10-r0"}, 
"timestamp": "2023-03-08T11:20:29+00:00", "tool": "grype@v0.59.0", "user": 
"westonsteimel", "vulnerability_id": "CVE-2021-3733"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/154ad902-f791-4d65-a3e6-300fe083e8eb.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/154ad902-f791-4d65-a3e6-300fe083e8eb.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/154ad902-f791-4d65-a3e6-300fe083e8eb.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/154ad902-f791-4d65-a3e6-300fe083e8eb.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "154ad902-f791-4d65-a3e6-300fe083e8eb", "effective_cve": 
"CVE-2020-35524", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:13+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-35524"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/1669c6ce-7b9c-4982-b49d-57f05f931f03.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/1669c6ce-7b9c-4982-b49d-57f05f931f03.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/1669c6ce-7b9c-4982-b49d-57f05f931f03.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/1669c6ce-7b9c-4982-b49d-57f05f931f03.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "1669c6ce-7b9c-4982-b49d-57f05f931f03", "effective_cve": 
"CVE-2019-14697", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "musl", "version": "1.1.16-r15"}, 
"timestamp": "2023-03-08T10:59:38+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2019-14697"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/19a6f061-01fd-49d3-9793-818610a74f67.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/19a6f061-01fd-49d3-9793-818610a74f67.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/19a6f061-01fd-49d3-9793-818610a74f67.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/19a6f061-01fd-49d3-9793-818610a74f67.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "19a6f061-01fd-49d3-9793-818610a74f67", "effective_cve": 
"CVE-2015-7313", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "FP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:01:09+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2015-7313"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/30be62ba-f2ef-40df-a46c-23fb7f4f455f.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/30be62ba-f2ef-40df-a46c-23fb7f4f455f.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/30be62ba-f2ef-40df-a46c-23fb7f4f455f.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/30be62ba-f2ef-40df-a46c-23fb7f4f455f.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "30be62ba-f2ef-40df-a46c-23fb7f4f455f", "effective_cve": 
"CVE-2018-16335", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:03:15+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-16335"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/38f59a6c-3a61-4452-80df-925ffa845914.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/38f59a6c-3a61-4452-80df-925ffa845914.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/38f59a6c-3a61-4452-80df-925ffa845914.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/38f59a6c-3a61-4452-80df-925ffa845914.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "38f59a6c-3a61-4452-80df-925ffa845914", "effective_cve": 
"CVE-2020-35523", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:12+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-35523"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/56564a20-c9e4-48d8-a885-5ab609e14194.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/56564a20-c9e4-48d8-a885-5ab609e14194.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/56564a20-c9e4-48d8-a885-5ab609e14194.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/56564a20-c9e4-48d8-a885-5ab609e14194.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "56564a20-c9e4-48d8-a885-5ab609e14194", "effective_cve": 
"CVE-2018-15209", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:02:47+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-15209"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/590f3226-a269-4098-a171-ad01d4a062c6.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/590f3226-a269-4098-a171-ad01d4a062c6.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/590f3226-a269-4098-a171-ad01d4a062c6.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/590f3226-a269-4098-a171-ad01d4a062c6.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "590f3226-a269-4098-a171-ad01d4a062c6", "effective_cve": 
