commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-09-26 18:54:04

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.29891 (New)


Package is "grype"

Thu Sep 26 18:54:04 2024 rev:74 rq:1203738 version:0.81.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-09-25 
21:53:40.073221673 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.29891/grype.changes   2024-09-26 
18:55:05.465569444 +0200
@@ -1,0 +2,7 @@
+Thu Sep 26 05:02:11 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.81.0:
+  * add awaiting response management (#2141)
+  * feat: add distro mapping for azure linux 3 (#1848)
+
+---

Old:

  grype-0.80.2.obscpio

New:

  grype-0.81.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.mgFXvg/_old  2024-09-26 18:55:09.185723579 +0200
+++ /var/tmp/diff_new_pack.mgFXvg/_new  2024-09-26 18:55:09.201724243 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.80.2
+Version:0.81.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.mgFXvg/_old  2024-09-26 18:55:09.417733192 +0200
+++ /var/tmp/diff_new_pack.mgFXvg/_new  2024-09-26 18:55:09.469735347 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.80.2
+v0.81.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.mgFXvg/_old  2024-09-26 18:55:09.673743799 +0200
+++ /var/tmp/diff_new_pack.mgFXvg/_new  2024-09-26 18:55:09.709745291 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  468cf1250772ebfa23afbcfdb4a2c72c124bd5be
+  641982ff47fcb8d56b9555e5f0dad23afa7bc690
 (No newline at EOF)
 

++ grype-0.80.2.obscpio -> grype-0.81.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.80.2.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.29891/grype-0.81.0.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.mgFXvg/_old  2024-09-26 18:55:10.017758053 +0200
+++ /var/tmp/diff_new_pack.mgFXvg/_new  2024-09-26 18:55:10.053759544 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.80.2
-mtime: 1727187108
-commit: 468cf1250772ebfa23afbcfdb4a2c72c124bd5be
+version: 0.81.0
+mtime: 1727268984
+commit: 641982ff47fcb8d56b9555e5f0dad23afa7bc690
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.29891/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-08-21 23:26:13

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.2698 (New)


Package is "grype"

Wed Aug 21 23:26:13 2024 rev:71 rq:1195008 version:0.80.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-08-13 
13:24:59.414611796 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.2698/grype.changes2024-08-21 
23:26:38.311144578 +0200
@@ -1,0 +2,24 @@
+Wed Aug 21 06:33:12 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.80.0:
+  * chore(deps): bump github/codeql-action from 3.26.2 to 3.26.3
+(#2070)
+  * chore(deps): update Syft to v1.11.1 (#2071)
+  * chore: add grype version to db network operations (#2062)
+  * fix: do not panic when given empty string arg (#2064)
+  * chore(deps): bump github.com/charmbracelet/bubbletea (#2067)
+  * fix: correctly close the db file in v4/v5 stores (#2066)
+  * Add "Alpine Linux" to IDMapping; handle no CPEs error in
+findApkPackage. (#2040)
+  * chore(deps): update tools to latest versions (#2055)
+  * chore(deps): bump github.com/docker/docker (#2052)
+  * fix: fail when grype cant check for db update (#1247)
+  * chore(deps): bump anchore/sbom-action from 0.17.0 to 0.17.1
+(#2053)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.7.5 to
+1.7.6 (#2056)
+  * chore(deps): bump github/codeql-action from 3.26.0 to 3.26.2
+(#2060)
+  * feat: add db search subcommand (#2031)
+
+---

Old:

  grype-0.79.6.obscpio

New:

  grype-0.80.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.9SScLm/_old  2024-08-21 23:26:40.939254045 +0200
+++ /var/tmp/diff_new_pack.9SScLm/_new  2024-08-21 23:26:40.943254211 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.79.6
+Version:0.80.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.9SScLm/_old  2024-08-21 23:26:40.975255544 +0200
+++ /var/tmp/diff_new_pack.9SScLm/_new  2024-08-21 23:26:40.979255711 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.79.6
+v0.80.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.9SScLm/_old  2024-08-21 23:26:40.999256544 +0200
+++ /var/tmp/diff_new_pack.9SScLm/_new  2024-08-21 23:26:41.003256710 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  89c419091483d8f4f5e83a046dd0b45aaaba3eb5
+  205ccfb6c90edb7258a9d25995f0a59c32e48142
 (No newline at EOF)
 

++ grype-0.79.6.obscpio -> grype-0.80.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.79.6.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.2698/grype-0.80.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.9SScLm/_old  2024-08-21 23:26:41.039258210 +0200
+++ /var/tmp/diff_new_pack.9SScLm/_new  2024-08-21 23:26:41.043258377 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.79.6
-mtime: 1723479646
-commit: 89c419091483d8f4f5e83a046dd0b45aaaba3eb5
+version: 0.80.0
+mtime: 1724174957
+commit: 205ccfb6c90edb7258a9d25995f0a59c32e48142
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.2698/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-08-12 12:31:58

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.7232 (New)


Package is "grype"

Mon Aug 12 12:31:58 2024 rev:69 rq:1193332 version:0.79.5

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-08-01 
22:06:20.257189111 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.7232/grype.changes2024-08-12 
12:33:45.561010767 +0200
@@ -1,0 +2,24 @@
+Mon Aug 12 06:25:09 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.79.5:
+  * feat: update to Syft 1.11.0 (#2047)
+  * fix: higher default timeout for database download (#2033)
+  * chore(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0
+(#2045)
+  * chore(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6
+(#2035)
+  * chore(deps): update tools to latest versions (#2038)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#2043)
+  * chore(deps): bump github/codeql-action from 3.25.15 to 3.26.0
+(#2044)
+  * test: update quality gate db to latest version (#2034)
+  * chore(deps): update tools to latest versions (#2027)
+  * chore(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5
+(#2028)
+  * chore: add grype version to application update check headers
+(#2021)
+  * test: update quality gate db to latest version (#2026)
+  * chore: use the .tool/gh for release script (#2022)
+
+---

Old:

  grype-0.79.4.obscpio

New:

  grype-0.79.5.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.oZvLJD/_old  2024-08-12 12:33:50.329209538 +0200
+++ /var/tmp/diff_new_pack.oZvLJD/_new  2024-08-12 12:33:50.329209538 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.79.4
+Version:0.79.5
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.oZvLJD/_old  2024-08-12 12:33:50.361210871 +0200
+++ /var/tmp/diff_new_pack.oZvLJD/_new  2024-08-12 12:33:50.365211038 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.79.4
+v0.79.5
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.oZvLJD/_old  2024-08-12 12:33:50.385211872 +0200
+++ /var/tmp/diff_new_pack.oZvLJD/_new  2024-08-12 12:33:50.389212039 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  0cf393938995de1bf1284a7d156a0ce97816a396
+  4dfd9d76d1f7a70ce215def68e30174161257396
 (No newline at EOF)
 

++ grype-0.79.4.obscpio -> grype-0.79.5.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.79.4.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.7232/grype-0.79.5.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.oZvLJD/_old  2024-08-12 12:33:50.425213540 +0200
+++ /var/tmp/diff_new_pack.oZvLJD/_new  2024-08-12 12:33:50.429213706 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.79.4
-mtime: 1722438332
-commit: 0cf393938995de1bf1284a7d156a0ce97816a396
+version: 0.79.5
+mtime: 1723228325
+commit: 4dfd9d76d1f7a70ce215def68e30174161257396
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.7232/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-08-01 22:05:32

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.7232 (New)


Package is "grype"

Thu Aug  1 22:05:32 2024 rev:68 rq:1190896 version:0.79.4

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-07-16 
22:03:07.247394857 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.7232/grype.changes2024-08-01 
22:06:20.257189111 +0200
@@ -1,0 +2,36 @@
+Thu Aug 01 07:21:37 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.79.4:
+  * chore(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0
+(#2016)
+  * chore(deps): update Syft to v1.10.0 (#2019)
+  * chore(deps): bump github/codeql-action from 3.25.14 to 3.25.15
+(#2011)
+  * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.4
+to 1.4.5 (#2012)
+  * chore(deps): update tools to latest versions (#2015)
+  * chore(deps): bump github/codeql-action from 3.25.13 to 3.25.14
+(#2010)
+  * disable ui before run function on db status (#2008)
+  * chore(deps): bump github.com/docker/docker (#2007)
+  * chore(deps): update tools to latest versions (#2003)
+  * chore(deps): bump github.com/docker/docker (#2000)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.4 to
+0.5.5 (#2001)
+  * chore(deps): bump docker/login-action from 3.2.0 to 3.3.0
+(#2002)
+  * chore(deps): bump github/codeql-action from 3.25.12 to 3.25.13
+(#1999)
+  * chore: request artifact in issue template (#1996)
+  * chore(deps): update tools to latest versions (#1998)
+  * docs: CODE_OF_CONDUCT.md (#1994)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#1997)
+  * chore(deps): bump anchore/sbom-action from 0.16.1 to 0.17.0
+(#1992)
+  * chore(deps): update tools to latest versions (#1989)
+  * chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12
+(#1990)
+  * chore(deps): bump github.com/charmbracelet/lipgloss (#1991)
+
+---

Old:

  grype-0.79.3.obscpio

New:

  grype-0.79.4.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.Zcxhs5/_old  2024-08-01 22:06:21.857255136 +0200
+++ /var/tmp/diff_new_pack.Zcxhs5/_new  2024-08-01 22:06:21.857255136 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.79.3
+Version:0.79.4
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.Zcxhs5/_old  2024-08-01 22:06:21.885256292 +0200
+++ /var/tmp/diff_new_pack.Zcxhs5/_new  2024-08-01 22:06:21.889256457 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.79.3
+v0.79.4
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.Zcxhs5/_old  2024-08-01 22:06:21.905257117 +0200
+++ /var/tmp/diff_new_pack.Zcxhs5/_new  2024-08-01 22:06:21.909257282 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  45b7236e948ef973a8a6ffbac52dff28be0fd70e
+  0cf393938995de1bf1284a7d156a0ce97816a396
 (No newline at EOF)
 

++ grype-0.79.3.obscpio -> grype-0.79.4.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.79.3.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.7232/grype-0.79.4.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.Zcxhs5/_old  2024-08-01 22:06:21.945258767 +0200
+++ /var/tmp/diff_new_pack.Zcxhs5/_new  2024-08-01 22:06:21.945258767 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.79.3
-mtime: 1720723192
-commit: 45b7236e948ef973a8a6ffbac52dff28be0fd70e
+version: 0.79.4
+mtime: 1722438332
+commit: 0cf393938995de1bf1284a7d156a0ce97816a396
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.7232/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-06-17 19:28:32

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.19518 (New)


Package is "grype"

Mon Jun 17 19:28:32 2024 rev:64 rq:1181051 version:0.79.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-05-31 
22:16:00.590257005 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.19518/grype.changes   2024-06-17 
19:29:11.289580529 +0200
@@ -1,0 +2,31 @@
+Sat Jun 15 16:15:49 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.79.0:
+  * chore: Update syft v1.7.0 (#1945)
+  * chore(deps): bump github/codeql-action from 3.25.8 to 3.25.10
+(#1940)
+  * chore(deps): update tools to latest versions (#1943)
+  * fix match sort ordering for different locations (#1944)
+  * chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 (#1941)
+  * Updating maven URLs in README.md (#1934)
+  * sort order for matches should consider fix info (#1933)
+  * chore(deps): update tools to latest versions (#1925)
+  * chore(deps): update tools to latest versions (#1921)
+  * chore(deps): update tools to latest versions (#1919)
+  * chore(deps): bump actions/checkout from 4.1.1 to 4.1.6 (#1920)
+  * feat(signature): Checksum signature verification (#1670)
+  * add skopeo to managed utilities (#1915)
+  * chore(deps): bump github/codeql-action from 3.25.7 to 3.25.8
+(#1909)
+  * chore(deps): bump github.com/docker/docker (#1916)
+  * remove dco workflow (#1914)
+  * use dco tool during gh app outage (#1910)
+  * chore(deps): bump github/codeql-action from 3.25.6 to 3.25.7
+(#1901)
+  * chore(deps): bump github.com/charmbracelet/bubbletea (#1902)
+  * fix: add note about TMPDIR env var (#1880)
+  * fix: uppercased package in json (#1900)
+  * fix: main mod pseudo version default off (#1894)
+  * chore(deps): update tools to latest versions (#1898)
+
+---

Old:

  grype-0.78.0.obscpio

New:

  grype-0.79.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.RkqTMR/_old  2024-06-17 19:29:13.045644795 +0200
+++ /var/tmp/diff_new_pack.RkqTMR/_new  2024-06-17 19:29:13.049644941 +0200
@@ -19,14 +19,14 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.78.0
+Version:0.79.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0
 URL:https://github.com/anchore/grype
 Source: grype-%{version}.tar.gz
 Source1:vendor.tar.gz
-BuildRequires:  go >= 1.21
+BuildRequires:  go >= 1.22
 
 %description
 A vulnerability scanner for container images and filesystems. Easily install 
the binary to try it out. Works with Syft, the powerful SBOM (software bill of 
materials) tool for container images and filesystems.

++ _service ++
--- /var/tmp/diff_new_pack.RkqTMR/_old  2024-06-17 19:29:13.085646259 +0200
+++ /var/tmp/diff_new_pack.RkqTMR/_new  2024-06-17 19:29:13.089646405 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.78.0
+v0.79.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.RkqTMR/_old  2024-06-17 19:29:13.117647430 +0200
+++ /var/tmp/diff_new_pack.RkqTMR/_new  2024-06-17 19:29:13.121647576 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  b13315fa72cf1e02d5f435dae11ac06e8449aa48
+  5821351240dab7145f7cdd156f6a1ecf88cf8da7
 (No newline at EOF)
 

++ grype-0.78.0.obscpio -> grype-0.79.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.78.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.19518/grype-0.79.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.RkqTMR/_old  2024-06-17 19:29:13.165649186 +0200
+++ /var/tmp/diff_new_pack.RkqTMR/_new  2024-06-17 19:29:13.173649479 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.78.0
-mtime: 1716917830
-commit: b13315fa72cf1e02d5f435dae11ac06e8449aa48
+version: 0.79.0
+mtime: 1718398039
+commit: 5821351240dab7145f7cdd156f6a1ecf88cf8da7
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.19518/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-05-31 22:15:31

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.24587 (New)


Package is "grype"

Fri May 31 22:15:31 2024 rev:63 rq:1177714 version:0.78.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-05-13 
01:13:26.402265190 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.24587/grype.changes   2024-05-31 
22:16:00.590257005 +0200
@@ -1,0 +2,33 @@
+Thu May 30 09:30:59 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.78.0:
+  * update syft to v1.5.0 (#1897)
+  * chore(deps): bump docker/login-action from 3.1.0 to 3.2.0
+(#1896)
+  * Update syft to 1.4.2-0.20240528141306-ac34808b9c55 (#1895)
+  * chore(deps): bump github.com/charmbracelet/lipgloss (#1888)
+  * chore(deps): bump github.com/hashicorp/go-version from 1.6.0 to
+1.7.0 (#1887)
+  * chore(deps): update tools to latest versions (#1891)
+  * chore(deps): bump github.com/charmbracelet/bubbletea (#1890)
+  * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.3
+to 1.4.4 (#1889)
+  * chore(deps): update tools to latest versions (#1883)
+  * feat: add config command (#1876)
+  * disable TUI for simpler commands (#1872)
+  * chore(deps): bump github.com/docker/docker (#1867)
+  * chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#1868)
+  * chore(deps): update tools to latest versions (#1864)
+  * chore(deps): bump github/codeql-action from 2.13.4 to 3.25.6
+(#1870)
+  * chore(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0
+(#1871)
+  * chore(deps): update tools to latest versions (#1862)
+  * chore: add top level permissions to new workflow (#1860)
+  * chore(deps): update tools to latest versions (#1856)
+  * chore(deps): bump actions/checkout from 4.1.4 to 4.1.5 (#1858)
+  * chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
+(#1859)
+  * fix: ask catalog for package rather than type asserting (#1857)
+
+---

Old:

  grype-0.77.4.obscpio

New:

  grype-0.78.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.3GHqfL/_old  2024-05-31 22:16:02.170314560 +0200
+++ /var/tmp/diff_new_pack.3GHqfL/_new  2024-05-31 22:16:02.170314560 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.77.4
+Version:0.78.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.3GHqfL/_old  2024-05-31 22:16:02.202315726 +0200
+++ /var/tmp/diff_new_pack.3GHqfL/_new  2024-05-31 22:16:02.210316018 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.77.4
+v0.78.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.3GHqfL/_old  2024-05-31 22:16:02.230316746 +0200
+++ /var/tmp/diff_new_pack.3GHqfL/_new  2024-05-31 22:16:02.234316891 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  24d5d4ffb23d48181cd6aa0e8522f727ad357ce6
+  b13315fa72cf1e02d5f435dae11ac06e8449aa48
 (No newline at EOF)
 

++ grype-0.77.4.obscpio -> grype-0.78.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.77.4.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.24587/grype-0.78.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.3GHqfL/_old  2024-05-31 22:16:02.274318348 +0200
+++ /var/tmp/diff_new_pack.3GHqfL/_new  2024-05-31 22:16:02.278318495 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.77.4
-mtime: 1715286300
-commit: 24d5d4ffb23d48181cd6aa0e8522f727ad357ce6
+version: 0.78.0
+mtime: 1716917830
+commit: b13315fa72cf1e02d5f435dae11ac06e8449aa48
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.24587/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-05-02 23:47:45

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1880 (New)


Package is "grype"

Thu May  2 23:47:45 2024 rev:59 rq:1171267 version:0.77.2

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-04-29 
09:10:31.715115231 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1880/grype.changes2024-05-03 
10:28:49.862989148 +0200
@@ -1,0 +2,9 @@
+Thu May 02 07:23:26 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.77.2:
+  * fix: update ignored vulnerability count in tui (#1837)
+  * fix: update sarif to pass microsoft validator (#1838)
+  * chore(deps): bump anchore/sbom-action from 0.15.10 to 0.15.11
+(#1835)
+
+---

Old:

  grype-0.77.1.obscpio

New:

  grype-0.77.2.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.VvYy0P/_old  2024-05-03 10:28:52.159072859 +0200
+++ /var/tmp/diff_new_pack.VvYy0P/_new  2024-05-03 10:28:52.159072859 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.77.1
+Version:0.77.2
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.VvYy0P/_old  2024-05-03 10:28:52.191074025 +0200
+++ /var/tmp/diff_new_pack.VvYy0P/_new  2024-05-03 10:28:52.195074170 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.77.1
+v0.77.2
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.VvYy0P/_old  2024-05-03 10:28:52.215074900 +0200
+++ /var/tmp/diff_new_pack.VvYy0P/_new  2024-05-03 10:28:52.219075045 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  11fe1a5bb28ca0d9c009d691e6b17d628a651543
+  bd16101ad0ed30c38e95d0992d0ad53f709dc5df
 (No newline at EOF)
 

++ grype-0.77.1.obscpio -> grype-0.77.2.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.77.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1880/grype-0.77.2.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.VvYy0P/_old  2024-05-03 10:28:52.259076504 +0200
+++ /var/tmp/diff_new_pack.VvYy0P/_new  2024-05-03 10:28:52.263076650 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.77.1
-mtime: 1714149895
-commit: 11fe1a5bb28ca0d9c009d691e6b17d628a651543
+version: 0.77.2
+mtime: 1714578410
+commit: bd16101ad0ed30c38e95d0992d0ad53f709dc5df
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1880/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-04-28 21:48:56

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1880 (New)


Package is "grype"

Sun Apr 28 21:48:56 2024 rev:58 rq:1170340 version:0.77.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-04-19 
19:21:34.315698339 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1880/grype.changes2024-04-29 
09:10:31.715115231 +0200
@@ -1,0 +2,22 @@
+Fri Apr 26 18:51:37 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.77.1:
+  * chore(deps): bump gorm.io/gorm from 1.25.9 to 1.25.10 (#1831)
+  * chore(deps): update Syft to v1.3.0 (#1832)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.3 to
+0.5.4 (#1824)
+  * chore(deps): bump actions/checkout from 4.1.3 to 4.1.4 (#1823)
+  * chore(deps): bump github.com/anchore/stereoscope (#1825)
+  * chore(deps): bump peter-evans/create-pull-request from 6.0.4 to
+6.0.5 (#1828)
+  * fix: update grype version to support darwin arm64 (#1830)
+  * chore(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3
+(#1820)
+  * docs: update README with newer data sources (#1819)
+  * chore(deps): bump github.com/docker/docker (#1821)
+  * Add some more examples for the `config.yaml` file in the
+README. (#1811)
+  * chore(deps): bump github.com/docker/docker (#1817)
+  * chore(deps): bump actions/checkout from 4.1.2 to 4.1.3 (#1818)
+
+---

