Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package syft for openSUSE:Factory checked in
at 2023-01-23 18:32:05
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/syft (Old)
and /work/SRC/openSUSE:Factory/.syft.new.32243 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "syft"
Mon Jan 23 18:32:05 2023 rev:22 rq:1060339 version:0.68.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/syft/syft.changes 2023-01-20
17:39:31.864803600 +0100
+++ /work/SRC/openSUSE:Factory/.syft.new.32243/syft.changes 2023-01-23
18:32:21.580224643 +0100
@@ -1,0 +2,30 @@
+Sat Jan 21 07:53:06 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 0.68.0:
+ * Fix panic in apkdb parsing on empty "provides" values (#1494)
+ * push detailed log statements to trace-level (#1500)
+ * npm: package-lock license decoding to accept string or array (#1482)
+ * always set the package ID for java packages (#1493)
+ * fix: skip filling in empty fields in APK metadata (#1484)
+ * chore(deps): bump github.com/facebookincubator/nvdtools (#1499)
+ * chore(deps): bump github.com/jinzhu/copier from 0.3.2 to 0.3.5 (#1498)
+ * chore(deps): bump github.com/vbatts/go-mtree from 0.5.0 to 0.5.2 (#1497)
+ * chore(deps): bump github.com/gookit/color from 1.4.2 to 1.5.2 (#1496)
+ * chore(deps): bump github.com/spf13/viper from 1.14.0 to 1.15.0 (#1495)
+ * Relax error conditions for catalogers (#1492)
+ * feat: add memcached classifier (#1486)
+ * chore(deps): bump github.com/spf13/viper from 1.13.0 to 1.14.0 (#1488)
+ * chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.0.2 to 4.6.0
(#1489)
+ * chore(deps): bump github.com/spf13/cobra from 1.6.0 to 1.6.1 (#1490)
+ * chore(deps): bump github.com/go-test/deep from 1.0.8 to 1.1.0 (#1491)
+ * chore(deps): bump github.com/google/go-containerregistry (#1487)
+ * chore(deps): bump golang.org/x/net from 0.4.0 to 0.5.0 (#1475)
+ * chore(deps): bump github.com/adrg/xdg from 0.3.3 to 0.4.0 (#1477)
+ * chore(deps): bump github.com/sergi/go-diff from 1.2.0 to 1.3.1 (#1476)
+ * chore(deps): bump github.com/vifraa/gopom from 0.1.0 to 0.2.1 (#1474)
+ * chore(deps): bump github/codeql-action from 1 to 2 (#1473)
+ * chore(deps): bump actions/setup-go from 2 to 3 (#1472)
+ * Add dependabot (#1451)
+- skip non-existent release 0.67.x
+
+-------------------------------------------------------------------
Old:
----
syft-0.66.2.tar.gz
New:
----
syft-0.68.0.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ syft.spec ++++++
--- /var/tmp/diff_new_pack.uU9kxC/_old 2023-01-23 18:32:24.184242663 +0100
+++ /var/tmp/diff_new_pack.uU9kxC/_new 2023-01-23 18:32:24.188242690 +0100
@@ -19,7 +19,7 @@
%define __arch_install_post export NO_BRP_STRIP_DEBUG=true
Name: syft
-Version: 0.66.2
+Version: 0.68.0
Release: 0
Summary: CLI tool and library for generating a Software Bill of
Materials
License: Apache-2.0
++++++ _service ++++++
--- /var/tmp/diff_new_pack.uU9kxC/_old 2023-01-23 18:32:24.256243161 +0100
+++ /var/tmp/diff_new_pack.uU9kxC/_new 2023-01-23 18:32:24.256243161 +0100
@@ -3,7 +3,7 @@
<param name="url">https://github.com/anchore/syft</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v0.66.2</param>
+ <param name="revision">v0.68.0</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
@@ -16,7 +16,7 @@
<param name="compression">gz</param>
</service>
<service name="go_modules" mode="disabled">
- <param name="archive">syft-0.66.2.tar.gz</param>
+ <param name="archive">syft-0.68.0.tar.gz</param>
</service>
</services>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.uU9kxC/_old 2023-01-23 18:32:24.276243300 +0100
+++ /var/tmp/diff_new_pack.uU9kxC/_new 2023-01-23 18:32:24.280243327 +0100
@@ -1,6 +1,6 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/anchore/syft</param>
- <param
name="changesrevision">03971ace43b877e371c13e3f786c1f6c3a4ec507</param></service></servicedata>
+ <param
name="changesrevision">e58050bac045be672621047d5699b88884e2da62</param></service></servicedata>
(No newline at EOF)
++++++ syft-0.66.2.tar.gz -> syft-0.68.0.tar.gz ++++++
++++ 2730 lines of diff (skipped)
++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/syft/vendor.tar.gz
/work/SRC/openSUSE:Factory/.syft.new.32243/vendor.tar.gz differ: char 5, line 1