"CVE-2019-17546", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:06+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2019-17546"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/5e0b016c-661c-42f3-bdba-a96af02db99a.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/5e0b016c-661c-42f3-bdba-a96af02db99a.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/5e0b016c-661c-42f3-bdba-a96af02db99a.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/5e0b016c-661c-42f3-bdba-a96af02db99a.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "5e0b016c-661c-42f3-bdba-a96af02db99a", "effective_cve": 
"CVE-2020-28928", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "musl", "version": "1.1.16-r15"}, 
"timestamp": "2023-03-08T10:59:43+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-28928"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/6d47b739-15b3-43dc-84e7-971d2a42ffe5.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/6d47b739-15b3-43dc-84e7-971d2a42ffe5.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/6d47b739-15b3-43dc-84e7-971d2a42ffe5.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/6d47b739-15b3-43dc-84e7-971d2a42ffe5.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "6d47b739-15b3-43dc-84e7-971d2a42ffe5", "effective_cve": 
"CVE-2018-17000", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:03:20+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-17000"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/80852dfd-6ecb-421d-9a8a-5697ae0cd524.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/80852dfd-6ecb-421d-9a8a-5697ae0cd524.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/80852dfd-6ecb-421d-9a8a-5697ae0cd524.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/80852dfd-6ecb-421d-9a8a-5697ae0cd524.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "80852dfd-6ecb-421d-9a8a-5697ae0cd524", "effective_cve": 
"CVE-2019-14973", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:01+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2019-14973"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/9a6c99f7-065e-4ab3-97a6-b9a15872db2a.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/9a6c99f7-065e-4ab3-97a6-b9a15872db2a.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/9a6c99f7-065e-4ab3-97a6-b9a15872db2a.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/9a6c99f7-065e-4ab3-97a6-b9a15872db2a.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "9a6c99f7-065e-4ab3-97a6-b9a15872db2a", "effective_cve": 
"CVE-2020-35521", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:09+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-35521"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/a4fe1ac2-e5dd-4564-b781-b53e1cf65fcc.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/a4fe1ac2-e5dd-4564-b781-b53e1cf65fcc.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/a4fe1ac2-e5dd-4564-b781-b53e1cf65fcc.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/a4fe1ac2-e5dd-4564-b781-b53e1cf65fcc.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "a4fe1ac2-e5dd-4564-b781-b53e1cf65fcc", "effective_cve": 
"CVE-2017-17942", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:02:19+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2017-17942"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/ab61ac6f-b160-41ed-b455-9fca09d450af.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/ab61ac6f-b160-41ed-b455-9fca09d450af.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/ab61ac6f-b160-41ed-b455-9fca09d450af.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/ab61ac6f-b160-41ed-b455-9fca09d450af.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "ab61ac6f-b160-41ed-b455-9fca09d450af", "effective_cve": 
"CVE-2018-17795", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:03:23+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-17795"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/d61897e8-4a74-41a2-88d5-aacca75092ea.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/d61897e8-4a74-41a2-88d5-aacca75092ea.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/d61897e8-4a74-41a2-88d5-aacca75092ea.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/d61897e8-4a74-41a2-88d5-aacca75092ea.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "d61897e8-4a74-41a2-88d5-aacca75092ea", "effective_cve": 
"CVE-2020-35522", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:04:10+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-35522"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/da94f99a-638b-4d56-841f-d2f5541a7ae4.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/da94f99a-638b-4d56-841f-d2f5541a7ae4.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/da94f99a-638b-4d56-841f-d2f5541a7ae4.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/da94f99a-638b-4d56-841f-d2f5541a7ae4.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "da94f99a-638b-4d56-841f-d2f5541a7ae4", "effective_cve": 