Old:

  grype-0.77.0.obscpio

New:

  grype-0.77.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.3xiBO4/_old  2024-04-29 09:10:33.019162692 +0200
+++ /var/tmp/diff_new_pack.3xiBO4/_new  2024-04-29 09:10:33.019162692 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.77.0
+Version:0.77.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.3xiBO4/_old  2024-04-29 09:10:33.051163857 +0200
+++ /var/tmp/diff_new_pack.3xiBO4/_new  2024-04-29 09:10:33.055164002 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.77.0
+v0.77.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.3xiBO4/_old  2024-04-29 09:10:33.079164876 +0200
+++ /var/tmp/diff_new_pack.3xiBO4/_new  2024-04-29 09:10:33.079164876 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  b7ffbeee53105478e699290aeac238a0ead28962
+  11fe1a5bb28ca0d9c009d691e6b17d628a651543
 (No newline at EOF)
 

++ grype-0.77.0.obscpio -> grype-0.77.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.77.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1880/grype-0.77.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.3xiBO4/_old  2024-04-29 09:10:33.119166332 +0200
+++ /var/tmp/diff_new_pack.3xiBO4/_new  2024-04-29 09:10:33.123166477 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.77.0
-mtime: 1713465652
-commit: b7ffbeee53105478e699290aeac238a0ead28962
+version: 0.77.1
+mtime: 1714149895
+commit: 11fe1a5bb28ca0d9c009d691e6b17d628a651543
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1880/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-04-04 22:27:13

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1905 (New)


Package is "grype"

Thu Apr  4 22:27:13 2024 rev:55 rq:1164998 version:0.75.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-03-17 
22:15:51.796078269 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1905/grype.changes2024-04-04 
22:28:46.268861062 +0200
@@ -1,0 +2,51 @@
+Thu Apr 04 16:56:26 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.75.0:
+  * chore: update syft to latest v1.1.1 (#1784)
+  * fix: enable http timeout (#1777)
+  * chore(deps): update bootstrap tools to latest versions (#1781)
+  * chore(deps): update bootstrap tools to latest versions (#1776)
+  * chore(deps): bump gorm.io/gorm from 1.25.8 to 1.25.9 (#1775)
+  * fix: make bootstrap-tools failed (#1739)
+  * fix: use "path/filepath" to build file path (#1767)
+  * update release token from readonly to write token (#1768)
+  * chore(deps): bump anchore/sbom-action from 0.15.9 to 0.15.10
+(#1771)
+  * chore(deps): update Syft to v1.1.0 (#1769)
+  * chore(deps): bump google.golang.org/protobuf from 1.31.0 to
+1.33.0 (#1750)
+  * chore(deps): bump github.com/glebarez/sqlite from 1.10.0 to
+1.11.0 (#1751)
+  * chore(deps): bump fountainhead/action-wait-for-check from 1.1.0
+to 1.2.0 (#1753)
+  * chore(deps): bump gorm.io/gorm from 1.25.7 to 1.25.8 (#1756)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#1754)
+  * chore(deps): update bootstrap tools to latest versions (#1758)
+  * chore(deps): bump actions/cache from 4.0.1 to 4.0.2 (#1761)
+  * updating credentials to scoped permissions (#1755)
+  * dont warn on golang devel version (#1752)
+  * chore(deps): bump docker/login-action from 3.0.0 to 3.1.0
+(#1748)
+  * chore(deps): bump peter-evans/create-pull-request from 6.0.1 to
+6.0.2 (#1746)
+  * chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (#1747)
+  * chore(code-comments): typo (#1745)
+  * chore: slice loop replace (#1738)
+  * chore(deps): update Syft to v1.0.1 (#1742)
+  * chore(deps): bump github.com/anchore/syft from 1.0.0 to 1.0.1
+(#1743)
+  * chore(deps): bump github.com/docker/docker (#1744)
+  * chore(deps): bump anchore/sbom-action from 0.15.8 to 0.15.9
+(#1740)
+  * chore(deps): bump github.com/charmbracelet/lipgloss from 0.9.1
+to 0.10.0 (#1741)
+  * chore(deps): bump actions/cache from 4.0.0 to 4.0.1 (#1735)
+  * chore(deps): bump github.com/stretchr/testify from 1.8.4 to
+1.9.0 (#1736)
+  * chore(deps): bump github.com/anchore/syft (#1734)
+  * chore(deps): bump peter-evans/create-pull-request from 6.0.0 to
+6.0.1 (#1733)
+  * chore: update syft source providers (#1727)
+
+---

Old:

  grype-0.74.7.obscpio

New:

  grype-0.75.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.8tsPBZ/_old  2024-04-04 22:28:50.012998908 +0200
+++ /var/tmp/diff_new_pack.8tsPBZ/_new  2024-04-04 22:28:50.028999497 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.7
+Version:0.75.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.8tsPBZ/_old  2024-04-04 22:28:50.317010101 +0200
+++ /var/tmp/diff_new_pack.8tsPBZ/_new  2024-04-04 22:28:50.345011132 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.7
+v0.75.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.8tsPBZ/_old  2024-04-04 22:28:50.561019084 +0200
+++ /var/tmp/diff_new_pack.8tsPBZ/_new  2024-04-04 22:28:50.609020851 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  987238519b8d6e302130ab715f20daed6634da68
+  57af1c34cb7db17824eac983cc6ae6945db47c88
 (No newline at EOF)
 

++ grype-0.74.7.obscpio -> grype-0.75.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.7.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1905/grype-0.75.0.obscpio differ: char 
48, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.8tsPBZ/_old  2024-04-04 22:28:50.953033517 +0200
+++ /var/tmp/diff_new_pack.8tsPBZ/_new  2024-04-04 22:28:50.985034695 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.7
-mtime: 1708968631
-commit: 987238519b8d6e302130ab715f20daed6634da68
+version: 0.75.0
+mtime: 1712245922
+commit: 57a

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-02-15 21:00:50

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1815 (New)


Package is "grype"

Thu Feb 15 21:00:50 2024 rev:53 rq:1146708 version:0.74.6

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-02-08 
19:05:45.202917744 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1815/grype.changes2024-02-15 
21:02:05.959575728 +0100
@@ -1,0 +2,11 @@
+Thu Feb 15 05:57:08 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.6:
+  * chore(deps): update Syft to v0.105.0 (#1714)
+  * chore(deps): update bootstrap tools to latest versions (#1707)
+  * test(quality): bump label dataset and images (#1712)
+  * fix: only warn missing CPEs if CPEs wanted (#1710)
+  * fix: ensure version output to stdout (#1709)
+  * chore(deps): update bootstrap tools to latest versions (#1706)
+
+---

Old:

  grype-0.74.5.obscpio

New:

  grype-0.74.6.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.3fryoT/_old  2024-02-15 21:02:09.219690310 +0100
+++ /var/tmp/diff_new_pack.3fryoT/_new  2024-02-15 21:02:09.219690310 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.5
+Version:0.74.6
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.3fryoT/_old  2024-02-15 21:02:09.247691294 +0100
+++ /var/tmp/diff_new_pack.3fryoT/_new  2024-02-15 21:02:09.251691434 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.5
+v0.74.6
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.3fryoT/_old  2024-02-15 21:02:09.267691997 +0100
+++ /var/tmp/diff_new_pack.3fryoT/_new  2024-02-15 21:02:09.271692138 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  74780902eda090afa5ca36699da2453f2df2e655
+  b9cf0e5cf89b47dc2d34315855d68542e817657c
 (No newline at EOF)
 

++ grype-0.74.5.obscpio -> grype-0.74.6.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.5.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1815/grype-0.74.6.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.3fryoT/_old  2024-02-15 21:02:09.303693262 +0100
+++ /var/tmp/diff_new_pack.3fryoT/_new  2024-02-15 21:02:09.303693262 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.5
-mtime: 1707340497
-commit: 74780902eda090afa5ca36699da2453f2df2e655
+version: 0.74.6
+mtime: 1707948590
+commit: b9cf0e5cf89b47dc2d34315855d68542e817657c
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1815/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-02-08 19:04:00

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1815 (New)


Package is "grype"

Thu Feb  8 19:04:00 2024 rev:52 rq:1145168 version:0.74.5

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-02-01 
18:05:41.695757190 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1815/grype.changes2024-02-08 
19:05:45.202917744 +0100
@@ -1,0 +2,23 @@
+Thu Feb 08 11:54:49 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.5:
+  * chore(deps): update Syft to v0.104.0 (#1704)
+  * Bump Syft in Grype to pull in unmarshaling fix (#1703)
+  * chore(deps): bump github.com/docker/docker (#1702)
+  * chore(deps): bump gorm.io/gorm from 1.25.6 to 1.25.7 (#1700)
+  * chore(deps): update bootstrap tools to latest versions (#1698)
+  * chore(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1
+(#1699)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.5.0 to
+0.5.2 (#1697)
+  * chore(deps): bump peter-evans/create-pull-request from 5.0.2 to
+6.0.0 (#1687)
+  * chore(deps): bump anchore/sbom-action from 0.15.6 to 0.15.8
+(#1690)
+  * chore(deps): bump sigstore/cosign-installer from 3.3.0 to 3.4.0
+(#1691)
+  * chore(deps): bump github.com/docker/docker (#1692)
+  * chore(deps): bump github.com/opencontainers/runc from 1.1.5 to
+1.1.12 (#1689)
+
+---

Old:

  grype-0.74.4.obscpio

New:

  grype-0.74.5.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.pK6uqW/_old  2024-02-08 19:05:46.262956701 +0100
+++ /var/tmp/diff_new_pack.pK6uqW/_new  2024-02-08 19:05:46.262956701 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.4
+Version:0.74.5
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.pK6uqW/_old  2024-02-08 19:05:46.298958023 +0100
+++ /var/tmp/diff_new_pack.pK6uqW/_new  2024-02-08 19:05:46.302958171 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.4
+v0.74.5
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.pK6uqW/_old  2024-02-08 19:05:46.326959052 +0100
+++ /var/tmp/diff_new_pack.pK6uqW/_new  2024-02-08 19:05:46.330959200 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  8f3a798451162ca64d09abdba8ad987de65f66ae
+  74780902eda090afa5ca36699da2453f2df2e655
 (No newline at EOF)
 

++ grype-0.74.4.obscpio -> grype-0.74.5.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.4.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1815/grype-0.74.5.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.pK6uqW/_old  2024-02-08 19:05:46.370960670 +0100
+++ /var/tmp/diff_new_pack.pK6uqW/_new  2024-02-08 19:05:46.374960817 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.4
-mtime: 1706722348
-commit: 8f3a798451162ca64d09abdba8ad987de65f66ae
+version: 0.74.5
+mtime: 1707340497
+commit: 74780902eda090afa5ca36699da2453f2df2e655
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1815/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-02-01 18:05:06

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1815 (New)


Package is "grype"

Thu Feb  1 18:05:06 2024 rev:51 rq:1143188 version:0.74.4

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-01-28 
19:39:37.358040570 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1815/grype.changes2024-02-01 
18:05:41.695757190 +0100
@@ -1,0 +2,15 @@
+Thu Feb 01 06:30:10 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.4:
+  * Security fixes:
+- Upgrade syft to v0.103.1 (#1688)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#1685)
+  * chore(deps): bump anchore/sbom-action from 0.15.5 to 0.15.6
+(#1684)
+  * ensure releases only use released versions of syft (#1680)
+  * chore(deps): bump gorm.io/gorm from 1.25.5 to 1.25.6 (#1683)
+  * chore(deps): bump 8398a7/action-slack from 3.15.1 to 3.16.2
+(#1682)
+
+---

Old:

  grype-0.74.3.obscpio

New:

  grype-0.74.4.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.CM1syB/_old  2024-02-01 18:05:47.783977747 +0100
+++ /var/tmp/diff_new_pack.CM1syB/_new  2024-02-01 18:05:47.783977747 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.3
+Version:0.74.4
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.CM1syB/_old  2024-02-01 18:05:47.811978761 +0100
+++ /var/tmp/diff_new_pack.CM1syB/_new  2024-02-01 18:05:47.815978906 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.3
+v0.74.4
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.CM1syB/_old  2024-02-01 18:05:47.831979486 +0100
+++ /var/tmp/diff_new_pack.CM1syB/_new  2024-02-01 18:05:47.835979631 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  8376491454e002b43572dc403f96c8d84e10af33
+  8f3a798451162ca64d09abdba8ad987de65f66ae
 (No newline at EOF)
 

++ grype-0.74.3.obscpio -> grype-0.74.4.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.3.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1815/grype-0.74.4.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.CM1syB/_old  2024-02-01 18:05:47.867980790 +0100
+++ /var/tmp/diff_new_pack.CM1syB/_new  2024-02-01 18:05:47.871980935 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.3
-mtime: 1706281241
-commit: 8376491454e002b43572dc403f96c8d84e10af33
+version: 0.74.4
+mtime: 1706722348
+commit: 8f3a798451162ca64d09abdba8ad987de65f66ae
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1815/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-01-28 19:39:35

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1815 (New)


Package is "grype"

Sun Jan 28 19:39:35 2024 rev:50 rq:1141796 version:0.74.3

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-01-22 
20:33:07.290801315 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1815/grype.changes2024-01-28 
19:39:37.358040570 +0100
@@ -1,0 +2,19 @@
+Fri Jan 26 19:27:04 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.3:
+  * chore(deps): update Syft to v0.102.0 (#1681)
+  * Fix matching when RPM modularity is a factor (#1679)
+  * chore: break assumption that syft cpe.CPE is wfn.Attributes
+(#1675)
+  * chore(deps): bump github.com/docker/docker (#1677)
+  * chore(deps): bump github.com/google/uuid from 1.5.0 to 1.6.0
+(#1678)
+  * chore(deps): bump actions/upload-artifact from 4.2.0 to 4.3.0
+(#1676)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.4.12
+to 0.5.0 (#1674)
+  * fix: take VEX docs into account when --fail-on is set (#1657)
+  * chore(deps): bump anchore/sbom-action from 0.15.4 to 0.15.5
+(#1671)
+
+---

Old:

  grype-0.74.2.obscpio

New:

  grype-0.74.3.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.qG9joz/_old  2024-01-28 19:39:39.034100931 +0100
+++ /var/tmp/diff_new_pack.qG9joz/_new  2024-01-28 19:39:39.034100931 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.2
+Version:0.74.3
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.qG9joz/_old  2024-01-28 19:39:39.062101940 +0100
+++ /var/tmp/diff_new_pack.qG9joz/_new  2024-01-28 19:39:39.066102084 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.2
+v0.74.3
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.qG9joz/_old  2024-01-28 19:39:39.086102804 +0100
+++ /var/tmp/diff_new_pack.qG9joz/_new  2024-01-28 19:39:39.090102948 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  90fa3f29fa6deb392ea8a2b6cad144fb3c9edef3
+  8376491454e002b43572dc403f96c8d84e10af33
 (No newline at EOF)
 

++ grype-0.74.2.obscpio -> grype-0.74.3.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.2.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1815/grype-0.74.3.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.qG9joz/_old  2024-01-28 19:39:39.122104101 +0100
+++ /var/tmp/diff_new_pack.qG9joz/_new  2024-01-28 19:39:39.126104245 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.2
-mtime: 1705703133
-commit: 90fa3f29fa6deb392ea8a2b6cad144fb3c9edef3
+version: 0.74.3
+mtime: 1706281241
+commit: 8376491454e002b43572dc403f96c8d84e10af33
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1815/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-01-22 20:32:43

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.16006 (New)


Package is "grype"

Mon Jan 22 20:32:43 2024 rev:49 rq:1140178 version:0.74.2

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-01-18 
21:54:17.690704110 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.16006/grype.changes   2024-01-22 
20:33:07.290801315 +0100
@@ -1,0 +2,14 @@
+Sat Jan 20 17:00:18 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.2:
+  * chore(deps): update Syft to v0.101.1 (#1669)
+  * chore(deps): bump github.com/docker/docker (#1667)
+  * chore(deps): bump anchore/sbom-action from 0.15.3 to 0.15.4
+(#1666)
+  * chore(deps): bump actions/upload-artifact from 4.1.0 to 4.2.0
+(#1668)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#1665)
+  * chore: enable automatic approval of dependabot PRs (#1664)
+
+---

Old:

  grype-0.74.1.obscpio

New:

  grype-0.74.2.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.zs1zY4/_old  2024-01-22 20:33:08.290837837 +0100
+++ /var/tmp/diff_new_pack.zs1zY4/_new  2024-01-22 20:33:08.290837837 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.1
+Version:0.74.2
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.zs1zY4/_old  2024-01-22 20:33:08.318838859 +0100
+++ /var/tmp/diff_new_pack.zs1zY4/_new  2024-01-22 20:33:08.322839006 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.1
+v0.74.2
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.zs1zY4/_old  2024-01-22 20:33:08.342839737 +0100
+++ /var/tmp/diff_new_pack.zs1zY4/_new  2024-01-22 20:33:08.346839883 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  85be82158b5129a1d2ee650c31bf43cc96716f2e
+  90fa3f29fa6deb392ea8a2b6cad144fb3c9edef3
 (No newline at EOF)
 

++ grype-0.74.1.obscpio -> grype-0.74.2.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.16006/grype-0.74.2.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.zs1zY4/_old  2024-01-22 20:33:08.378841051 +0100
+++ /var/tmp/diff_new_pack.zs1zY4/_new  2024-01-22 20:33:08.382841197 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.1
-mtime: 1705525613
-commit: 85be82158b5129a1d2ee650c31bf43cc96716f2e
+version: 0.74.2
+mtime: 1705703133
+commit: 90fa3f29fa6deb392ea8a2b6cad144fb3c9edef3
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.16006/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-01-18 21:53:37

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.16006 (New)


Package is "grype"

Thu Jan 18 21:53:37 2024 rev:48 rq:1139641 version:0.74.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2024-01-07 
21:40:32.948557835 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.16006/grype.changes   2024-01-18 
21:54:17.690704110 +0100
@@ -1,0 +2,16 @@
+Thu Jan 18 08:10:56 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.1:
+  * chore(deps): update Syft to v0.101.0 (#1663)
+  * upgrade syft with latest SBOM creation API (#1662)
+  * chore(deps): bump actions/cache from 3.3.3 to 4.0.0 (#1661)
+  * chore(tests): fix logging configuration in tests (#1655)
+  * chore(deps): bump actions/cache from 3.3.2 to 3.3.3 (#1656)
+  * chore(deps): bump actions/upload-artifact from 4.0.0 to 4.1.0
+(#1659)
+  * chore(deps): bump github.com/cloudflare/circl from 1.3.3 to
+1.3.7 (#1651)
+  * chore(deps): bump anchore/sbom-action from 0.15.2 to 0.15.3
+(#1650)
+
+---

Old:

  grype-0.74.0.obscpio

New:

  grype-0.74.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.gbug4g/_old  2024-01-18 21:54:19.062753938 +0100
+++ /var/tmp/diff_new_pack.gbug4g/_new  2024-01-18 21:54:19.062753938 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.74.0
+Version:0.74.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.gbug4g/_old  2024-01-18 21:54:19.090754954 +0100
+++ /var/tmp/diff_new_pack.gbug4g/_new  2024-01-18 21:54:19.094755100 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.74.0
+v0.74.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.gbug4g/_old  2024-01-18 21:54:19.114755825 +0100
+++ /var/tmp/diff_new_pack.gbug4g/_new  2024-01-18 21:54:19.118755971 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  a808408584c0532f50095832438e97debe1c11aa
+  85be82158b5129a1d2ee650c31bf43cc96716f2e
 (No newline at EOF)
 

++ grype-0.74.0.obscpio -> grype-0.74.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.74.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.16006/grype-0.74.1.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.gbug4g/_old  2024-01-18 21:54:19.146756988 +0100
+++ /var/tmp/diff_new_pack.gbug4g/_new  2024-01-18 21:54:19.150757133 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.74.0
-mtime: 1704508079
-commit: a808408584c0532f50095832438e97debe1c11aa
+version: 0.74.1
+mtime: 1705525613
+commit: 85be82158b5129a1d2ee650c31bf43cc96716f2e
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.16006/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2024-01-07 21:40:19

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.28375 (New)


Package is "grype"

Sun Jan  7 21:40:19 2024 rev:47 rq:1137365 version:0.74.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-12-21 
23:40:10.973975937 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.28375/grype.changes   2024-01-07 
21:40:32.948557835 +0100
@@ -1,0 +2,11 @@
+Sun Jan 07 13:36:53 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.74.0:
+  * chore(deps): update Syft to v0.100.0 (#1649)
+  * fix: distro FP data not applied correctly (#1603)
+  * chore(deps): bump anchore/sbom-action from 0.15.1 to 0.15.2
+(#1647)
+  * chore(deps): update bootstrap tools to latest versions (#1644)
+  * docs: fix logging configuration in README (#1646)
+
+---

Old:

  grype-0.73.5.obscpio

New:

  grype-0.74.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.XWkX07/_old  2024-01-07 21:40:35.008632772 +0100
+++ /var/tmp/diff_new_pack.XWkX07/_new  2024-01-07 21:40:35.012632917 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package grype
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.73.5
+Version:0.74.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.XWkX07/_old  2024-01-07 21:40:35.040633936 +0100
+++ /var/tmp/diff_new_pack.XWkX07/_new  2024-01-07 21:40:35.044634081 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.73.5
+v0.74.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.XWkX07/_old  2024-01-07 21:40:35.064634809 +0100
+++ /var/tmp/diff_new_pack.XWkX07/_new  2024-01-07 21:40:35.068634954 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  55ef6b610883c8898651114bf22621b0cc73cfbc
+  a808408584c0532f50095832438e97debe1c11aa
 (No newline at EOF)
 

++ grype-0.73.5.obscpio -> grype-0.74.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.73.5.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.28375/grype-0.74.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.XWkX07/_old  2024-01-07 21:40:35.100636118 +0100
+++ /var/tmp/diff_new_pack.XWkX07/_new  2024-01-07 21:40:35.104636264 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.73.5
-mtime: 1703178173
-commit: 55ef6b610883c8898651114bf22621b0cc73cfbc
+version: 0.74.0
+mtime: 1704508079
+commit: a808408584c0532f50095832438e97debe1c11aa
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.28375/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-12-21 23:40:04

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1840 (New)


Package is "grype"

Thu Dec 21 23:40:04 2023 rev:46 rq:1134542 version:0.73.5

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-11-30 
22:06:05.211773452 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1840/grype.changes2023-12-21 
23:40:10.973975937 +0100
@@ -1,0 +2,24 @@
+Thu Dec 21 19:04:26 UTC 2023 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.73.5:
+  * chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.7.2
+to 0.8.0 (#1633)
+  * chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0
+(#1641)
+  * chore(deps): bump github.com/containerd/containerd from 1.7.8
+to 1.7.11 (#1642)
+  * chore(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0
+(#1638)
+  * chore(deps): bump sigstore/cosign-installer from 3.2.0 to 3.3.0
+(#1632)
+  * chore(deps): bump github.com/charmbracelet/bubbletea (#1635)
+  * chore(deps): bump github.com/google/uuid from 1.4.0 to 1.5.0
+(#1636)
+  * chore(deps): bump actions/setup-go from 4.1.0 to 5.0.0 (#1630)
+  * chore(deps): bump anchore/sbom-action from 0.15.0 to 0.15.1
+(#1626)
+  * chore: pin action to correct sha (#1598)
+  * chore(deps): bump github.com/google/go-containerregistry
+(#1625)
+
+---

Old:

  grype-0.73.4.obscpio

New:

  grype-0.73.5.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.jHDiO6/_old  2023-12-21 23:40:13.406064749 +0100
+++ /var/tmp/diff_new_pack.jHDiO6/_new  2023-12-21 23:40:13.406064749 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.73.4
+Version:0.73.5
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.jHDiO6/_old  2023-12-21 23:40:13.442066063 +0100
+++ /var/tmp/diff_new_pack.jHDiO6/_new  2023-12-21 23:40:13.450066356 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.73.4
+v0.73.5
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.jHDiO6/_old  2023-12-21 23:40:13.474067232 +0100
+++ /var/tmp/diff_new_pack.jHDiO6/_new  2023-12-21 23:40:13.478067379 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  a4bced160291e81dbdeaa415d20e64b8741ee00d
+  55ef6b610883c8898651114bf22621b0cc73cfbc
 (No newline at EOF)
 

++ grype-0.73.4.obscpio -> grype-0.73.5.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.73.4.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1840/grype-0.73.5.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.jHDiO6/_old  2023-12-21 23:40:13.514068694 +0100
+++ /var/tmp/diff_new_pack.jHDiO6/_new  2023-12-21 23:40:13.518068839 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.73.4
-mtime: 1701354154
-commit: a4bced160291e81dbdeaa415d20e64b8741ee00d
+version: 0.73.5
+mtime: 1703178173
+commit: 55ef6b610883c8898651114bf22621b0cc73cfbc
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1840/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-11-30 22:04:49

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.25432 (New)


Package is "grype"

Thu Nov 30 22:04:49 2023 rev:45 rq:1130055 version:0.73.4

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-11-20 
21:20:41.68101 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.25432/grype.changes   2023-11-30 
22:06:05.211773452 +0100
@@ -1,0 +2,12 @@
+Thu Nov 30 16:24:35 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.73.4:
+  * chore: bump to syft v0.98.0 in quality gate tests (#1623)
+  * chore: update syft; go mod tidy (#1621)
+  * chore(deps): bump github.com/spf13/afero from 1.10.0 to 1.11.0
+(#1618)
+  * chore: explicitly test maven suffixes (#1617)
+  * chore(deps): bump anchore/sbom-action from 0.14.3 to 0.15.0
+(#1611)
+
+---

Old:

  grype-0.73.3.obscpio

New:

  grype-0.73.4.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.HJXNFj/_old  2023-11-30 22:06:06.499820916 +0100
+++ /var/tmp/diff_new_pack.HJXNFj/_new  2023-11-30 22:06:06.503821063 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.73.3
+Version:0.73.4
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.HJXNFj/_old  2023-11-30 22:06:06.527821948 +0100
+++ /var/tmp/diff_new_pack.HJXNFj/_new  2023-11-30 22:06:06.531822095 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.73.3
+v0.73.4
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.HJXNFj/_old  2023-11-30 22:06:06.547822684 +0100
+++ /var/tmp/diff_new_pack.HJXNFj/_new  2023-11-30 22:06:06.551822832 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  dbe2a9515a99ef1c78e22ead0cbf17b29fb1b674
+  a4bced160291e81dbdeaa415d20e64b8741ee00d
 (No newline at EOF)
 

++ grype-0.73.3.obscpio -> grype-0.73.4.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.73.3.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.25432/grype-0.73.4.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.HJXNFj/_old  2023-11-30 22:06:06.583824011 +0100
+++ /var/tmp/diff_new_pack.HJXNFj/_new  2023-11-30 22:06:06.587824159 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.73.3
-mtime: 1700256427
-commit: dbe2a9515a99ef1c78e22ead0cbf17b29fb1b674
+version: 0.73.4
+mtime: 1701354154
+commit: a4bced160291e81dbdeaa415d20e64b8741ee00d
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.25432/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-11-09 21:36:24

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.17445 (New)


Package is "grype"

Thu Nov  9 21:36:24 2023 rev:42 rq:1124736 version:0.73.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-11-08 
22:19:10.538364266 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.17445/grype.changes   2023-11-09 
21:36:40.731722834 +0100
@@ -1,0 +2,11 @@
+Thu Nov 09 15:04:58 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.73.1:
+  * chore(deps): update Syft to v0.96.0 (#1596)
+  * fix: match against debian unstable (#1593)
+  * perf: avoid allocations with `(*regexp.Regexp).MatchString`
+(#1592)
+  * chore(deps): bump sigstore/cosign-installer from 3.1.2 to 3.2.0
+(#1590)
+
+---

Old:

  grype-0.73.0.obscpio

New:

  grype-0.73.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.Cctr5I/_old  2023-11-09 21:36:43.515825625 +0100
+++ /var/tmp/diff_new_pack.Cctr5I/_new  2023-11-09 21:36:43.515825625 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.73.0
+Version:0.73.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.Cctr5I/_old  2023-11-09 21:36:43.551826954 +0100
+++ /var/tmp/diff_new_pack.Cctr5I/_new  2023-11-09 21:36:43.555827103 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.73.0
+v0.73.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.Cctr5I/_old  2023-11-09 21:36:43.575827840 +0100
+++ /var/tmp/diff_new_pack.Cctr5I/_new  2023-11-09 21:36:43.579827988 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  15432488224b3d7a557798fd258828f618dadc90
+  e44ec4d4bc680f70b191b88dd2e635a82d4b5c45
 (No newline at EOF)
 

++ grype-0.73.0.obscpio -> grype-0.73.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.73.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.17445/grype-0.73.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.Cctr5I/_old  2023-11-09 21:36:43.619829465 +0100
+++ /var/tmp/diff_new_pack.Cctr5I/_new  2023-11-09 21:36:43.623829613 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.73.0
-mtime: 1699389763
-commit: 15432488224b3d7a557798fd258828f618dadc90
+version: 0.73.1
+mtime: 1699540210
+commit: e44ec4d4bc680f70b191b88dd2e635a82d4b5c45
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.17445/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-11-08 22:18:15

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.17445 (New)


Package is "grype"

Wed Nov  8 22:18:15 2023 rev:41 rq:1124161 version:0.73.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-11-03 
22:21:39.747398892 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.17445/grype.changes   2023-11-08 
22:19:10.538364266 +0100
@@ -1,0 +2,32 @@
+Wed Nov 08 05:53:19 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.73.0:
+  * chore(deps): update Syft to v0.95.0 (#1591)
+  * chore: account for syft package metadata changes (#1423)
+  * fix: bump fangs to enable setting golang CPE config using env
+var (#1585)
+  * chore(deps): update bootstrap tools to latest versions (#1588)
+  * chore(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0
+(#1586)
+  * chore: bootstrap action cleanup (#1587)
+  * chore(deps): update bootstrap tools to latest versions (#1584)
+  * Incorporate format API changes from syft (#1582)
+  * chore(deps): bump github.com/docker/docker (#1579)
+  * feat(config): added reason field (#1532)
+  * chore(deps): bump github.com/glebarez/sqlite from 1.9.0 to
+1.10.0 (#1583)
+  * Colorize severity in table output (#1284)
+  * feat: add custom maven comparator (#1571)
+  * chore: fix path to quality tests (#1578)
+  * capture quality gate state on failures (#1576)
+  * chore(deps): bump github.com/google/uuid from 1.3.1 to 1.4.0
+(#1575)
+  * chore(deps): update bootstrap tools to latest versions (#1574)
+  * chore(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.3
+(#1573)
+  * docs: add cbl-mariner to supported distro (#1569)
+  * chore(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1
+(#1570)
+  * chore(deps): update bootstrap tools to latest versions (#1567)
+
+---

Old:

  grype-0.72.0.obscpio

New:

  grype-0.73.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.deK9Ah/_old  2023-11-08 22:19:12.878450233 +0100
+++ /var/tmp/diff_new_pack.deK9Ah/_new  2023-11-08 22:19:12.878450233 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.72.0
+Version:0.73.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.deK9Ah/_old  2023-11-08 22:19:12.906451261 +0100
+++ /var/tmp/diff_new_pack.deK9Ah/_new  2023-11-08 22:19:12.910451408 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.72.0
+v0.73.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.deK9Ah/_old  2023-11-08 22:19:12.930452143 +0100
+++ /var/tmp/diff_new_pack.deK9Ah/_new  2023-11-08 22:19:12.934452290 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  04df28051b7694a5e4a28fc5b2ea2068f24ef213
+  15432488224b3d7a557798fd258828f618dadc90
 (No newline at EOF)
 

++ grype-0.72.0.obscpio -> grype-0.73.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.72.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.17445/grype-0.73.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.deK9Ah/_old  2023-11-08 22:19:12.970453613 +0100
+++ /var/tmp/diff_new_pack.deK9Ah/_new  2023-11-08 22:19:12.974453759 +0100
@@ -1,5 +1,5 @@
 name: grype
-version: 0.72.0
-mtime: 1697824656
-commit: 04df28051b7694a5e4a28fc5b2ea2068f24ef213
+version: 0.73.0
+mtime: 1699389763
+commit: 15432488224b3d7a557798fd258828f618dadc90
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.17445/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-11-03 22:20:47

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.17445 (New)


Package is "grype"

Fri Nov  3 22:20:47 2023 rev:40 rq:1123153 version:0.72.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-10-22 
21:02:21.586380909 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.17445/grype.changes   2023-11-03 
22:21:39.747398892 +0100
@@ -1,0 +2,5 @@
+Fri Nov  3 09:14:08 UTC 2023 - Johannes Kastl 
+
+- BuildRequire go1.21
+
+---



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.sVJTNC/_old  2023-11-03 22:21:40.723434796 +0100
+++ /var/tmp/diff_new_pack.sVJTNC/_new  2023-11-03 22:21:40.727434943 +0100
@@ -26,7 +26,7 @@
 URL:https://github.com/anchore/grype
 Source: grype-%{version}.tar.gz
 Source1:vendor.tar.gz
-BuildRequires:  go >= 1.18
+BuildRequires:  go >= 1.21
 
 %description
 A vulnerability scanner for container images and filesystems. Easily install 
the binary to try it out. Works with Syft, the powerful SBOM (software bill of 
materials) tool for container images and filesystems.

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-10-22 21:02:06

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1945 (New)


Package is "grype"

Sun Oct 22 21:02:06 2023 rev:39 rq:1119364 version:0.72.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-10-13 
23:16:11.450322666 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1945/grype.changes2023-10-22 
21:02:21.586380909 +0200
@@ -1,0 +2,18 @@
+Sat Oct 21 18:17:32 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.72.0:
+  * chore(deps): update Syft to v0.94.0 (#1566)
+  * Incorporate Syft java detection improvements (#1555)
+  * add exception for go stdlib search by CPE (#1565)
+  * chore(deps): bump actions/checkout from 4.1.0 to 4.1.1 (#1564)
+  * Add --ignore-states flag for ignoring findings with specific
+fix states (#1473)
+  * feat: update go-sarif library to use latest release (#1563)
+  * bump clio to get stderr reporting fix (#1561)
+  * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.2
+to 1.4.3 (#1558)
+  * chore(deps): bump github.com/charmbracelet/lipgloss from 0.9.0
+to 0.9.1 (#1557)
+  * Add checksum signing (#1535)
+
+---

Old:

  grype-0.71.0.obscpio

New:

  grype-0.72.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.mczUxU/_old  2023-10-22 21:02:23.014432835 +0200
+++ /var/tmp/diff_new_pack.mczUxU/_new  2023-10-22 21:02:23.014432835 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.71.0
+Version:0.72.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.mczUxU/_old  2023-10-22 21:02:23.046433999 +0200
+++ /var/tmp/diff_new_pack.mczUxU/_new  2023-10-22 21:02:23.046433999 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.71.0
+v0.72.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.mczUxU/_old  2023-10-22 21:02:23.066434726 +0200
+++ /var/tmp/diff_new_pack.mczUxU/_new  2023-10-22 21:02:23.070434871 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  3d582fd85145afe3fd3726437527a321efb664e9
+  04df28051b7694a5e4a28fc5b2ea2068f24ef213
 (No newline at EOF)
 

++ grype-0.71.0.obscpio -> grype-0.72.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.71.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1945/grype-0.72.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.mczUxU/_old  2023-10-22 21:02:23.106436180 +0200
+++ /var/tmp/diff_new_pack.mczUxU/_new  2023-10-22 21:02:23.106436180 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.71.0
-mtime: 1697116131
-commit: 3d582fd85145afe3fd3726437527a321efb664e9
+version: 0.72.0
+mtime: 1697824656
+commit: 04df28051b7694a5e4a28fc5b2ea2068f24ef213
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1945/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-10-13 23:15:07

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.20540 (New)


Package is "grype"

Fri Oct 13 23:15:07 2023 rev:38 rq:1117561 version:0.71.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-10-12 
11:42:18.965478497 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.20540/grype.changes   2023-10-13 
23:16:11.450322666 +0200
@@ -1,0 +2,11 @@
+Fri Oct 13 05:01:03 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.71.0:
+  * chore(deps): bump golang.org/x/net from 0.16.0 to 0.17.0
+(#1554)
+  * feat: disable CPE-based matching for GHSA ecosystems by default
+(#1412)
+  * chore(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0
+(#1552)
+
+---

Old:

  grype-0.70.0.obscpio

New:

  grype-0.71.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.jm6W4G/_old  2023-10-13 23:16:12.834372866 +0200
+++ /var/tmp/diff_new_pack.jm6W4G/_new  2023-10-13 23:16:12.838373011 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.70.0
+Version:0.71.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0
@@ -32,8 +32,7 @@
 A vulnerability scanner for container images and filesystems. Easily install 
the binary to try it out. Works with Syft, the powerful SBOM (software bill of 
materials) tool for container images and filesystems.
 
 %prep
-%setup -q
-%setup -q -T -D -a 1
+%autosetup -p 1 -a 1
 
 %build
 DATE_FMT="+%%Y-%%m-%%dT%%H:%%M:%%SZ"

++ _service ++
--- /var/tmp/diff_new_pack.jm6W4G/_old  2023-10-13 23:16:12.870374172 +0200
+++ /var/tmp/diff_new_pack.jm6W4G/_new  2023-10-13 23:16:12.874374317 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.70.0
+v0.71.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.jm6W4G/_old  2023-10-13 23:16:12.894375043 +0200
+++ /var/tmp/diff_new_pack.jm6W4G/_new  2023-10-13 23:16:12.898375188 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  7e5df380291cd0a007cb121b790631803ba854e5
+  3d582fd85145afe3fd3726437527a321efb664e9
 (No newline at EOF)
 

++ grype-0.70.0.obscpio -> grype-0.71.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.70.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.20540/grype-0.71.0.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.jm6W4G/_old  2023-10-13 23:16:12.934376494 +0200
+++ /var/tmp/diff_new_pack.jm6W4G/_new  2023-10-13 23:16:12.938376639 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.70.0
-mtime: 1696962394
-commit: 7e5df380291cd0a007cb121b790631803ba854e5
+version: 0.71.0
+mtime: 1697116131
+commit: 3d582fd85145afe3fd3726437527a321efb664e9
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.20540/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-10-11 23:55:34

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1807 (New)


Package is "grype"

Wed Oct 11 23:55:34 2023 rev:37 rq:1116770 version:0.70.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-10-08 
12:21:58.486045013 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1807/grype.changes2023-10-12 
11:42:18.965478497 +0200
@@ -1,0 +2,17 @@
+Wed Oct 11 04:28:01 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.70.0:
+  * chore(deps): update Syft to v0.93.0 (#1550)
+  * chore(deps): bump gorm.io/gorm from 1.25.4 to 1.25.5 (#1547)
+  * chore(deps): bump github.com/charmbracelet/lipgloss from 0.8.0
+to 0.9.0 (#1548)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.7.2 to
+1.7.3 (#1549)
+  * chore(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
+(#1544)
+  * fix: empty descriptor name and version (#1542)
+  * chore: removes unnecessary conditional (#1539)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.4.10
+to 0.4.11 (#1533)
+
+---

Old:

  grype-0.69.1.obscpio

New:

  grype-0.70.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.lpxZwy/_old  2023-10-12 11:42:20.617538260 +0200
+++ /var/tmp/diff_new_pack.lpxZwy/_new  2023-10-12 11:42:20.617538260 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.69.1
+Version:0.70.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.lpxZwy/_old  2023-10-12 11:42:20.653539563 +0200
+++ /var/tmp/diff_new_pack.lpxZwy/_new  2023-10-12 11:42:20.657539707 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.69.1
+v0.70.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.lpxZwy/_old  2023-10-12 11:42:20.677540431 +0200
+++ /var/tmp/diff_new_pack.lpxZwy/_new  2023-10-12 11:42:20.681540575 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  dec563669d683ab4d11e95a28635099673363d80
+  7e5df380291cd0a007cb121b790631803ba854e5
 (No newline at EOF)
 