"CVE-2018-10126", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:02:39+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-10126"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/f7d4ca52-3d6d-4999-876c-39dfec6d7b20.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/f7d4ca52-3d6d-4999-876c-39dfec6d7b20.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/f7d4ca52-3d6d-4999-876c-39dfec6d7b20.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d/f7d4ca52-3d6d-4999-876c-39dfec6d7b20.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "f7d4ca52-3d6d-4999-876c-39dfec6d7b20", "effective_cve": 
"CVE-2018-19210", "image": {"exact": 
"docker.io/anchore/test_images@sha256:58637f273108e3e9eb4df4d73f7b6b1da303cbbf64f65e65fb7762482f2de63d"},
 "label": "TP", "package": {"name": "tiff", "version": "4.0.9-r6"}, 
"timestamp": "2023-03-08T11:03:32+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2018-19210"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/79b40660-16d5-4ca9-8d69-d87c3ba256e6.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/79b40660-16d5-4ca9-8d69-d87c3ba256e6.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/79b40660-16d5-4ca9-8d69-d87c3ba256e6.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/79b40660-16d5-4ca9-8d69-d87c3ba256e6.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "79b40660-16d5-4ca9-8d69-d87c3ba256e6", "effective_cve": 
"CVE-2019-20454", "image": {"exact": 
"docker.io/anchore/test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb"},
 "label": "TP", "package": {"name": "pcre2", "version": "10.31-r0"}, 
"timestamp": "2023-03-08T11:07:27+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2019-20454"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/8c992fa9-de5e-4722-8ebe-a562e5ab584d.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/8c992fa9-de5e-4722-8ebe-a562e5ab584d.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/8c992fa9-de5e-4722-8ebe-a562e5ab584d.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/8c992fa9-de5e-4722-8ebe-a562e5ab584d.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "8c992fa9-de5e-4722-8ebe-a562e5ab584d", "effective_cve": 
"CVE-2019-13115", "image": {"exact": 
"docker.io/anchore/test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb"},
 "label": "FP", "package": {"name": "libssh2", "version": "1.9.0-r1"}, 
"timestamp": "2023-03-08T11:10:10+00:00", "tool": "grype@v0.59.0", "user": 
"westonsteimel", "vulnerability_id": "CVE-2019-13115"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/d3878a73-531b-4295-b269-9fbc9ede3fbd.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/d3878a73-531b-4295-b269-9fbc9ede3fbd.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/d3878a73-531b-4295-b269-9fbc9ede3fbd.json
     2023-03-03 22:17:44.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/d3878a73-531b-4295-b269-9fbc9ede3fbd.json
     1970-01-01 01:00:00.000000000 +0100
@@ -1 +0,0 @@
-{"ID": "d3878a73-531b-4295-b269-9fbc9ede3fbd", "effective_cve": 
"CVE-2019-13115", "image": {"exact": 
"docker.io/anchore/test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb"},
 "label": "TP", "package": {"name": "libssh2", "version": "1.9.0-r1"}, 
"timestamp": "2023-01-27T16:39:37+00:00", "tool": "grype@v0.56.0", "user": 
"westonsteimel", "vulnerability_id": "CVE-2019-13115"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/e539fae2-a6ee-42c4-8362-e0b297290828.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/e539fae2-a6ee-42c4-8362-e0b297290828.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/e539fae2-a6ee-42c4-8362-e0b297290828.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb/e539fae2-a6ee-42c4-8362-e0b297290828.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "e539fae2-a6ee-42c4-8362-e0b297290828", "effective_cve": 
"CVE-2020-28928", "image": {"exact": 
"docker.io/anchore/test_images@sha256:a287a0ff98ac343aa710f4f4258d7198e240e9d416d5c7274663564202f832fb"},
 "label": "TP", "package": {"name": "musl", "version": "1.1.19-r11"}, 
"timestamp": "2023-03-08T11:06:10+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-28928"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/03cc9a75-a562-4a03-a18c-802c9b1a0670.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/03cc9a75-a562-4a03-a18c-802c9b1a0670.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/03cc9a75-a562-4a03-a18c-802c9b1a0670.json
     2023-03-03 22:17:44.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/03cc9a75-a562-4a03-a18c-802c9b1a0670.json
     1970-01-01 01:00:00.000000000 +0100
@@ -1 +0,0 @@