++ grype-0.69.1.obscpio -> grype-0.70.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.69.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1807/grype-0.70.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.lpxZwy/_old  2023-10-12 11:42:20.717541878 +0200
+++ /var/tmp/diff_new_pack.lpxZwy/_new  2023-10-12 11:42:20.721542023 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.69.1
-mtime: 1695832052
-commit: dec563669d683ab4d11e95a28635099673363d80
+version: 0.70.0
+mtime: 1696962394
+commit: 7e5df380291cd0a007cb121b790631803ba854e5
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1807/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-10-08 12:18:34

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.28202 (New)


Package is "grype"

Sun Oct  8 12:18:34 2023 rev:36 rq:1116168 version:0.69.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-09-06 
19:01:26.274498573 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.28202/grype.changes   2023-10-08 
12:21:58.486045013 +0200
@@ -1,0 +2,77 @@
+Sat Oct 07 05:34:32 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.69.1:
+  * chore(deps): update Syft to v0.92.0 (#1527)
+  * chore(deps): update bootstrap tools to latest versions (#1524)
+  * chore: add OpenSSF Best Practices badge (#1523)
+  * bump labels to latest (#1525)
+  * chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#1519)
+  * chore(deps): update bootstrap tools to latest versions (#1520)
+  * chore: explicitly test go pseudoversion (#1522)
+  * chore: remove outdated comment about fuzzy matching python
+versions (#1521)
+  * chore: bump stereoscope to fix data race in UI (#1517)
+  * fix: correctly guess tool comparison (#1516)
+  * chore(deps): update bootstrap tools to latest versions (#1515)
+  * chore(deps): bump github.com/spf13/afero from 1.9.5 to 1.10.0
+(#1514)
+  * fix: use PEP440 for Python package version comparison (#1510)
+
+---
+Sat Oct 07 05:30:38 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.69.0:
+  * chore(deps): bump tibdex/github-app-token from 2.0.0 to 2.1.0
+(#1506)
+  * Upgrade syft to v0.91.0 (#1508)
+  * Update chronicle to v0.8.0 (#1507)
+  * fix: terminal clobbering when commands return errors (#1505)
+  * Fix typo in flag (#1501)
+  * chore(deps): bump actions/cache from 3.2.6 to 3.3.2 (#1499)
+  * chore(deps): remove dependency on sqlite fork; bump
+gorm.io/gorm from 1.23.10 to 1.25.4 (#1448)
+  * chore: pin cache versions (#1495)
+  * chore(deps): bump actions/checkout from 3 to 4 (#1475)
+
+---
+Sat Oct 07 05:27:54 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.68.1:
+  * fix: version output including supported db schema (#1494)
+  * chore: pin actions; pin images; add top level action
+permissions (#1493)
+
+---
+Sat Oct 07 05:23:52 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.68.0:
+  * feat: introduce exit code failure option for db update check
+(#1463)
+  * Ignore/add match results based on OpenVEX documents (#1397)
+  * chore(deps): bump docker/login-action from 2 to 3 (#1488)
+  * chore: Fix race conditions around stager, enable detector
+(#1489)
+  * chore(deps): update Syft to v0.90.0 (#1486)
+  * chore(deps): bump tibdex/github-app-token from 1.8.2 to 2.0.0
+(#1485)
+  * chore: update CLI to CLIO (#1437)
+
+---
+Sat Oct 07 05:16:26 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.67.0:
+  * feat: grype explain prototype (#1367)
+  * chore: Update go declaration to have point version (#1484)
+  * chore: update grype to use Go v1.21 (#1480)
+  * chore(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3
+(#1481)
+  * chore(deps): bump tibdex/github-app-token from 1.8.0 to 1.8.2
+(#1474)
+  * chore(deps): bump golang.org/x/term from 0.11.0 to 0.12.0
+(#1476)
+  * chore(deps): bump github.com/docker/docker (#1478)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.4.8 to
+0.4.10 (#1477)
+  * chore: bump quality gate to use syft v0.89.0 (#1479)
+
+---

Old:

  grype-0.66.0.obscpio

New:

  grype-0.69.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.np1Jbe/_old  2023-10-08 12:22:02.342183656 +0200
+++ /var/tmp/diff_new_pack.np1Jbe/_new  2023-10-08 12:22:02.346183800 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.66.0
+Version:0.69.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.np1Jbe/_old  2023-10-08 12:22:02.374184806 +0200
+++ /var/tmp/diff_new_pack.np1Jbe/_new  2023-10-08 12:22:02.378184951 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.66.0
+v0.69.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /v

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-09-06 18:57:44

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1766 (New)


Package is "grype"

Wed Sep  6 18:57:44 2023 rev:35 rq:1109073 version:0.66.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-08-06 
16:30:29.732041134 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1766/grype.changes2023-09-06 
19:01:26.274498573 +0200
@@ -1,0 +2,42 @@
+Tue Sep 05 14:42:07 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.66.0:
+  * chore(deps): update Syft to v0.89.0 (#1472)
+  * Add registry certificate verification support (#1232)
+  * fix: set correct default to exclude overlapping binaries
+(#1452)
+  * fix: portage version comparison (#1468)
+  * chore: pin the vulnerability DB used in quality gate testing
+(#1470)
+  * chore(deps): update Syft to v0.88.0 (#1466)
+  * chore: update quill version (#1465)
+  * docs: fix some typos on main README (#1455)
+  * note supported versions of grype (#1458)
+  * bump vml labels (#1462)
+  * chore(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
+(#1453)
+  * chore(deps): update bootstrap tools to latest versions (#1450)
+  * fill out new version notice (#1445)
+  * feat: filter out packages owned by OS packages (#1387)
+  * fix: Only remove packages by binary overlap (#1444)
+  * chore: bump to syft v0.87.1 in quality gate (#1442)
+
+---
+Tue Sep 05 14:28:34 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.65.2:
+  * chore(deps): update Syft to v0.87.1 (#1432)
+  * chore: Init submodule if missing (#1439)
+  * chore: exclude yardstick store from filename rules (#1440)
+  * chore: use latest yardstick (#1438)
+  * fix: update semver regular expression constraint to allow for
+1.20rc1 cases no '-' (#1434)
+  * chore(deps): update bootstrap tools to latest versions (#1424)
+  * chore(deps): bump actions/setup-go from 4.0.1 to 4.1.0 (#1421)
+  * docs(example-templates): add a simple JUnit XML template
+(#1422)
+  * chore(deps): bump golang.org/x/term from 0.10.0 to 0.11.0
+(#1420)
+  * chore: use syft v0.86.1 in the quality gate tests (#1418)
+
+---

Old:

  grype-0.65.1.obscpio

New:

  grype-0.66.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.SJRWAC/_old  2023-09-06 19:01:29.582616501 +0200
+++ /var/tmp/diff_new_pack.SJRWAC/_new  2023-09-06 19:01:29.586616643 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.65.1
+Version:0.66.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.SJRWAC/_old  2023-09-06 19:01:29.618617784 +0200
+++ /var/tmp/diff_new_pack.SJRWAC/_new  2023-09-06 19:01:29.622617927 +0200
@@ -1,22 +1,22 @@
 
-  
+  
 https://github.com/anchore/grype
 git
 .git
-v0.65.1
+v0.66.0
 @PARENT_TAG@
 enable
 v(.*)
 v*
   
-  
+  
   
   
   
 *.tar
 gz
   
-  
+  
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.SJRWAC/_old  2023-09-06 19:01:29.638618497 +0200
+++ /var/tmp/diff_new_pack.SJRWAC/_new  2023-09-06 19:01:29.642618640 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  078a6c5e9e6e9e6e1037da6dcf953623e7d38500
+  35ffa2ac421130af2b8578464a6657aae98295ed
 (No newline at EOF)
 

++ grype-0.65.1.obscpio -> grype-0.66.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.65.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1766/grype-0.66.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.SJRWAC/_old  2023-09-06 19:01:29.674619780 +0200
+++ /var/tmp/diff_new_pack.SJRWAC/_new  2023-09-06 19:01:29.674619780 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.65.1
-mtime: 1691098117
-commit: 078a6c5e9e6e9e6e1037da6dcf953623e7d38500
+version: 0.66.0
+mtime: 1693497731
+commit: 35ffa2ac421130af2b8578464a6657aae98295ed
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1766/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-08-06 16:30:06

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.22712 (New)


Package is "grype"

Sun Aug  6 16:30:06 2023 rev:34 rq:1102549 version:0.65.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-08-01 
15:38:32.817826657 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.22712/grype.changes   2023-08-06 
16:30:29.732041134 +0200
@@ -1,0 +2,7 @@
+Sun Aug 06 07:56:46 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.65.1:
+  * fix: some hang conditions (#1414)
+  * chore(deps): update bootstrap tools to latest versions (#1413)
+
+---

Old:

  grype-0.65.0.obscpio

New:

  grype-0.65.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.IRxH9r/_old  2023-08-06 16:30:31.340050880 +0200
+++ /var/tmp/diff_new_pack.IRxH9r/_new  2023-08-06 16:30:31.344050904 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.65.0
+Version:0.65.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.IRxH9r/_old  2023-08-06 16:30:31.388051171 +0200
+++ /var/tmp/diff_new_pack.IRxH9r/_new  2023-08-06 16:30:31.392051195 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.65.0
+v0.65.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.IRxH9r/_old  2023-08-06 16:30:31.436051462 +0200
+++ /var/tmp/diff_new_pack.IRxH9r/_new  2023-08-06 16:30:31.436051462 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  c97048baa1595a481a26f7add8b18d59ec65838a
+  078a6c5e9e6e9e6e1037da6dcf953623e7d38500
 (No newline at EOF)
 

++ grype-0.65.0.obscpio -> grype-0.65.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.65.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.22712/grype-0.65.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.IRxH9r/_old  2023-08-06 16:30:31.484051753 +0200
+++ /var/tmp/diff_new_pack.IRxH9r/_new  2023-08-06 16:30:31.488051777 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.65.0
-mtime: 1690826316
-commit: c97048baa1595a481a26f7add8b18d59ec65838a
+version: 0.65.1
+mtime: 1691098117
+commit: 078a6c5e9e6e9e6e1037da6dcf953623e7d38500
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.22712/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-08-01 15:38:29

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.32662 (New)


Package is "grype"

Tue Aug  1 15:38:29 2023 rev:33 rq:1101691 version:0.65.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-07-25 
11:51:40.981656161 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.32662/grype.changes   2023-08-01 
15:38:32.817826657 +0200
@@ -1,0 +2,18 @@
+Tue Aug 01 10:17:23 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.65.0:
+  * chore(deps): update Syft to v0.86.1 (#1410)
+  * chore(deps): bump github.com/docker/docker (#1402)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.7.1 to
+1.7.2 (#1406)
+  * chore: bump quality gate label dataset (#1404)
+  * feat: implement secondary sorting for default json output
+(#1403)
+  * feat: update table sort to be name, version, type, severity,
+vulnerability (#1400)
+  * chore: in quality tests, only colorize quality output if in a
+tty (#1398)
+  * chore(deps): bump github.com/gookit/color from 1.5.3 to 1.5.4
+(#1396)
+
+---

Old:

  grype-0.64.2.obscpio

New:

  grype-0.65.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.Yjdkot/_old  2023-08-01 15:38:34.753838645 +0200
+++ /var/tmp/diff_new_pack.Yjdkot/_new  2023-08-01 15:38:34.757838670 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.64.2
+Version:0.65.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.Yjdkot/_old  2023-08-01 15:38:34.789838868 +0200
+++ /var/tmp/diff_new_pack.Yjdkot/_new  2023-08-01 15:38:34.793838893 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.64.2
+v0.65.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.Yjdkot/_old  2023-08-01 15:38:34.813839017 +0200
+++ /var/tmp/diff_new_pack.Yjdkot/_new  2023-08-01 15:38:34.817839042 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  e09bae392d6cafec524b5fda4692ed413a1b1167
+  c97048baa1595a481a26f7add8b18d59ec65838a
 (No newline at EOF)
 

++ grype-0.64.2.obscpio -> grype-0.65.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.64.2.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.32662/grype-0.65.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.Yjdkot/_old  2023-08-01 15:38:34.881839438 +0200
+++ /var/tmp/diff_new_pack.Yjdkot/_new  2023-08-01 15:38:34.889839487 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.64.2
-mtime: 1689798980
-commit: e09bae392d6cafec524b5fda4692ed413a1b1167
+version: 0.65.0
+mtime: 1690826316
+commit: c97048baa1595a481a26f7add8b18d59ec65838a
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.32662/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-07-25 11:50:23

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1467 (New)


Package is "grype"

Tue Jul 25 11:50:23 2023 rev:32 rq:1099758 version:0.64.2

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-07-18 
22:08:36.319150323 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1467/grype.changes2023-07-25 
11:51:40.981656161 +0200
@@ -1,0 +2,10 @@
+Thu Jul 20 13:54:06 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.64.2:
+  * fix: vulnerabilities should be printed when `--fail-on` fails
+(#1395)
+  * chore: bump yardstick to address PyYAML cython compatibility
+issues (#1394)
+  * Refactor integ test to table test (#1390)
+
+---

Old:

  grype-0.64.1.obscpio

New:

  grype-0.64.2.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.kDyPiA/_old  2023-07-25 11:51:43.533671104 +0200
+++ /var/tmp/diff_new_pack.kDyPiA/_new  2023-07-25 11:51:43.541671150 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.64.1
+Version:0.64.2
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.kDyPiA/_old  2023-07-25 11:51:43.577671361 +0200
+++ /var/tmp/diff_new_pack.kDyPiA/_new  2023-07-25 11:51:43.577671361 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.64.1
+v0.64.2
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.kDyPiA/_old  2023-07-25 11:51:43.597671478 +0200
+++ /var/tmp/diff_new_pack.kDyPiA/_new  2023-07-25 11:51:43.605671525 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  43bcf301c445d13360d724971fd089cd7a61ead9
+  e09bae392d6cafec524b5fda4692ed413a1b1167
 (No newline at EOF)
 

++ grype-0.64.1.obscpio -> grype-0.64.2.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.64.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1467/grype-0.64.2.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.kDyPiA/_old  2023-07-25 11:51:43.661671852 +0200
+++ /var/tmp/diff_new_pack.kDyPiA/_new  2023-07-25 11:51:43.665671876 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.64.1
-mtime: 1689624994
-commit: 43bcf301c445d13360d724971fd089cd7a61ead9
+version: 0.64.2
+mtime: 1689798980
+commit: e09bae392d6cafec524b5fda4692ed413a1b1167
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1467/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-07-18 22:08:10

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.3193 (New)


Package is "grype"

Tue Jul 18 22:08:10 2023 rev:31 rq:1099182 version:0.64.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-07-14 
15:36:03.078079239 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.3193/grype.changes2023-07-18 
22:08:36.319150323 +0200
@@ -1,0 +2,9 @@
+Tue Jul 18 04:49:52 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.64.1:
+  * Pass correct output file (#1391)
+  * chore(deps): bump github.com/gkampitakis/go-snaps from 0.4.7 to
+0.4.8 (#1389)
+  * Port UI to bubbletea (#1385)
+
+---

Old:

  grype-0.64.0.obscpio

New:

  grype-0.64.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.BN1W4c/_old  2023-07-18 22:08:38.163160632 +0200
+++ /var/tmp/diff_new_pack.BN1W4c/_new  2023-07-18 22:08:38.171160677 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.64.0
+Version:0.64.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0
@@ -42,7 +42,7 @@
-mod=vendor \
-buildmode=pie \
-ldflags="-X github.com/anchore/grype/internal/version.version=%{version} 
-X github.com/anchore/grype/internal/version.buildDate=$BUILD_DATE" \
-   -o bin/grype .
+   -o bin/grype ./cmd/grype/
 
 %install
 # Install the binary.

++ _service ++
--- /var/tmp/diff_new_pack.BN1W4c/_old  2023-07-18 22:08:38.215160923 +0200
+++ /var/tmp/diff_new_pack.BN1W4c/_new  2023-07-18 22:08:38.219160945 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.64.0
+v0.64.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.BN1W4c/_old  2023-07-18 22:08:38.243161079 +0200
+++ /var/tmp/diff_new_pack.BN1W4c/_new  2023-07-18 22:08:38.247161102 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  37f436cfb6eb871bfde9cfcb1a360c510751afc9
+  43bcf301c445d13360d724971fd089cd7a61ead9
 (No newline at EOF)
 

++ grype-0.64.0.obscpio -> grype-0.64.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.64.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.3193/grype-0.64.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.BN1W4c/_old  2023-07-18 22:08:38.295161370 +0200
+++ /var/tmp/diff_new_pack.BN1W4c/_new  2023-07-18 22:08:38.307161437 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.64.0
-mtime: 1689260801
-commit: 37f436cfb6eb871bfde9cfcb1a360c510751afc9
+version: 0.64.1
+mtime: 1689624994
+commit: 43bcf301c445d13360d724971fd089cd7a61ead9
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.3193/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-07-14 15:35:55

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.3193 (New)


Package is "grype"

Fri Jul 14 15:35:55 2023 rev:30 rq:1098596 version:0.64.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-07-03 
17:42:04.376466900 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.3193/grype.changes2023-07-14 
15:36:03.078079239 +0200
@@ -1,0 +2,15 @@
+Fri Jul 14 05:26:47 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.64.0:
+  * chore(deps): update Syft to v0.85.0 (#1383)
+  * feat(outputs): allow to set multiple outputs (#648) (#1346)
+  * Remove Docker section from DEVELOPING.md (#1384)
+  * chore(deps): update bootstrap tools to latest versions (#1381)
+  * chore(deps): bump github.com/docker/docker (#1382)
+  * Port to new syft source API (#1376)
+  * chore(deps): bump golang.org/x/term from 0.9.0 to 0.10.0
+(#1375)
+  * chore: bump quality gate labels and images (#1374)
+  * chore(deps): update bootstrap tools to latest versions (#1368)
+
+---

Old:

  grype-0.63.1.obscpio

New:

  grype-0.64.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.2RA706/_old  2023-07-14 15:36:04.950090128 +0200
+++ /var/tmp/diff_new_pack.2RA706/_new  2023-07-14 15:36:04.954090152 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.63.1
+Version:0.64.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.2RA706/_old  2023-07-14 15:36:05.002090430 +0200
+++ /var/tmp/diff_new_pack.2RA706/_new  2023-07-14 15:36:05.006090454 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.63.1
+v0.64.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.2RA706/_old  2023-07-14 15:36:05.022090547 +0200
+++ /var/tmp/diff_new_pack.2RA706/_new  2023-07-14 15:36:05.026090570 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  ecf9e65b951aed43098f0e5da4441a7e17f190af
+  37f436cfb6eb871bfde9cfcb1a360c510751afc9
 (No newline at EOF)
 

++ grype-0.63.1.obscpio -> grype-0.64.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.63.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.3193/grype-0.64.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.2RA706/_old  2023-07-14 15:36:05.062090779 +0200
+++ /var/tmp/diff_new_pack.2RA706/_new  2023-07-14 15:36:05.066090803 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.63.1
-mtime: 1688072717
-commit: ecf9e65b951aed43098f0e5da4441a7e17f190af
+version: 0.64.0
+mtime: 1689260801
+commit: 37f436cfb6eb871bfde9cfcb1a360c510751afc9
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.3193/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-07-03 17:42:02

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.13546 (New)


Package is "grype"

Mon Jul  3 17:42:02 2023 rev:29 rq:1096245 version:0.63.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-06-22 
23:26:46.438059718 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.13546/grype.changes   2023-07-03 
17:42:04.376466900 +0200
@@ -1,0 +2,16 @@
+Fri Jun 30 18:26:00 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.63.1:
+  * Add a simple CSV format template to the templates/ directory
+and tweak docs (#1366)
+  * chore(deps): update Syft to v0.84.1 (#1372)
+  * fix: Add more log4j-adjacent package ignore rules (#1358)
+  * chore: bump the quality gate labels (#1369)
+  * add oss community board auto-add workflow (#1364)
+  * fix: totals for vulnerability matches (#1359)
+  * chore(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0
+(#1363)
+  * chore(deps): bump anchore/sbom-action from 0.14.2 to 0.14.3
+(#1357)
+
+---

Old:

  grype-0.63.0.obscpio

New:

  grype-0.63.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.R2I7Fd/_old  2023-07-03 17:42:06.148477333 +0200
+++ /var/tmp/diff_new_pack.R2I7Fd/_new  2023-07-03 17:42:06.152477357 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.63.0
+Version:0.63.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.R2I7Fd/_old  2023-07-03 17:42:06.188477568 +0200
+++ /var/tmp/diff_new_pack.R2I7Fd/_new  2023-07-03 17:42:06.192477591 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.63.0
+v0.63.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.R2I7Fd/_old  2023-07-03 17:42:06.208477686 +0200
+++ /var/tmp/diff_new_pack.R2I7Fd/_new  2023-07-03 17:42:06.212477709 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  ca79c2a753fa90e1166a0f78f6e57c43808ba0c9
+  ecf9e65b951aed43098f0e5da4441a7e17f190af
 (No newline at EOF)
 

++ grype-0.63.0.obscpio -> grype-0.63.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.63.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.13546/grype-0.63.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.R2I7Fd/_old  2023-07-03 17:42:06.252477945 +0200
+++ /var/tmp/diff_new_pack.R2I7Fd/_new  2023-07-03 17:42:06.256477969 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.63.0
-mtime: 1687362511
-commit: ca79c2a753fa90e1166a0f78f6e57c43808ba0c9
+version: 0.63.1
+mtime: 1688072717
+commit: ecf9e65b951aed43098f0e5da4441a7e17f190af
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.13546/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-06-22 23:26:18

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.15902 (New)


Package is "grype"

Thu Jun 22 23:26:18 2023 rev:28 rq:1094606 version:0.63.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-06-13 
16:10:00.923064284 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.15902/grype.changes   2023-06-22 
23:26:46.438059718 +0200
@@ -1,0 +2,20 @@
+Thu Jun 22 05:08:42 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.63.0:
+  * Configure chronicle to pre-1.0 mode (#1356)
+  * chore(deps): update Syft to v0.84.0 (#1354)
+  * chore(deps): update bootstrap tools to latest versions (#1353)
+  * chore(deps): update Syft to v0.83.1 (#1352)
+  * chore(deps): bump golang.org/x/term from 0.8.0 to 0.9.0 (#1350)
+  * chore(deps): bump peter-evans/create-pull-request from 5.0.1 to
+5.0.2 (#1351)
+  * chore(deps): bump github/codeql-action from 2.3.6 to 2.13.4
+(#1344)
+  * chore: Update the contributing guide (#1347)
+  * feat: add community template folder and new table template
+(#1343)
+  * chore: log unsupported package qualifier as debug (#1340)
+  * feat: add package info to search by for all match details
+(#1339)
+
+---

Old:

  grype-0.62.3.obscpio

New:

  grype-0.63.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.IPFnDf/_old  2023-06-22 23:26:48.194068673 +0200
+++ /var/tmp/diff_new_pack.IPFnDf/_new  2023-06-22 23:26:48.198068694 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.62.3
+Version:0.63.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.IPFnDf/_old  2023-06-22 23:26:48.234068877 +0200
+++ /var/tmp/diff_new_pack.IPFnDf/_new  2023-06-22 23:26:48.234068877 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.62.3
+v0.63.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.IPFnDf/_old  2023-06-22 23:26:48.254068979 +0200
+++ /var/tmp/diff_new_pack.IPFnDf/_new  2023-06-22 23:26:48.258069000 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  3865f4cc1dfcdcefbb7009400df153f24b18c772
+  ca79c2a753fa90e1166a0f78f6e57c43808ba0c9
 (No newline at EOF)
 

++ grype-0.62.3.obscpio -> grype-0.63.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.62.3.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.15902/grype-0.63.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.IPFnDf/_old  2023-06-22 23:26:48.334069388 +0200
+++ /var/tmp/diff_new_pack.IPFnDf/_new  2023-06-22 23:26:48.338069408 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.62.3
-mtime: 1685999840
-commit: 3865f4cc1dfcdcefbb7009400df153f24b18c772
+version: 0.63.0
+mtime: 1687362511
+commit: ca79c2a753fa90e1166a0f78f6e57c43808ba0c9
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.15902/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-06-13 16:09:56

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.15902 (New)


Package is "grype"

Tue Jun 13 16:09:56 2023 rev:27 rq:1092762 version:0.62.3

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-05-28 
19:23:38.877249665 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.15902/grype.changes   2023-06-13 
16:10:00.923064284 +0200
@@ -1,0 +2,16 @@
+Mon Jun 12 19:46:06 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.62.3:
+  * chore(deps): update bootstrap tools to latest versions (#1334)
+  * chore(deps): bump github.com/sirupsen/logrus from 1.9.2 to
+1.9.3 (#1336)
+  * chore(deps): bump github/codeql-action from 2.3.5 to 2.3.6
+(#1331)
+  * Hide suppressed vulnerabilities when --show-suppressed is not
+given (#1322)
+  * chore(deps): bump github.com/stretchr/testify from 1.8.3 to
+1.8.4 (#1324)
+  * chore(deps): bump github.com/spf13/viper from 1.15.0 to 1.16.0
+(#1323)
+
+---

Old:

  grype-0.62.2.obscpio

New:

  grype-0.62.3.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.nizsIa/_old  2023-06-13 16:10:02.687074691 +0200
+++ /var/tmp/diff_new_pack.nizsIa/_new  2023-06-13 16:10:02.695074738 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.62.2
+Version:0.62.3
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.nizsIa/_old  2023-06-13 16:10:02.735074974 +0200
+++ /var/tmp/diff_new_pack.nizsIa/_new  2023-06-13 16:10:02.739074998 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.62.2
+v0.62.3
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.nizsIa/_old  2023-06-13 16:10:02.763075140 +0200
+++ /var/tmp/diff_new_pack.nizsIa/_new  2023-06-13 16:10:02.767075163 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  77eb4bb53fa6a3c7fb9ae37aa35da456159dab57
+  3865f4cc1dfcdcefbb7009400df153f24b18c772
 (No newline at EOF)
 

++ grype-0.62.2.obscpio -> grype-0.62.3.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.62.2.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.15902/grype-0.62.3.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.nizsIa/_old  2023-06-13 16:10:02.815075447 +0200
+++ /var/tmp/diff_new_pack.nizsIa/_new  2023-06-13 16:10:02.819075469 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.62.2
-mtime: 1685122628
-commit: 77eb4bb53fa6a3c7fb9ae37aa35da456159dab57
+version: 0.62.3
+mtime: 1685999840
+commit: 3865f4cc1dfcdcefbb7009400df153f24b18c772
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.15902/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-05-28 19:23:18

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1533 (New)


Package is "grype"

Sun May 28 19:23:18 2023 rev:26 rq:1089337 version:0.62.2

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-05-24 
20:23:31.152593383 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1533/grype.changes2023-05-28 
19:23:38.877249665 +0200
@@ -1,0 +2,9 @@
+Sat May 27 10:48:41 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.62.2:
+  * feat: add source and type to CVSS information (#1317)
+  * chore(deps): bump github.com/docker/docker (#1320)
+  * chore(deps): bump github/codeql-action from 2.3.3 to 2.3.5
+(#1321)
+
+---

Old:

  grype-0.62.1.obscpio

New:

  grype-0.62.2.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.G9hBaU/_old  2023-05-28 19:23:40.661260282 +0200
+++ /var/tmp/diff_new_pack.G9hBaU/_new  2023-05-28 19:23:40.669260330 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.62.1
+Version:0.62.2
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.G9hBaU/_old  2023-05-28 19:23:40.697260496 +0200
+++ /var/tmp/diff_new_pack.G9hBaU/_new  2023-05-28 19:23:40.701260519 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.62.1
+v0.62.2
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.G9hBaU/_old  2023-05-28 19:23:40.721260639 +0200
+++ /var/tmp/diff_new_pack.G9hBaU/_new  2023-05-28 19:23:40.725260662 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  0f71006f622a3aa84fe70c0f2f05b7f399c373f0
+  77eb4bb53fa6a3c7fb9ae37aa35da456159dab57
 (No newline at EOF)
 

++ grype-0.62.1.obscpio -> grype-0.62.2.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.62.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1533/grype-0.62.2.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.G9hBaU/_old  2023-05-28 19:23:40.761260877 +0200
+++ /var/tmp/diff_new_pack.G9hBaU/_new  2023-05-28 19:23:40.765260900 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.62.1
-mtime: 1684864673
-commit: 0f71006f622a3aa84fe70c0f2f05b7f399c373f0
+version: 0.62.2
+mtime: 1685122628
+commit: 77eb4bb53fa6a3c7fb9ae37aa35da456159dab57
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1533/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-05-24 20:23:15

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1533 (New)


Package is "grype"

Wed May 24 20:23:15 2023 rev:25 rq:1088857 version:0.62.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-05-23 
14:55:24.358789343 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1533/grype.changes2023-05-24 
20:23:31.152593383 +0200
@@ -1,0 +2,7 @@
+Wed May 24 14:04:41 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.62.1:
+  * chore: update gomod with latest syft (#1313)
+  * chore(deps): bump github.com/docker/docker (#1311)
+
+---

Old:

  grype-0.62.0.obscpio

New:

  grype-0.62.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.9LTLVY/_old  2023-05-24 20:23:32.700602613 +0200
+++ /var/tmp/diff_new_pack.9LTLVY/_new  2023-05-24 20:23:32.704602636 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.62.0
+Version:0.62.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.9LTLVY/_old  2023-05-24 20:23:32.760602971 +0200
+++ /var/tmp/diff_new_pack.9LTLVY/_new  2023-05-24 20:23:32.764602994 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.62.0
+v0.62.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.9LTLVY/_old  2023-05-24 20:23:32.792603161 +0200
+++ /var/tmp/diff_new_pack.9LTLVY/_new  2023-05-24 20:23:32.800603209 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  852a2084171281049ab9cf5134627abeeacf82b2
+  0f71006f622a3aa84fe70c0f2f05b7f399c373f0
 (No newline at EOF)
 

++ grype-0.62.0.obscpio -> grype-0.62.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.62.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1533/grype-0.62.1.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.9LTLVY/_old  2023-05-24 20:23:32.868603614 +0200
+++ /var/tmp/diff_new_pack.9LTLVY/_new  2023-05-24 20:23:32.876603662 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.62.0
-mtime: 1684765054
-commit: 852a2084171281049ab9cf5134627abeeacf82b2
+version: 0.62.1
+mtime: 1684864673
+commit: 0f71006f622a3aa84fe70c0f2f05b7f399c373f0
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1533/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-05-23 14:54:47

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1533 (New)


Package is "grype"

Tue May 23 14:54:47 2023 rev:24 rq:1088549 version:0.62.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-04-22 
22:04:06.894527372 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1533/grype.changes2023-05-23 
14:55:24.358789343 +0200
@@ -1,0 +2,48 @@
+Tue May 23 07:32:20 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.62.0:
+  * bump syft to pre-release of v0.81.0 (#1310)
+  * add main bin ignore (#1305)
+  * chore(deps): bump github.com/stretchr/testify from 1.8.2 to
+1.8.3 (#1309)
+  * chore(deps): bump github.com/docker/docker (#1304)
+  * chore(deps): bump github.com/sirupsen/logrus from 1.9.0 to
+1.9.2 (#1307)
+  * chore(deps): bump github.com/cloudflare/circl from 1.1.0 to
+1.3.3 (#1289)
+  * chore(deps): bump github.com/docker/distribution (#1290)
+  * chore(deps): bump actions/setup-go from 4.0.0 to 4.0.1 (#1298)
+  * chore: update deprecated io/ioutil calls (#1296)
+  * feat: package qualifier for platform CPE (#1291)
+  * Fix reading syft json from stdin by redirect (#1299)
+  * should only use hermetic functions in templates (#1288)
+  * chore(deps): update bootstrap tools to latest versions (#1285)
+  * feat: add non-hermetic sprig functions (#1243) (#1273)
+  * fix: typo in logger prefix (#1283)
+  * chore(deps): bump github.com/docker/docker (#1280)
+  * chore(deps): bump anchore/sbom-action from 0.14.1 to 0.14.2
+(#1281)
+  * chore(deps): update Syft to v0.80.0 (#1276)
+  * chore(deps): update bootstrap tools to latest versions (#1277)
+  * docs: add config flag to configuration section (#1271) (#1274)
+  * chore(deps): bump github/codeql-action from 2.3.2 to 2.3.3
+(#1272)
+  * chore(deps): bump golang.org/x/term from 0.7.0 to 0.8.0 (#1268)
+  * chore(deps): update bootstrap tools to latest versions (#1270)
+  * Add support for Syft IDs in JSON output (#1266)
+  * docs: add "cyclonedx-json" to output formats (#1252)
+  * chore(deps): bump github.com/docker/docker (#1257)
+  * chore(deps): bump github/codeql-action from 2.3.1 to 2.3.2
+(#1261)
+  * chore(deps): bump peter-evans/create-pull-request from 5.0.0 to
+5.0.1 (#1263)
+  * Install skopeo during bootstrap (#1260)
+  * chore(deps): bump github/codeql-action from 2.3.0 to 2.3.1
+(#1258)
+  * chore(deps): bump github/codeql-action from 2.2.12 to 2.3.0
+(#1256)
+  * chore: update quality gate labels and add keycloak (#1255)
+  * fix: false positive for purl provider for RPM without epoch
+(#1237)
+
+---

Old:

  grype-0.61.1.obscpio

New:

  grype-0.62.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.B7gNni/_old  2023-05-23 14:55:25.870798289 +0200
+++ /var/tmp/diff_new_pack.B7gNni/_new  2023-05-23 14:55:25.874798313 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.61.1
+Version:0.62.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.B7gNni/_old  2023-05-23 14:55:25.914798549 +0200
+++ /var/tmp/diff_new_pack.B7gNni/_new  2023-05-23 14:55:25.918798573 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.61.1
+v0.62.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.B7gNni/_old  2023-05-23 14:55:25.942798714 +0200
+++ /var/tmp/diff_new_pack.B7gNni/_new  2023-05-23 14:55:25.946798738 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  3caabc87114a3e0cbfbac7770989bc81e2f5a957
+  852a2084171281049ab9cf5134627abeeacf82b2
 (No newline at EOF)
 

++ grype-0.61.1.obscpio -> grype-0.62.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.61.1.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1533/grype-0.62.0.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.B7gNni/_old  2023-05-23 14:55:25.994799023 +0200
+++ /var/tmp/diff_new_pack.B7gNni/_new  2023-05-23 14:55:25.998799046 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.61.1
-mtime: 1682096282
-commit: 3caabc87114a3e0cbfbac7770989bc81e2f5a957
+version: 0.62.0
+mtime: 1684765054
+commit: 852a2084171281049ab9cf5134627abeeacf82b2
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-04-22 22:03:45

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1533 (New)


Package is "grype"

Sat Apr 22 22:03:45 2023 rev:23 rq:1082192 version:0.61.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-04-05 
21:35:21.238465354 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1533/grype.changes2023-04-22 
22:04:06.894527372 +0200
@@ -1,0 +2,25 @@
+Sat Apr 22 14:34:27 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.61.1:
+  * chore: bump syft to latest version v0.79.0 (#1250)
+  * feat: add timestamp to json output (#1170) (#1249)
+  * chore(deps): update Syft to v0.78.0 (#1242)
+  * chore(deps): bump github.com/docker/docker (#1241)
+  * chore(deps): update bootstrap tools to latest versions (#1239)
+  * chore(deps): bump github/codeql-action from 2.2.11 to 2.2.12
+(#1233)
+  * chore(deps): update bootstrap tools to latest versions (#1238)
+  * add format make target (#1231)
+  * chore(deps): bump 8398a7/action-slack from 3.15.0 to 3.15.1
+(#1223)
+  * chore(deps): bump github.com/docker/docker (#1218)
+  * chore(deps): bump github/codeql-action from 2.2.9 to 2.2.11
+(#1225)
+  * chore(deps): update bootstrap tools to latest versions (#1227)
+  * chore(deps): bump peter-evans/create-pull-request from 4.2.4 to
+5.0.0 (#1219)
+  * chore(deps): bump golang.org/x/term from 0.6.0 to 0.7.0 (#1217)
+  * chore(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
+(#1216)
+
+---

Old:

  grype-0.61.0.obscpio

New:

  grype-0.61.1.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.lm8m65/_old  2023-04-22 22:04:08.342536029 +0200
+++ /var/tmp/diff_new_pack.lm8m65/_new  2023-04-22 22:04:08.346536053 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.61.0
+Version:0.61.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.lm8m65/_old  2023-04-22 22:04:08.382536269 +0200
+++ /var/tmp/diff_new_pack.lm8m65/_new  2023-04-22 22:04:08.386536293 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.61.0
+v0.61.1
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.lm8m65/_old  2023-04-22 22:04:08.414536460 +0200
+++ /var/tmp/diff_new_pack.lm8m65/_new  2023-04-22 22:04:08.418536484 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  d8c0c0805b59659c4d6e49d6806a0eba11bdc2ee
+  3caabc87114a3e0cbfbac7770989bc81e2f5a957
 (No newline at EOF)
 

++ grype-0.61.0.obscpio -> grype-0.61.1.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.61.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.1533/grype-0.61.1.obscpio differ: char 
49, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.lm8m65/_old  2023-04-22 22:04:08.454536699 +0200
+++ /var/tmp/diff_new_pack.lm8m65/_new  2023-04-22 22:04:08.458536723 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.61.0
-mtime: 1680619263
-commit: d8c0c0805b59659c4d6e49d6806a0eba11bdc2ee
+version: 0.61.1
+mtime: 1682096282
+commit: 3caabc87114a3e0cbfbac7770989bc81e2f5a957
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1533/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-04-05 21:27:28

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.19717 (New)


Package is "grype"

Wed Apr  5 21:27:28 2023 rev:22 rq:1077392 version:0.61.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-03-29 
23:27:39.071601665 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.19717/grype.changes   2023-04-05 
21:35:21.238465354 +0200
@@ -1,0 +2,20 @@
+Wed Apr 05 04:10:57 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.61.0:
+  * chore(deps): bump github.com/CycloneDX/cyclonedx-go from
+0.7.1-0.20221222100750-41a1ac565cce to 0.7.1 (#1213)
+  * feat: add default-image-source-config option (#1215)
+  * chore(deps): bump google.golang.org/protobuf from 1.29.0 to
+1.29.1 (#1212)
+  * chore(deps): bump anchore/sbom-action from 0.13.4 to 0.14.1
+(#1214)
+  * chore(deps): bump github.com/anchore/syft from 0.75.0 to 0.76.0
+(#1207)
+  * chore: update syft update (#1211)
+  * chore: update deprecated set-output calls (#1210)
+  * chore(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
+(#1205)
+  * chore: update quality gate dataset (#1206)
+  * chore(deps): bump github.com/docker/docker (#1201)
+
+---

Old:

  grype-0.60.0.obscpio

New:

  grype-0.61.0.obscpio



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.WvG26x/_old  2023-04-05 21:35:22.514472637 +0200
+++ /var/tmp/diff_new_pack.WvG26x/_new  2023-04-05 21:35:22.518472660 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.60.0
+Version:0.61.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.WvG26x/_old  2023-04-05 21:35:22.586473048 +0200
+++ /var/tmp/diff_new_pack.WvG26x/_new  2023-04-05 21:35:22.590473071 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.60.0
+v0.61.0
 @PARENT_TAG@
 enable
 v(.*)

++ _servicedata ++
--- /var/tmp/diff_new_pack.WvG26x/_old  2023-04-05 21:35:22.618473230 +0200
+++ /var/tmp/diff_new_pack.WvG26x/_new  2023-04-05 21:35:22.622473253 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  45c5f8c9c709e53ba5f40b8ef59b9dd9dfd0b569
+  d8c0c0805b59659c4d6e49d6806a0eba11bdc2ee
 (No newline at EOF)
 

++ grype-0.60.0.obscpio -> grype-0.61.0.obscpio ++
/work/SRC/openSUSE:Factory/grype/grype-0.60.0.obscpio 
/work/SRC/openSUSE:Factory/.grype.new.19717/grype-0.61.0.obscpio differ: char 
50, line 1