-{"ID": "03cc9a75-a562-4a03-a18c-802c9b1a0670", "effective_cve": 
"CVE-2021-3733", "image": {"exact": 
"docker.io/anchore/test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f"},
 "label": "TP", "package": {"name": "python3", "version": "3.8.10-r0"}, 
"timestamp": "2023-02-13T18:00:11+00:00", "tool": "grype@v0.56.0-30-g17e11ac", 
"user": "westonsteimel", "vulnerability_id": "CVE-2021-3733"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/2038059d-5e3f-4bec-8809-41bd10b6a5ee.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/2038059d-5e3f-4bec-8809-41bd10b6a5ee.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/2038059d-5e3f-4bec-8809-41bd10b6a5ee.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/2038059d-5e3f-4bec-8809-41bd10b6a5ee.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "2038059d-5e3f-4bec-8809-41bd10b6a5ee", "effective_cve": 
"CVE-2021-3426", "image": {"exact": 
"docker.io/anchore/test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f"},
 "label": "FP", "package": {"name": "python2", "version": "2.7.18-r0"}, 
"timestamp": "2023-03-08T11:15:08+00:00", "tool": "grype@v0.59.0", "user": 
"westonsteimel", "vulnerability_id": "CVE-2021-3426"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/56079834-d63e-4cc6-9f30-7a95abf3ac22.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/56079834-d63e-4cc6-9f30-7a95abf3ac22.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/56079834-d63e-4cc6-9f30-7a95abf3ac22.json
     2023-03-03 22:17:44.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/56079834-d63e-4cc6-9f30-7a95abf3ac22.json
     1970-01-01 01:00:00.000000000 +0100
@@ -1 +0,0 @@
-{"ID": "56079834-d63e-4cc6-9f30-7a95abf3ac22", "effective_cve": 
"CVE-2021-3426", "image": {"exact": 
"docker.io/anchore/test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f"},
 "label": "TP", "package": {"name": "python2", "version": "2.7.18-r0"}, 
"timestamp": "2023-03-01T13:35:56+00:00", "tool": "grype@v0.57.1-7-gd1352ce", 
"user": "westonsteimel", "vulnerability_id": "CVE-2021-3426"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/90e4a6c6-b669-40db-b053-df06821f7212.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/90e4a6c6-b669-40db-b053-df06821f7212.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/90e4a6c6-b669-40db-b053-df06821f7212.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/90e4a6c6-b669-40db-b053-df06821f7212.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "90e4a6c6-b669-40db-b053-df06821f7212", "effective_cve": 
"CVE-2020-16592", "image": {"exact": 
"docker.io/anchore/test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f"},
 "label": "TP", "package": {"name": "binutils", "version": "2.34-r2"}, 
"timestamp": "2023-03-08T11:17:53+00:00", "tool": "grype@v0.59.0-1-gde25eb9", 
"user": "westonsteimel", "vulnerability_id": "CVE-2020-16592"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/dafe5ac8-8851-4891-92f6-30495b1ef4ab.json
 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/dafe5ac8-8851-4891-92f6-30495b1ef4ab.json
--- 
old/grype-0.59.0/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/dafe5ac8-8851-4891-92f6-30495b1ef4ab.json
     1970-01-01 01:00:00.000000000 +0100
+++ 
new/grype-0.59.1/test/quality/vulnerability-match-labels/labels/docker.io+anchore+test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f/dafe5ac8-8851-4891-92f6-30495b1ef4ab.json
     2023-03-09 15:41:19.000000000 +0100
@@ -0,0 +1 @@
+{"ID": "dafe5ac8-8851-4891-92f6-30495b1ef4ab", "effective_cve": 
"CVE-2021-3733", "image": {"exact": 
"docker.io/anchore/test_images@sha256:ff80ae5de3446939639f3fbb58f66f641e2da1d881bdab704d9237424f64417f"},
 "label": "FP", "package": {"name": "python3", "version": "3.8.10-r0"}, 
"timestamp": "2023-03-08T11:15:56+00:00", "tool": "grype@v0.59.0", "user": 
"westonsteimel", "vulnerability_id": "CVE-2021-3733"}
\ No newline at end of file
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/grype-0.59.0/test/quality/vulnerability-match-labels/requirements.txt 
new/grype-0.59.1/test/quality/vulnerability-match-labels/requirements.txt
--- old/grype-0.59.0/test/quality/vulnerability-match-labels/requirements.txt   
2023-03-03 22:17:44.000000000 +0100
+++ new/grype-0.59.1/test/quality/vulnerability-match-labels/requirements.txt   
2023-03-09 15:41:19.000000000 +0100
@@ -1,3 +1,3 @@
-git+https://github.com/anchore/yardstick@6acbb419c1c96a1d9d93953122282041578257ca
+git+https://github.com/anchore/yardstick@v0.4.3
 # ../yardstick
 click
\ No newline at end of file

++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.31432/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

Reply via email to