++ grype.obsinfo ++
--- /var/tmp/diff_new_pack.WvG26x/_old  2023-04-05 21:35:22.718473801 +0200
+++ /var/tmp/diff_new_pack.WvG26x/_new  2023-04-05 21:35:22.726473847 +0200
@@ -1,5 +1,5 @@
 name: grype
-version: 0.60.0
-mtime: 1680015153
-commit: 45c5f8c9c709e53ba5f40b8ef59b9dd9dfd0b569
+version: 0.61.0
+mtime: 1680619263
+commit: d8c0c0805b59659c4d6e49d6806a0eba11bdc2ee
 

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.19717/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-03-29 23:27:19

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.31432 (New)


Package is "grype"

Wed Mar 29 23:27:19 2023 rev:21 rq:1075093 version:0.60.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-03-10 
22:07:25.513144872 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.31432/grype.changes   2023-03-29 
23:27:39.071601665 +0200
@@ -1,0 +2,34 @@
+Wed Mar 29 05:15:20 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.60.0:
+  * Implement support for Chainguard Linux (#1198)
+  * chore(deps): update bootstrap tools to latest versions (#1194)
+  * chore(deps): bump github/codeql-action from 2.2.8 to 2.2.9
+(#1197)
+  * chore(deps): bump github.com/gookit/color from 1.5.2 to 1.5.3
+(#1192)
+  * chore(deps): bump github/codeql-action from 2.2.7 to 2.2.8
+(#1193)
+  * chore(deps): update bootstrap tools to latest versions (#1191)
+  * chore: tweak some workflow text (#1190)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.7.0 to
+1.7.1 (#1181)
+  * chore(deps): bump peter-evans/create-pull-request from 4.2.3 to
+4.2.4 (#1184)
+  * chore(deps): bump anchore/sbom-action from 0.13.3 to 0.13.4
+(#1189)
+  * chore: Update grype bootstrap tools to latest versions. (#1187)
+  * fix: by-cpe pivot by vuln metadata rather than vulnerability
+record (#1188)
+  * Update grype bootstrap tools to latest versions. (#1173)
+  * chore(deps): bump actions/setup-go from 3.5.0 to 4.0.0 (#1182)
+  * chore(deps): bump github/codeql-action from 2.2.5 to 2.2.7
+(#1183)
+  * feat: disable CPE-based matching by default for javascript
+(#1180)
+  * Update Syft to v0.75.0 (#1177)
+  * chore: bump vuln match quality dataset (#1174)
+  * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.1
+to 1.4.2 (#1166)
+
+---

Old:

  grype-0.59.1.tar.gz

New:

  grype-0.60.0.obscpio
  grype.obsinfo



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.EklzLN/_old  2023-03-29 23:27:40.527609445 +0200
+++ /var/tmp/diff_new_pack.EklzLN/_new  2023-03-29 23:27:40.531609466 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.59.1
+Version:0.60.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.EklzLN/_old  2023-03-29 23:27:40.563609637 +0200
+++ /var/tmp/diff_new_pack.EklzLN/_new  2023-03-29 23:27:40.567609659 +0200
@@ -1,23 +1,22 @@
 
-  
+  
 https://github.com/anchore/grype
 git
 .git
-v0.59.1
+v0.60.0
 @PARENT_TAG@
 enable
 v(.*)
 v*
   
   
-grype
   
-  
+  
+  
 *.tar
 gz
   
   
-grype-0.59.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.EklzLN/_old  2023-03-29 23:27:40.587609766 +0200
+++ /var/tmp/diff_new_pack.EklzLN/_new  2023-03-29 23:27:40.591609787 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  29b646568901d1ef48a528cf35f67f3cead49c9f
+  45c5f8c9c709e53ba5f40b8ef59b9dd9dfd0b569
 (No newline at EOF)
 

++ grype.obsinfo ++
name: grype
version: 0.60.0
mtime: 1680015153
commit: 45c5f8c9c709e53ba5f40b8ef59b9dd9dfd0b569

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.31432/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-03-10 22:07:21

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.31432 (New)


Package is "grype"

Fri Mar 10 22:07:21 2023 rev:20 rq:1070558 version:0.59.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-03-04 
22:44:21.768082963 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.31432/grype.changes   2023-03-10 
22:07:25.513144872 +0100
@@ -1,0 +2,8 @@
+Thu Mar 09 15:31:48 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.59.1:
+  * Update grype bootstrap tools to latest versions. (#1163)
+  * Update Syft to v0.74.1 (#1168)
+  * fix: correct APK CPE version comparison logic (#1165)
+
+---

Old:

  grype-0.59.0.tar.gz

New:

  grype-0.59.1.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.601154379 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.605154397 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.59.0
+Version:0.59.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.645154579 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.649154597 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.59.0
+v0.59.1
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.59.0.tar.gz
+grype-0.59.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.DtRR2x/_old  2023-03-10 22:07:27.677154724 +0100
+++ /var/tmp/diff_new_pack.DtRR2x/_new  2023-03-10 22:07:27.681154742 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  5754360376ace11befb1bd9fa4b0f97d79ea2344
+  29b646568901d1ef48a528cf35f67f3cead49c9f
 (No newline at EOF)
 

++ grype-0.59.0.tar.gz -> grype-0.59.1.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/Makefile new/grype-0.59.1/Makefile
--- old/grype-0.59.0/Makefile   2023-03-03 22:17:44.0 +0100
+++ new/grype-0.59.1/Makefile   2023-03-09 15:41:19.0 +0100
@@ -14,7 +14,7 @@
 GOSIMPORTS_VERSION := v0.3.7
 BOUNCER_VERSION := v0.4.0
 CHRONICLE_VERSION := v0.6.0
-GORELEASER_VERSION := v1.15.2
+GORELEASER_VERSION := v1.16.0
 YAJSV_VERSION := v1.4.1
 QUILL_VERSION := v0.2.0
 GLOW_VERSION := v1.5.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.59.0/go.mod new/grype-0.59.1/go.mod
--- old/grype-0.59.0/go.mod 2023-03-03 22:17:44.0 +0100
+++ new/grype-0.59.1/go.mod 2023-03-09 15:41:19.0 +0100
@@ -36,7 +36,7 @@
github.com/scylladb/go-set v1.0.3-0.20200225121959-cc7b2070d91e
github.com/sergi/go-diff v1.3.1
github.com/sirupsen/logrus v1.9.0
-   github.com/spf13/afero v1.9.4
+   github.com/spf13/afero v1.9.5
github.com/spf13/cobra v1.6.1
github.com/spf13/pflag v1.0.5
github.com/spf13/viper v1.15.0
@@ -45,7 +45,7 @@
github.com/wagoodman/go-progress v0.0.0-20230301185719-21920a456ad5
github.com/wagoodman/jotframe v0.0.0-20211129225309-56b0d0a4aebb
github.com/x-cray/logrus-prefixed-formatter v0.5.2
-   golang.org/x/term v0.5.0
+   golang.org/x/term v0.6.0
gopkg.in/yaml.v2 v2.4.0
gorm.io/gorm v1.23.10
 )
@@ -53,7 +53,7 @@
 require (
github.com/anchore/go-logger v0.0.0-20220728155337-03b66a5207d8
github.com/anchore/sqlite v1.4.6-0.20220607210448-bcc6ee5c4963
-   github.com/anchore/syft v0.74.0
+   github.com/anchore/syft v0.74.1
github.com/hako/durafmt v0.0.0-20210608085754-5c1018a4e16b
github.com/mitchellh/mapstructure v1.5.0
 )
@@ -154,14 +154,14 @@
go.uber.org/goleak v1.2.0 // indirect
golang.org/x/crypto v0.5.0 // indirect
golang.org/x/exp v0.0.0-20230202163644-54bba9f4231b // indirect
-   golang.org/x/mod v0.8.0 // indirect
-   golang.org/x/net v0.7.0 // indirect
+   golang.org/x/mod v0.9.0 // indirect
+   golang.org/x/net v0.8.0 // indirect
golang.org/x/oauth2 v0.4.0 // indirect
golang.org/x/sync v0.1.0 // indirect
-   golang.org/x/sys v0.5.0 // indirect
-   golang.org/x/text v0.7.0 // indirect
+   golang.org/x/sys v0.6.0 // indirect
+   go

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-03-04 22:43:45

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.31432 (New)


Package is "grype"

Sat Mar  4 22:43:45 2023 rev:19 rq:1069396 version:0.59.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-03-03 
22:31:21.456018551 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.31432/grype.changes   2023-03-04 
22:44:21.768082963 +0100
@@ -1,0 +2,9 @@
+Sat Mar 04 08:34:49 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.59.0:
+  * Grype Release Pipeline Update (#1147)
+  * Add the total types of vulnerabilities in Grype output (#946)
+  * chore(deps): bump gorm.io/gorm from 1.23.5 to 1.23.10 (#1157)
+  * chore: bump quality gate labels and syft version (#1156)
+
+---

Old:

  grype-0.58.0.tar.gz

New:

  grype-0.59.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.Bv4tUg/_old  2023-03-04 22:44:24.284095058 +0100
+++ /var/tmp/diff_new_pack.Bv4tUg/_new  2023-03-04 22:44:24.340095327 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.58.0
+Version:0.59.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.Bv4tUg/_old  2023-03-04 22:44:24.528096231 +0100
+++ /var/tmp/diff_new_pack.Bv4tUg/_new  2023-03-04 22:44:24.540096288 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.58.0
+v0.59.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.58.0.tar.gz
+grype-0.59.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.Bv4tUg/_old  2023-03-04 22:44:24.588096519 +0100
+++ /var/tmp/diff_new_pack.Bv4tUg/_new  2023-03-04 22:44:24.592096539 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  04a55885ee162ec00548ec39df68c5b62cf213b5
+  5754360376ace11befb1bd9fa4b0f97d79ea2344
 (No newline at EOF)
 

++ grype-0.58.0.tar.gz -> grype-0.59.0.tar.gz ++
 4560 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.31432/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-03-03 22:28:19

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.31432 (New)


Package is "grype"

Fri Mar  3 22:28:19 2023 rev:18 rq:1069103 version:0.58.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-02-17 
16:44:19.750634268 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.31432/grype.changes   2023-03-03 
22:31:21.456018551 +0100
@@ -1,0 +2,19 @@
+Fri Mar 03 05:41:35 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.58.0:
+  * chore: Update Syft to v0.74.0 (#1151)
+  * fix(distro): Disable support for Arch Linux (#1152)
+  * chore: update progress monitor handling (#1149)
+  * Update Syft to v0.73.0 (#1140)
+  * chore(deps): bump github.com/stretchr/testify from 1.8.1 to
+1.8.2 (#1144)
+  * chore(deps): bump github/codeql-action from 2.2.4 to 2.2.5
+(#1145)
+  * Update grype bootstrap tools to latest versions. (#1137)
+  * chore(deps): bump github.com/spf13/afero from 1.9.3 to 1.9.4
+(#1141)
+  * chore(deps): bump actions/cache from 3.2.5 to 3.2.6 (#1143)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.6.2
+to 1.7.0 (#1134)
+
+---

Old:

  grype-0.57.1.tar.gz

New:

  grype-0.58.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.kNdvWd/_old  2023-03-03 22:31:22.732023993 +0100
+++ /var/tmp/diff_new_pack.kNdvWd/_new  2023-03-03 22:31:22.740024027 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.57.1
+Version:0.58.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.kNdvWd/_old  2023-03-03 22:31:22.784024214 +0100
+++ /var/tmp/diff_new_pack.kNdvWd/_new  2023-03-03 22:31:22.788024232 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.57.1
+v0.58.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.57.1.tar.gz
+grype-0.58.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.kNdvWd/_old  2023-03-03 22:31:22.820024368 +0100
+++ /var/tmp/diff_new_pack.kNdvWd/_new  2023-03-03 22:31:22.828024402 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  50a5c3324736d324dda334cd35ce9871db57efd2
+  04a55885ee162ec00548ec39df68c5b62cf213b5
 (No newline at EOF)
 

++ grype-0.57.1.tar.gz -> grype-0.58.0.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.57.1/.github/workflows/codeql-analysis.yml 
new/grype-0.58.0/.github/workflows/codeql-analysis.yml
--- old/grype-0.57.1/.github/workflows/codeql-analysis.yml  2023-02-16 
17:57:45.0 +0100
+++ new/grype-0.58.0/.github/workflows/codeql-analysis.yml  2023-03-02 
18:22:46.0 +0100
@@ -46,7 +46,7 @@
   uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
 
 - name: Utilize Go Module Cache
-  uses: actions/cache@6998d139ddd3e68c71e9e398d8e40b71a2f39812 # v3.2.5
+  uses: actions/cache@69d9d449aced6a2ede0bc19182fadc3a0a42d2b0 # v3.2.6
   with:
 path: |
   ~/go/pkg/mod
@@ -63,7 +63,7 @@
 
 # Initializes the CodeQL tools for scanning.
 - name: Initialize CodeQL
-  uses: github/codeql-action/init@17573ee1cc1b9d061760f3a006fc4aac4f944fd5 
# v2.2.4
+  uses: github/codeql-action/init@32dc499307d133bb5085bae78498c0ac2cf762d5 
# v2.2.5
   with:
 languages: ${{ matrix.language }}
 # If you wish to specify custom queries, you can do so here or in a 
config file.
@@ -85,4 +85,4 @@
   run: make grype
 
 - name: Perform CodeQL Analysis
-  uses: 
github/codeql-action/analyze@17573ee1cc1b9d061760f3a006fc4aac4f944fd5 # v2.2.4
+  uses: 
github/codeql-action/analyze@32dc499307d133bb5085bae78498c0ac2cf762d5 # v2.2.5
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.57.1/.github/workflows/release.yaml 
new/grype-0.58.0/.github/workflows/release.yaml
--- old/grype-0.57.1/.github/workflows/release.yaml 2023-02-16 
17:57:45.0 +0100
+++ new/grype-0.58.0/.github/workflows/release.yaml 2023-03-02 
18:22:46.0 +0100
@@ -111,14 +111,14 @@
 
   - name: Restore tool cache
 id: tool-cache
-uses: actions/cache@6998d139ddd3e68c71e9e398d8e40b71a2f39812 # v3.2.5
+uses: act

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-02-17 16:44:11

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.22824 (New)


Package is "grype"

Fri Feb 17 16:44:11 2023 rev:17 rq:1066355 version:0.57.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-01-28 
18:53:05.265262670 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.22824/grype.changes   2023-02-17 
16:44:19.750634268 +0100
@@ -1,0 +2,44 @@
+Fri Feb 17 10:07:13 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.57.1:
+  * Update Syft to v0.72.0 (#1136)
+
+---
+Thu Feb 16 17:32:05 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.57.0:
+  * chore: bump quality gate (#1133)
+  * fix: ignore some false-positives for ruby gems (#1132)
+  * chore(deps): bump github/codeql-action from 2.2.3 to 2.2.4 (#1131)
+  * fix: exclude OS packages from CPE target filtering (#1130)
+  * chore(deps): bump actions/cache from 3.2.4 to 3.2.5 (#1129)
+  * chore(deps): bump github.com/docker/docker (#1128)
+  * Update Syft to v0.71.0 (#1126)
+  * chore(deps): bump github/codeql-action from 2.2.1 to 2.2.3 (#1125)
+  * Update grype bootstrap tools to latest versions. (#1124)
+  * chore(deps): bump golang.org/x/term from 0.4.0 to 0.5.0 (#1123)
+  * Update grype bootstrap tools to latest versions. (#1122)
+  * Update grype bootstrap tools to latest versions. (#1116)
+  * Update Syft to v0.70.0 (#1117)
+  * chore(deps): bump github.com/docker/docker (#1114)
+  * Update grype bootstrap tools to latest versions. (#1112)
+  * Update Syft to v0.69.1 (#)
+  * chore: prune cosign dependency for grype builds (#1100)
+  * Update grype bootstrap tools to latest versions. (#1108)
+  * Update Syft to v0.69.0 (#1109)
+  * chore(deps): bump actions/cache from 3.2.3 to 3.2.4 (#1107)
+  * chore: add new images to quality gate (#1106)
+  * chore: bump yardstick for better quality gate filtering (#1101)
+  * chore(deps): bump actions/cache from 3.0.11 to 3.2.3 (#1096)
+  * chore(deps): bump github/codeql-action from 2.1.39 to 2.2.1 (#1097)
+  * chore(deps): bump anchore/sbom-action from 0.13.2 to 0.13.3 (#1098)
+  * chore(deps): bump tibdex/github-app-token from 1.7.0 to 1.8.0 (#1099)
+  * bump yardstick to 2d30ea7429d0a59020e0176bba1b3b6b8b01b08a (#1095)
+  * chore(deps): bump actions/checkout from 3.1.0 to 3.3.0 (#1090)
+  * chore(deps): bump github.com/hashicorp/go-getter from 1.6.1 to 1.6.2 
(#1087)
+  * chore(deps): bump 8398a7/action-slack from 3.14.0 to 3.15.0 (#1088)
+  * chore(deps): bump peter-evans/create-pull-request from 4.2.0 to 4.2.3 
(#1089)
+  * chore(deps): bump actions/setup-go from 3.3.1 to 3.5.0 (#1091)
+  * chore(deps): bump github/codeql-action from 2.1.31 to 2.1.39 (#1092)
+
+---

Old:

  grype-0.56.0.tar.gz

New:

  grype-0.57.1.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.JhrvSY/_old  2023-02-17 16:44:21.558644450 +0100
+++ /var/tmp/diff_new_pack.JhrvSY/_new  2023-02-17 16:44:21.566644494 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.56.0
+Version:0.57.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.JhrvSY/_old  2023-02-17 16:44:21.614644765 +0100
+++ /var/tmp/diff_new_pack.JhrvSY/_new  2023-02-17 16:44:21.618644788 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.56.0
+v0.57.1
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.56.0.tar.gz
+grype-0.57.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.JhrvSY/_old  2023-02-17 16:44:21.650644968 +0100
+++ /var/tmp/diff_new_pack.JhrvSY/_new  2023-02-17 16:44:21.654644991 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  c01ee9b2c73098726ff5b39156134682745dd5db
+  50a5c3324736d324dda334cd35ce9871db57efd2
 (No newline at EOF)
 

++ grype-0.56.0.tar.gz -> grype-0.57.1.tar.gz ++
 16905 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.22824/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-01-28 18:42:54

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.32243 (New)


Package is "grype"

Sat Jan 28 18:42:54 2023 rev:16 rq:1061474 version:0.56.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2023-01-06 
17:06:12.956403843 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.32243/grype.changes   2023-01-28 
18:53:05.265262670 +0100
@@ -1,0 +2,29 @@
+Fri Jan 27 06:09:00 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.56.0:
+  * Update Syft to v0.68.1 (#1086)
+  * chore: update grype quality gate (#1085)
+  * chore(deps): bump github.com/sigstore/sigstore from 1.4.4 to 1.5.1 (#1081)
+  * chore(deps): bump actions/setup-python from 4.3.0 to 4.5.0 (#1075)
+  * chore(deps): bump anchore/sbom-action from 0.13.1 to 0.13.2 (#1076)
+  * chore(deps): bump actions/upload-artifact from 3.1.1 to 3.1.2 (#1077)
+  * chore(deps): bump actions/download-artifact from 3.0.1 to 3.0.2 (#1074)
+  * chore(deps): bump ossf/scorecard-action from 2.0.6 to 2.1.2 (#1078)
+  * chore(deps): bump github.com/pkg/profile from 1.6.0 to 1.7.0 (#1079)
+  * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.0 to 1.4.1 
(#1080)
+  * chore(deps): bump github.com/Masterminds/sprig/v3 from 3.2.2 to 3.2.3 
(#1083)
+  * chore: align makefile and bootstrap tools scripts more with syft (#1073)
+  * chore: enable dependabot on gomod and GitHub actions (#1072)
+  * Update grype bootstrap tools to latest versions. (#1070)
+  * fix: always include severity in cyclonedx output (#1067)
+  * Update Syft to v0.68.0 (#1064)
+  * Add protobuf FPs to default ignore list (#1062)
+  * chore: update Syft to v0.66.2 (#1060)
+  * Update grype bootstrap tools to latest versions. (#1055)
+  * feat: allow grype db diff to specify local db directories (#1058)
+  * chore: claim artifacthub package ownership from developer-guy (#661)
+  * chore: add github token to quality tests (#1056)
+  * chore: update yardstick to diagnose intermittent failures (#1054)
+  * Update grype bootstrap tools to latest versions. (#1048)
+
+---

Old:

  grype-0.55.0.tar.gz

New:

  grype-0.56.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.z6Tmrf/_old  2023-01-28 18:53:10.565292690 +0100
+++ /var/tmp/diff_new_pack.z6Tmrf/_new  2023-01-28 18:53:10.573292735 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.55.0
+Version:0.56.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.z6Tmrf/_old  2023-01-28 18:53:10.609292940 +0100
+++ /var/tmp/diff_new_pack.z6Tmrf/_new  2023-01-28 18:53:10.617292985 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.55.0
+v0.56.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.55.0.tar.gz
+grype-0.56.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.z6Tmrf/_old  2023-01-28 18:53:10.641293121 +0100
+++ /var/tmp/diff_new_pack.z6Tmrf/_new  2023-01-28 18:53:10.645293143 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  c559833c7e02aed827773adb4f9677cb398577be
+  c01ee9b2c73098726ff5b39156134682745dd5db
 (No newline at EOF)
 

++ grype-0.55.0.tar.gz -> grype-0.56.0.tar.gz ++
 4845 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.32243/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2023-01-06 17:05:25

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1563 (New)


Package is "grype"

Fri Jan  6 17:05:25 2023 rev:15 rq:1056219 version:0.55.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-12-17 
20:37:01.840764999 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1563/grype.changes2023-01-06 
17:06:12.956403843 +0100
@@ -1,0 +2,12 @@
+Thu Jan 05 14:00:43 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.55.0:
+  * fix: sort vulnerability results (#1052)
+  * Adding internal/file/hasher test cases (#1049)
+  * fix: orient by cve merging (#1046)
+  * Update Syft to v0.64.0 (#1047)
+  * fix: update removing results based on ownership-by-file-overlap (#1045)
+  * feat: swap custom cyclone-dx model for cyclone-dx library (#1038)
+  * chore: add GitLab Community Edition image to quality gate (#1035)
+
+---

Old:

  grype-0.54.0.tar.gz

New:

  grype-0.55.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.shYL55/_old  2023-01-06 17:06:15.728419410 +0100
+++ /var/tmp/diff_new_pack.shYL55/_new  2023-01-06 17:06:15.732419433 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package grype
 #
-# Copyright (c) 2022 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.54.0
+Version:0.55.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.shYL55/_old  2023-01-06 17:06:15.756419568 +0100
+++ /var/tmp/diff_new_pack.shYL55/_new  2023-01-06 17:06:15.760419590 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.54.0
+v0.55.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.54.0.tar.gz
+grype-0.55.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.shYL55/_old  2023-01-06 17:06:15.776419680 +0100
+++ /var/tmp/diff_new_pack.shYL55/_new  2023-01-06 17:06:15.780419703 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  93499eec7e3ce2704755e9f51457181b06b519c5
+  c559833c7e02aed827773adb4f9677cb398577be
 (No newline at EOF)
 

++ grype-0.54.0.tar.gz -> grype-0.55.0.tar.gz ++
 29289 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1563/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-12-17 20:36:46

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1835 (New)


Package is "grype"

Sat Dec 17 20:36:46 2022 rev:14 rq:1043454 version:0.54.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-11-22 
16:10:40.038177434 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1835/grype.changes2022-12-17 
20:37:01.840764999 +0100
@@ -1,0 +2,21 @@
+Fri Dec 16 12:39:08 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.54.0:
+  * Update Syft to v0.63.0 (#1037)
+  * fix: Exclude binary packages that have overlap by file ownership 
relationship (#1024)
+  * docs: update quality gate docs (#1032)
+  * Optionally orient results by CVE (#1020)
+  * chore: bump yardstick to latest commit (#1027)
+  * Update Syft to v0.62.3 (#1026)
+  * chore: change CVE example to official sample (#1028)
+  * fix: Table format sorting (#1023)
+  * fix: update architecture release for to ppc64le (#1021)
+  * Update grype bootstrap tools to latest versions. (#1017)
+  * Update Syft to v0.62.2 (#1018)
+  * chore: update quality gate with latest label data (#1016)
+  * chore: update digest for test fixture dockerfile (#1015)
+  * test: remove presenter tests reliance on docker from unit suite (#1013)
+  * fix: swapped base container images (#1011)
+  * chore: update default packages to read (#1007)
+
+---

Old:

  grype-0.53.1.tar.gz

New:

  grype-0.54.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.sVwr8v/_old  2022-12-17 20:37:03.064771723 +0100
+++ /var/tmp/diff_new_pack.sVwr8v/_new  2022-12-17 20:37:03.068771745 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.53.1
+Version:0.54.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.sVwr8v/_old  2022-12-17 20:37:03.116772009 +0100
+++ /var/tmp/diff_new_pack.sVwr8v/_new  2022-12-17 20:37:03.120772031 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.53.1
+v0.54.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.53.1.tar.gz
+grype-0.54.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.sVwr8v/_old  2022-12-17 20:37:03.176772338 +0100
+++ /var/tmp/diff_new_pack.sVwr8v/_new  2022-12-17 20:37:03.220772580 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  826726d553e68cb862597a8737b83f7ade898c3b
+  93499eec7e3ce2704755e9f51457181b06b519c5
 (No newline at EOF)
 

++ grype-0.53.1.tar.gz -> grype-0.54.0.tar.gz ++
 13348 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1835/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-11-22 16:10:30

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1597 (New)


Package is "grype"

Tue Nov 22 16:10:30 2022 rev:13 rq:1037247 version:0.53.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-11-19 
18:09:57.134652630 +0100
+++ /work/SRC/openSUSE:Factory/.grype.new.1597/grype.changes2022-11-22 
16:10:40.038177434 +0100
@@ -1,0 +2,8 @@
+Tue Nov 22 07:29:31 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.53.1:
+  * Update Syft to v0.62.1 (#1006)
+  * Update grype bootstrap tools to latest versions. (#1004)
+  * scoped: token release for content write on image assets (#1002)
+
+---

Old:

  grype-0.53.0.tar.gz

New:

  grype-0.53.1.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.ahOOdj/_old  2022-11-22 16:10:42.082187803 +0100
+++ /var/tmp/diff_new_pack.ahOOdj/_new  2022-11-22 16:10:42.086187824 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.53.0
+Version:0.53.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.ahOOdj/_old  2022-11-22 16:10:42.134188067 +0100
+++ /var/tmp/diff_new_pack.ahOOdj/_new  2022-11-22 16:10:42.138188087 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.53.0
+v0.53.1
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.53.0.tar.gz
+grype-0.53.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.ahOOdj/_old  2022-11-22 16:10:42.166188229 +0100
+++ /var/tmp/diff_new_pack.ahOOdj/_new  2022-11-22 16:10:42.170188250 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  a4a62aab4bbd8aacdd639a59b9ceb1684398c6b6
+  826726d553e68cb862597a8737b83f7ade898c3b
 (No newline at EOF)
 

++ grype-0.53.0.tar.gz -> grype-0.53.1.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.53.0/.github/workflows/release.yaml 
new/grype-0.53.1/.github/workflows/release.yaml
--- old/grype-0.53.0/.github/workflows/release.yaml 2022-11-18 
21:03:15.0 +0100
+++ new/grype-0.53.1/.github/workflows/release.yaml 2022-11-21 
17:11:25.0 +0100
@@ -167,6 +167,8 @@
 # a previous release process installed and configured docker on the mac-os 
runner which lead to blocked releases
 # the anchore tools team opted to break this step out to a separate 
process to remove this work constraint
 runs-on: ubuntu-latest
+permissions:
+  packages: write
 steps:
   - uses: actions/checkout@e2f20e631ae6d7dd3b768f56a5d2af784dd54791 # 
v2.5.0
   - uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # 
v3.3.1
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.53.0/Makefile new/grype-0.53.1/Makefile
--- old/grype-0.53.0/Makefile   2022-11-18 21:03:15.0 +0100
+++ new/grype-0.53.1/Makefile   2022-11-21 17:11:25.0 +0100
@@ -39,7 +39,7 @@
 CHRONICLE_VERSION = v0.4.2
 GOSIMPORTS_VERSION = v0.3.4
 YAJSV_VERSION = v1.4.1
-GORELEASER_VERSION = v1.12.3
+GORELEASER_VERSION = v1.13.0
 
 ## Variable assertions
 
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.53.0/go.mod new/grype-0.53.1/go.mod
--- old/grype-0.53.0/go.mod 2022-11-18 21:03:15.0 +0100
+++ new/grype-0.53.1/go.mod 2022-11-21 17:11:25.0 +0100
@@ -53,7 +53,7 @@
 require (
github.com/anchore/go-logger v0.0.0-20220728155337-03b66a5207d8
github.com/anchore/sqlite v1.4.6-0.20220607210448-bcc6ee5c4963
-   github.com/anchore/syft v0.62.0
+   github.com/anchore/syft v0.62.1
github.com/hako/durafmt v0.0.0-20210608085754-5c1018a4e16b
github.com/in-toto/in-toto-golang v0.4.1-0.20221018183522-731d0640b65f
github.com/mitchellh/mapstructure v1.5.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.53.0/go.sum new/grype-0.53.1/go.sum
--- old/grype-0.53.0/go.sum 2022-11-18 21:03:15.0 +0100
+++ new/grype-0.53.1/go.sum 2022-11-21 17:11:25.0 +0100
@@ -240,8 +240,8 @@
 github.com/anchore/sqlite v1.4.6-0.20220607210448-bcc6ee5c4963/go.mod 
h1:AVRyXOUP0hTz9Cb8OlD1XnwA8t4lBPfTuwPHmEUuiLc=

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-11-19 18:09:45

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1597 (New)


Package is "grype"

Sat Nov 19 18:09:45 2022 rev:12 rq:1036801 version:0.53.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-10-18 
12:45:58.473856879 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1597/grype.changes2022-11-19 
18:09:57.134652630 +0100
@@ -1,0 +2,27 @@
+Sat Nov 19 12:05:00 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.53.0:
+  * chore: bump syft version v0.62.0 (#1000)
+  * feat: vulnerability namespacing support for rolling distros (#997)
+  * chore: bump quality gate images and label data (#995)
+  * feat: add strong distro type for wolfi (#996)
+  * chore: pin dependencies (#994)
+  * chore: code-ql top level read check (#993)
+  * Add SECURITY.md (#989)
+  * chore: update codeql to pinned v2 with correct write permissions
+  * Update token permissions to be read-only (#988)
+  * Enable the Scorecard Github Action and badge (#929)
+
+---
+Tue Nov 15 15:42:37 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.52.0:
+  * chore: update syft to v0.60.3 (#978)
+  * feat: consider well-known false-positive generating CPE target SW 
components in match filtering logic (#961)
+  * chore: grype quality pipeline latest label updates and images (#976)
+  * Implemented new CLI flag: --show-suppressed (#966)
+  * fix: update case for alpine:edge correct vuln feed (#965)
+  * PURL input results in incorrect artifact in JSON output (#968)
+  * Update grype bootstrap tools to latest versions. (#956)
+
+---

Old:

  grype-0.51.0.tar.gz

New:

  grype-0.53.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.q64iOE/_old  2022-11-19 18:09:58.61289 +0100
+++ /var/tmp/diff_new_pack.q64iOE/_new  2022-11-19 18:09:58.670661312 +0100
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.51.0
+Version:0.53.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.q64iOE/_old  2022-11-19 18:09:58.706661516 +0100
+++ /var/tmp/diff_new_pack.q64iOE/_new  2022-11-19 18:09:58.710661538 +0100
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.51.0
+v0.53.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.51.0.tar.gz
+grype-0.53.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.q64iOE/_old  2022-11-19 18:09:58.730661651 +0100
+++ /var/tmp/diff_new_pack.q64iOE/_new  2022-11-19 18:09:58.734661674 +0100
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  4cda526992d5003dcbab68c9a7479a653dfde008
+  a4a62aab4bbd8aacdd639a59b9ceb1684398c6b6
 (No newline at EOF)
 

++ grype-0.51.0.tar.gz -> grype-0.53.0.tar.gz ++
 17231 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1597/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-10-18 12:45:36

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.2275 (New)


Package is "grype"

Tue Oct 18 12:45:36 2022 rev:11 rq:1029644 version:0.51.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-09-21 
14:44:12.714040328 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.2275/grype.changes2022-10-18 
12:45:58.473856879 +0200
@@ -1,0 +2,15 @@
+Tue Oct 18 05:12:14 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.51.0:
+  * implement v5 db schema to support improved matching between rpm appstream 
modules (#944)
+  * Update Syft to v0.59.0 (#957)
+  * expand quality gate image set to include rpm appstreams-related images 
(#952)
+  * Update grype bootstrap tools to latest versions. (#947)
+  * chore: add more quality gate images (#950)
+  * Add in-depth quality gate checks (#949)
+  * Update Syft to v0.58.0 (#941)
+  * Update grype bootstrap tools to latest versions. (#945)
+  * Update grype bootstrap tools to latest versions. (#935)
+  * Update Syft to v0.57.0 (#930)
+
+---

Old:

  grype-0.50.2.tar.gz

New:

  grype-0.51.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.d8HeHW/_old  2022-10-18 12:46:00.009860376 +0200
+++ /var/tmp/diff_new_pack.d8HeHW/_new  2022-10-18 12:46:00.013860385 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.50.2
+Version:0.51.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.d8HeHW/_old  2022-10-18 12:46:00.053860476 +0200
+++ /var/tmp/diff_new_pack.d8HeHW/_new  2022-10-18 12:46:00.057860485 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.50.2
+v0.51.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.50.2.tar.gz
+grype-0.51.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.d8HeHW/_old  2022-10-18 12:46:00.085860549 +0200
+++ /var/tmp/diff_new_pack.d8HeHW/_new  2022-10-18 12:46:00.089860558 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  f094b860b9b9ebcdf06d9b9c6f7d5c000fad395b
+  4cda526992d5003dcbab68c9a7479a653dfde008
 (No newline at EOF)
 

++ grype-0.50.2.tar.gz -> grype-0.51.0.tar.gz ++
 59089 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.2275/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-09-21 14:43:12

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.2083 (New)


Package is "grype"

Wed Sep 21 14:43:12 2022 rev:10 rq:1005153 version:0.50.2

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-09-14 
13:45:14.321933009 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.2083/grype.changes2022-09-21 
14:44:12.714040328 +0200
@@ -1,0 +2,9 @@
+Wed Sep 21 08:31:07 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.50.2:
+  * Update Syft to v0.57.0 (#930)
+  * Correct falsely copied app-name 'syft' in example (#922)
+  * Bump github.com/sigstore/cosign from 1.11.1 to 1.12.0 (#927)
+  * Update grype bootstrap tools to latest versions. (#925)
+
+---

Old:

  grype-0.50.1.tar.gz

New:

  grype-0.50.2.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.VUnMwN/_old  2022-09-21 14:44:14.534045081 +0200
+++ /var/tmp/diff_new_pack.VUnMwN/_new  2022-09-21 14:44:14.542045102 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.50.1
+Version:0.50.2
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.VUnMwN/_old  2022-09-21 14:44:14.582045207 +0200
+++ /var/tmp/diff_new_pack.VUnMwN/_new  2022-09-21 14:44:14.586045216 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.50.1
+v0.50.2
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.50.1.tar.gz
+grype-0.50.2.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.VUnMwN/_old  2022-09-21 14:44:14.610045279 +0200
+++ /var/tmp/diff_new_pack.VUnMwN/_new  2022-09-21 14:44:14.614045290 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  403a535321c20565676dc633344e2bf8881cee29
+  f094b860b9b9ebcdf06d9b9c6f7d5c000fad395b
 (No newline at EOF)
 

++ grype-0.50.1.tar.gz -> grype-0.50.2.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.50.1/Makefile new/grype-0.50.2/Makefile
--- old/grype-0.50.1/Makefile   2022-09-13 17:18:13.0 +0200
+++ new/grype-0.50.2/Makefile   2022-09-20 10:35:37.0 +0200
@@ -37,9 +37,9 @@
 GOLANGCILINT_VERSION = v1.49.0
 BOUNCER_VERSION = v0.4.0
 CHRONICLE_VERSION = v0.4.1
-GOSIMPORTS_VERSION = v0.3.1
+GOSIMPORTS_VERSION = v0.3.2
 YAJSV_VERSION = v1.4.0
-GORELEASER_VERSION = v1.11.2
+GORELEASER_VERSION = v1.11.4
 
 ## Variable assertions
 
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.50.1/README.md new/grype-0.50.2/README.md
--- old/grype-0.50.1/README.md  2022-09-13 17:18:13.0 +0200
+++ new/grype-0.50.2/README.md  2022-09-20 10:35:37.0 +0200
@@ -120,7 +120,7 @@
 grype path/to/image.tar
 
 # scan a Singularity Image Format (SIF) container
-syft path/to/image.sif
+grype path/to/image.sif
 
 # scan a directory
 grype dir:path/to/dir
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.50.1/go.mod new/grype-0.50.2/go.mod
--- old/grype-0.50.1/go.mod 2022-09-13 17:18:13.0 +0200
+++ new/grype-0.50.2/go.mod 2022-09-20 10:35:37.0 +0200
@@ -11,14 +11,14 @@
github.com/anchore/go-version v1.2.2-0.20210903204242-51efa5b487c4
github.com/anchore/packageurl-go v0.1.1-0.20220428202044-a072fa3cb6d7
github.com/anchore/stereoscope v0.0.0-20220829182958-659c89aa659f
-   github.com/anchore/syft v0.56.0
+   github.com/anchore/syft v0.57.0
github.com/bmatcuk/doublestar/v2 v2.0.4
github.com/docker/docker v20.10.17+incompatible
github.com/dustin/go-humanize v1.0.0
github.com/facebookincubator/nvdtools v0.1.4
github.com/gabriel-vasile/mimetype v1.4.0
github.com/go-test/deep v1.0.8
-   github.com/google/go-cmp v0.5.8
+   github.com/google/go-cmp v0.5.9
github.com/google/uuid v1.3.0
github.com/gookit/color v1.4.2
github.com/hashicorp/go-cleanhttp v0.5.2
@@ -40,7 +40,7 @@
github.com/spf13/afero v1.8.2
github.com/spf13/cobra v1.5.0
github.com/spf13/pflag v1.0.5
-   github.com/spf13/viper v1.12.0
+   github.com/spf13/viper v1.13.0
github.com/stretchr/testify v1.8.0
github.com/wagoodman/go-partybus

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-09-14 13:45:00

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.2083 (New)


Package is "grype"

Wed Sep 14 13:45:00 2022 rev:9 rq:1003427 version:0.50.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-09-07 
11:06:45.128515648 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.2083/grype.changes2022-09-14 
13:45:14.321933009 +0200
@@ -1,0 +2,16 @@
+Wed Sep 14 05:40:23 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.50.1:
+  * Update Syft to v0.56.0 (#919)
+
+---
+Tue Sep 13 12:42:49 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.50.0:
+  * Add support for scanning RPM files (#917)
+  * remove arch typo - add debug/reg s390x (#915)
+  * grype release message update (#914)
+  * feat: extract use cpes in matching logic to be configurable (#911)
+  * docs: add Singularity to "features" in README (#912)
+
+---

Old:

  grype-0.49.0.tar.gz

New:

  grype-0.50.1.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.zBh6F1/_old  2022-09-14 13:45:16.113937520 +0200
+++ /var/tmp/diff_new_pack.zBh6F1/_new  2022-09-14 13:45:16.117937530 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.49.0
+Version:0.50.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.zBh6F1/_old  2022-09-14 13:45:16.157937631 +0200
+++ /var/tmp/diff_new_pack.zBh6F1/_new  2022-09-14 13:45:16.165937652 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.49.0
+v0.50.1
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.49.0.tar.gz
+grype-0.50.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.zBh6F1/_old  2022-09-14 13:45:16.189937712 +0200
+++ /var/tmp/diff_new_pack.zBh6F1/_new  2022-09-14 13:45:16.193937722 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  98104952120d3e368d265566b3d6b415e9da538a
+  403a535321c20565676dc633344e2bf8881cee29
 (No newline at EOF)
 

++ grype-0.49.0.tar.gz -> grype-0.50.1.tar.gz ++
 2008 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.2083/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-09-07 11:06:25

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.2083 (New)


Package is "grype"

Wed Sep  7 11:06:25 2022 rev:8 rq:1001569 version:0.49.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-07-28 
20:58:20.115516975 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.2083/grype.changes2022-09-07 
11:06:45.128515648 +0200
@@ -1,0 +2,58 @@
+Wed Sep 07 05:39:15 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.49.0:
+  * docs: improve Singularity image source docs (#910)
+  * Add Singularity image source (#908)
+  * Update grype bootstrap tools to latest versions. (#907)
+  * Update Syft to v0.55.0 (#906)
+  * Update grype bootstrap tools to latest versions. (#905)
+  * Update grype bootstrap tools to latest versions. (#903)
+  * Update grype bootstrap tools to latest versions. (#896)
+  * Add blurbs about building and running from source (#893)
+  * Fix docker build typo (#891)
+
+---
+Wed Sep 07 05:36:24 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.48.0:
+  * disable CPE match filtering based on target software component for java 
packages (#889)
+  * Update grype bootstrap tools to latest versions. (#886)
+  * fix getting latest gosimports version (#885)
+  * workflow to create automated PRs to update bootstrap tools (#883)
+  * Add s390x build support (#720)
+  * fix: only show distro warning if distro packages exist (#875)
+
+---
+Wed Sep 07 05:33:41 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.47.0:
+  * Update Syft to v0.54.0 (#881)
+  * Update README.md (#871)
+  * Update README.md (#868)
+
+---
+Wed Sep 07 05:30:47 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.46.0:
+  * test: rm mustConst since unused (#860)
+  * Update Syft to v0.53.4 (#856)
+  * feat: enrich db check cmd feedback (#853)
+  * update syft version location for Makefile (#865)
+
+---
+Wed Sep 07 05:28:51 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.45.0:
+  * remove env variable dependencies and keychain from signing script (#864)
+  * macos-latest for signing (#863)
+  * move docker release into separate release workflow (#862)
+  * revert to old docker action (#861)
+  * additional readOptions added  per 855 (#857)
+  * Ensure database access is readonly (#854)
+  * push older version for mac runner stability (#852)
+  * bump bouncer to v0.4.0 (#851)
+  * feat: simple input case to request vulnerability data via purl (#795)
+  * update golanci-lint, goreleaser, cosign (#850)
+  * fix: db diff default has flipped base/target url (#845)
+
+---

Old:

  grype-0.44.0.tar.gz

New:

  grype-0.49.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.6EhPfw/_old  2022-09-07 11:06:46.744519755 +0200
+++ /var/tmp/diff_new_pack.6EhPfw/_new  2022-09-07 11:06:46.748519766 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.44.0
+Version:0.49.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.6EhPfw/_old  2022-09-07 11:06:46.784519857 +0200
+++ /var/tmp/diff_new_pack.6EhPfw/_new  2022-09-07 11:06:46.788519867 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.44.0
+v0.49.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.44.0.tar.gz
+grype-0.49.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.6EhPfw/_old  2022-09-07 11:06:46.812519928 +0200
+++ /var/tmp/diff_new_pack.6EhPfw/_new  2022-09-07 11:06:46.816519938 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  a6ec8f11be5fdc116dc7bbfebdc03bfc13cd2005
+  98104952120d3e368d265566b3d6b415e9da538a
 (No newline at EOF)
 

++ grype-0.44.0.tar.gz -> grype-0.49.0.tar.gz ++
 2978 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.2083/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-07-28 20:58:03

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1533 (New)


Package is "grype"

Thu Jul 28 20:58:03 2022 rev:7 rq:991266 version:0.44.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-07-19 
17:20:26.112452488 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1533/grype.changes2022-07-28 
20:58:20.115516975 +0200
@@ -1,0 +2,11 @@
+Tue Jul 26 11:28:54 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.44.0:
+  * add env variables and keychain for GHCR publish (#843)
+  * update grype to use syft v0.52.0 (#838)
+  * add debug distroless image to published images (#835)
+  * add new line for help block (#834)
+  * add Gentoo matching support (#813)
+  * feat: add filtering support using target software field in cpe (#810)
+
+---

Old:

  grype-0.43.0.tar.gz

New:

  grype-0.44.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.HQDklU/_old  2022-07-28 20:58:21.571521075 +0200
+++ /var/tmp/diff_new_pack.HQDklU/_new  2022-07-28 20:58:21.575521085 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.43.0
+Version:0.44.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.HQDklU/_old  2022-07-28 20:58:21.607521175 +0200
+++ /var/tmp/diff_new_pack.HQDklU/_new  2022-07-28 20:58:21.607521175 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.43.0
+v0.44.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.43.0.tar.gz
+grype-0.44.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.HQDklU/_old  2022-07-28 20:58:21.643521277 +0200
+++ /var/tmp/diff_new_pack.HQDklU/_new  2022-07-28 20:58:21.647521289 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  addbd07b4f8cbfea283e10ffbd30e4cc6bfbfc0a
+  a6ec8f11be5fdc116dc7bbfebdc03bfc13cd2005
 (No newline at EOF)
 

++ grype-0.43.0.tar.gz -> grype-0.44.0.tar.gz ++
 3445 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1533/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-07-19 17:19:52

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1523 (New)


Package is "grype"

Tue Jul 19 17:19:52 2022 rev:6 rq:990096 version:0.43.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-07-18 
18:34:02.621766556 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1523/grype.changes2022-07-19 
17:20:26.112452488 +0200
@@ -1,0 +2,9 @@
+Tue Jul 19 08:19:48 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.43.0:
+  * Add new matcher files for golang => remove main module FP matches (#829)
+  * Fix a cyclonedxvex typo and fix the schema document from (#830)
+  * feat: add --only-notfixed flag (#828)
+  * add DBCloser. Clients can aviod db connection leak if vulnerability db is 
loaded many times (#825)
+
+---

Old:

  grype-0.42.0.tar.gz

New:

  grype-0.43.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.ZvmSfX/_old  2022-07-19 17:20:27.492454327 +0200
+++ /var/tmp/diff_new_pack.ZvmSfX/_new  2022-07-19 17:20:27.496454333 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.42.0
+Version:0.43.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.ZvmSfX/_old  2022-07-19 17:20:27.528454376 +0200
+++ /var/tmp/diff_new_pack.ZvmSfX/_new  2022-07-19 17:20:27.528454376 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.42.0
+v0.43.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.42.0.tar.gz
+grype-0.43.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.ZvmSfX/_old  2022-07-19 17:20:27.548454402 +0200
+++ /var/tmp/diff_new_pack.ZvmSfX/_new  2022-07-19 17:20:27.552454408 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  cb6bddfeeb2273a43328653d1c2a5887d58d3b3e
+  addbd07b4f8cbfea283e10ffbd30e4cc6bfbfc0a
 (No newline at EOF)
 

++ grype-0.42.0.tar.gz -> grype-0.43.0.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.42.0/README.md new/grype-0.43.0/README.md
--- old/grype-0.42.0/README.md  2022-07-11 21:15:12.0 +0200
+++ new/grype-0.43.0/README.md  2022-07-18 19:14:03.0 +0200
@@ -364,6 +364,8 @@
 apk-tools  2.10.6-r0  2.10.7-r0  CVE-2021-36159  Critical
 ```
 
+If you want Grype to only report vulnerabilities **that do not have a 
confirmed fix**, you can use the `--only-notfixed` flag. (This automatically 
adds [ignore rules](#specifying-matches-to-ignore) into Grype's configuration, 
such that vulnerabilities that are fixed will be ignored.)
+
 ## Grype's database
 
 When Grype performs a scan for vulnerabilities, it does so using a 
vulnerability database that's stored on your local filesystem, which is 
constructed by pulling data from a variety of publicly available vulnerability 
data sources. These sources include:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.42.0/cmd/root.go new/grype-0.43.0/cmd/root.go
--- old/grype-0.42.0/cmd/root.go2022-07-11 21:15:12.0 +0200
+++ new/grype-0.43.0/cmd/root.go2022-07-18 19:14:03.0 +0200
@@ -43,6 +43,10 @@
{FixState: string(grypeDb.UnknownFixState)},
 }
 
+var ignoreFixedMatches = []match.IgnoreRule{
+   {FixState: string(grypeDb.FixedState)},
+}
+
 var (
rootCmd = &cobra.Command{
Use:   fmt.Sprintf("%s [IMAGE]", internal.ApplicationName),
@@ -147,6 +151,11 @@
"ignore matches for vulnerabilities that are not fixed",
)
 
+   flags.BoolP(
+   "only-notfixed", "", false,
+   "ignore matches for vulnerabilities that are fixed",
+   )
+
flags.StringArrayP(
"exclude", "", nil,
"exclude paths from being scanned using a glob expression",
@@ -200,6 +209,10 @@
return err
}
 
+   if err := viper.BindPFlag("only-notfixed", 
flags.Lookup("only-notfixed")); err != nil {
+   return err
+   }
+
if err := viper.BindPFlag("exclude", flags.Lookup("exclude")); err != 
nil {
return err
}
@@ -284,6 +297,7 @@
 
var store *store.Store
var status *db.Status
+

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-07-18 18:33:58

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1523 (New)


Package is "grype"

Mon Jul 18 18:33:58 2022 rev:5 rq:989614 version:0.42.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-07-08 
14:01:50.498442178 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1523/grype.changes2022-07-18 
18:34:02.621766556 +0200
@@ -1,0 +2,8 @@
+Sat Jul 16 19:00:16 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.42.0:
+  * bump syft version to v0.51.0 (#822)
+  * feat: implement `grype db diff` command (#812)
+  * fix typo in log message (#819)
+
+---

Old:

  grype-0.41.0.tar.gz

New:

  grype-0.42.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.mDPLYU/_old  2022-07-18 18:34:05.165770174 +0200
+++ /var/tmp/diff_new_pack.mDPLYU/_new  2022-07-18 18:34:05.169770180 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.41.0
+Version:0.42.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.mDPLYU/_old  2022-07-18 18:34:05.193770215 +0200
+++ /var/tmp/diff_new_pack.mDPLYU/_new  2022-07-18 18:34:05.197770221 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.41.0
+v0.42.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.41.0.tar.gz
+grype-0.42.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.mDPLYU/_old  2022-07-18 18:34:05.209770237 +0200
+++ /var/tmp/diff_new_pack.mDPLYU/_new  2022-07-18 18:34:05.213770243 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  0e0a9d9e7a28592db489499db0294608e5fe69b8
+  cb6bddfeeb2273a43328653d1c2a5887d58d3b3e
 (No newline at EOF)
 

++ grype-0.41.0.tar.gz -> grype-0.42.0.tar.gz ++
 8027 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1523/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-07-08 14:01:44

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1523 (New)


Package is "grype"

Fri Jul  8 14:01:44 2022 rev:4 rq:987415 version:0.41.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-06-28 
15:22:02.421912658 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1523/grype.changes2022-07-08 
14:01:50.498442178 +0200
@@ -1,0 +2,13 @@
+Wed Jul 06 18:11:46 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.41.0:
+  * update syft to v0.50.0 (#818)
+  * Finalize v4 Grype schema (#803)
+  * docs: update to include rust (#814)
+  * feat: add diffing 2 databases to v3 store functionality (#789)
+  * fix: add support for partybus ui on `grype db update` cmd (#806)
+  * Added Docker example to Readme (#769)
+  * fix: add vex json & xml to listed formats (#802)
+  * docs: update php listing to be more clear that the `.json` file isn't 
indexed (#808)
+
+---

Old:

  grype-0.40.1.tar.gz

New:

  grype-0.41.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.SQn6kJ/_old  2022-07-08 14:01:52.422444238 +0200
+++ /var/tmp/diff_new_pack.SQn6kJ/_new  2022-07-08 14:01:52.426444242 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.40.1
+Version:0.41.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.SQn6kJ/_old  2022-07-08 14:01:52.462444281 +0200
+++ /var/tmp/diff_new_pack.SQn6kJ/_new  2022-07-08 14:01:52.466444285 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.40.1
+v0.41.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.40.1.tar.gz
+grype-0.41.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.SQn6kJ/_old  2022-07-08 14:01:52.486444306 +0200
+++ /var/tmp/diff_new_pack.SQn6kJ/_new  2022-07-08 14:01:52.490444311 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  82c0146b0a60f7bb4309190ff898135af16a68ba
+  0e0a9d9e7a28592db489499db0294608e5fe69b8
 (No newline at EOF)
 

++ grype-0.40.1.tar.gz -> grype-0.41.0.tar.gz ++
 8143 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1523/vendor.tar.gz differ: char 5, line 1

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-06-28 15:21:49

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1548 (New)


Package is "grype"

Tue Jun 28 15:21:49 2022 rev:3 rq:985333 version:0.40.1

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-06-23 
10:25:30.631820842 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1548/grype.changes2022-06-28 
15:22:02.421912658 +0200
@@ -1,0 +2,9 @@
+Mon Jun 27 13:20:36 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.40.1:
+  * update syft => v0.49.0 (#804)
+  * remove oss meetup message (#799)
+  * fix: add fixed versions to cyclonedxjson output (#763)
+  * docs: update to include php (#793)
+
+---

Old:

  grype-0.40.0.tar.gz

New:

  grype-0.40.1.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.zG8uOw/_old  2022-06-28 15:22:05.701917554 +0200
+++ /var/tmp/diff_new_pack.zG8uOw/_new  2022-06-28 15:22:05.705917561 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.40.0
+Version:0.40.1
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.zG8uOw/_old  2022-06-28 15:22:05.745917620 +0200
+++ /var/tmp/diff_new_pack.zG8uOw/_new  2022-06-28 15:22:05.749917626 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.40.0
+v0.40.1
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.40.0.tar.gz
+grype-0.40.1.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.zG8uOw/_old  2022-06-28 15:22:05.773917662 +0200
+++ /var/tmp/diff_new_pack.zG8uOw/_new  2022-06-28 15:22:05.777917668 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  0703bae9778e661e2cc21d5caa816cda30472b14
+  82c0146b0a60f7bb4309190ff898135af16a68ba
 (No newline at EOF)
 

++ grype-0.40.0.tar.gz -> grype-0.40.1.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.40.0/README.md new/grype-0.40.1/README.md
--- old/grype-0.40.0/README.md  2022-06-17 17:45:33.0 +0200
+++ new/grype-0.40.1/README.md  2022-06-24 20:30:36.0 +0200
@@ -12,14 +12,6 @@
 
 A vulnerability scanner for container images and filesystems. Easily [install 
the binary](#installation) to try it out. Works with 
[Syft](https://github.com/anchore/syft), the powerful SBOM (software bill of 
materials) tool for container images and filesystems.
 
-### Join our Virtual OSS Meetup!
-
-You are invited to join us on June 15th, 11AM-Noon PT for our virtual open 
source meetup.  
-
-Hosts Amy Bass from Docker Desktop and Christopher Phillips from Anchore OSS 
will explore how Docker Extensions for Docker Desktop is supporting open source 
projects and we???ll have the latest update on Syft: in-toto attestations.
-
-[Register here ->](https://get.anchore.com/anchore-oss-meetup-jun-15-2022/)
-
 ### Join our community meetings!
 
 - Calendar: 
https://calendar.google.com/calendar/u/0/r?cid=Y182OTM4dGt0MjRtajI0NnNzOThiaGtnM29qNEBncm91cC5jYWxlbmRhci5nb29nbGUuY29t
@@ -48,6 +40,7 @@
   - Python (Egg, Wheel, Poetry, requirements.txt/setup.py files)
   - Dotnet (deps.json)
   - Golang (go.mod)
+  - PHP (composer.json)
 - Supports Docker and OCI image formats
 - Consume SBOM 
[attestations](https://github.com/anchore/syft#sbom-attestation).
 
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/grype-0.40.0/go.mod new/grype-0.40.1/go.mod
--- old/grype-0.40.0/go.mod 2022-06-17 17:45:33.0 +0200
+++ new/grype-0.40.1/go.mod 2022-06-24 20:30:36.0 +0200
@@ -3,7 +3,7 @@
 go 1.18
 
 require (
-   github.com/CycloneDX/cyclonedx-go v0.5.2
+   github.com/CycloneDX/cyclonedx-go v0.6.0
github.com/Masterminds/sprig/v3 v3.2.2
github.com/acarl005/stripansi v0.0.0-20180116102854-5a71ef0e047d
github.com/adrg/xdg v0.2.1
@@ -11,7 +11,7 @@
github.com/anchore/go-version v1.2.2-0.20210903204242-51efa5b487c4
github.com/anchore/packageurl-go v0.1.1-0.20220428202044-a072fa3cb6d7
github.com/anchore/stereoscope v0.0.0-20220616165231-b0fd10fdee06
-   github.com/anchore/syft v0.48.1
+   github.com/anchore/syft v0.49.0
github.com/bmatcuk/doublestar/v2 v2.0.4
github.com/docker/docker v20.10.12+incompatible
   

commit grype for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grype for openSUSE:Factory checked 
in at 2022-06-23 10:24:42

Comparing /work/SRC/openSUSE:Factory/grype (Old)
 and  /work/SRC/openSUSE:Factory/.grype.new.1548 (New)


Package is "grype"

Thu Jun 23 10:24:42 2022 rev:2 rq:984486 version:0.40.0

Changes:

--- /work/SRC/openSUSE:Factory/grype/grype.changes  2022-06-16 
18:21:40.176204321 +0200
+++ /work/SRC/openSUSE:Factory/.grype.new.1548/grype.changes2022-06-23 
10:25:30.631820842 +0200
@@ -1,0 +2,26 @@
+Wed Jun 22 08:33:50 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.40.0:
+  * update grype to latest syft patch v0.48.1 (#790)
+  * fix: add golang to documentation (#788)
+  * fix: accept templates with custom functions (#786)
+  * add db staleness check (#785)
+  * feat: add compose workflow for local dev (#783)
+  * ignore gemfile rich version for semVer comparison (#776)
+  * Support namespace and language as additional criteria for ignoring 
vulnerability matches (#780)
+
+---
+Wed Jun 22 08:19:33 UTC 2022 - ka...@b1-systems.de
+
+- Update to version 0.39.0:
+  * update syft version to v0.47.0 (#781)
+  * use anchore fork of glebarez/sqlite (#778)
+  * template: Check sanity for template file (#674)
+  * Add announcement for Anchore OSS Meetup (#775)
+  * Bump github.com/hashicorp/go-getter from 1.5.11 to 1.6.1 (#770)
+  * publish release to reduce user friction (#766)
+  * Update Syft to v0.46.3 (#761)
+  * Add reference to logrus logging levels (#758)
+  * README: add MacPorts install info (#759)
+
+---

Old:

  grype-0.38.0.tar.gz

New:

  grype-0.40.0.tar.gz



Other differences:
--
++ grype.spec ++
--- /var/tmp/diff_new_pack.7Qkjcs/_old  2022-06-23 10:25:32.035822368 +0200
+++ /var/tmp/diff_new_pack.7Qkjcs/_new  2022-06-23 10:25:32.039822372 +0200
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:   grype
-Version:0.38.0
+Version:0.40.0
 Release:0
 Summary:A vulnerability scanner for container images and filesystems
 License:Apache-2.0

++ _service ++
--- /var/tmp/diff_new_pack.7Qkjcs/_old  2022-06-23 10:25:32.075822411 +0200
+++ /var/tmp/diff_new_pack.7Qkjcs/_new  2022-06-23 10:25:32.075822411 +0200
@@ -3,7 +3,7 @@
 https://github.com/anchore/grype
 git
 .git
-v0.38.0
+v0.40.0
 @PARENT_TAG@
 enable
 v(.*)
@@ -17,7 +17,7 @@
 gz
   
   
-grype-0.38.0.tar.gz
+grype-0.40.0.tar.gz
   
 
 

++ _servicedata ++
--- /var/tmp/diff_new_pack.7Qkjcs/_old  2022-06-23 10:25:32.095822433 +0200
+++ /var/tmp/diff_new_pack.7Qkjcs/_new  2022-06-23 10:25:32.099822437 +0200
@@ -1,6 +1,6 @@
 
 
 https://github.com/anchore/grype
-  06d28dad9f7e7d9aa65fc16d45c6ce785826664c
+  0703bae9778e661e2cc21d5caa816cda30472b14
 (No newline at EOF)
 

++ grype-0.38.0.tar.gz -> grype-0.40.0.tar.gz ++
 2332 lines of diff (skipped)

++ vendor.tar.gz ++
/work/SRC/openSUSE:Factory/grype/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grype.new.1548/vendor.tar.gz differ: char 4, line 1