scanoss 1.31.3__py3-none-any.whl → 1.31.4__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (10) hide show
  1. scanoss/__init__.py +1 -1
  2. scanoss/cli.py +2 -1
  3. scanoss/data/build_date.txt +1 -1
  4. scanoss/inspection/dependency_track/project_violation.py +7 -1
  5. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/METADATA +1 -1
  6. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/RECORD +10 -10
  7. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/WHEEL +0 -0
  8. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/entry_points.txt +0 -0
  9. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/licenses/LICENSE +0 -0
  10. {scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/top_level.txt +0 -0
scanoss/__init__.py CHANGED
@@ -22,4 +22,4 @@ SPDX-License-Identifier: MIT
22
22
  THE SOFTWARE.
23
23
  """
24
24
 
25
- __version__ = '1.31.3'
25
+ __version__ = '1.31.4'
scanoss/cli.py CHANGED
@@ -803,7 +803,8 @@ def setup_args() -> None: # noqa: PLR0912, PLR0915
803
803
  p_inspect_dt_project_violation.add_argument(
804
804
  '--timeout', '-M',
805
805
  required=False,
806
- default='300',
806
+ default=300,
807
+ type=float,
807
808
  help='Timeout (in seconds) for API communication (optional - default 300 sec)'
808
809
  )
809
810
 
scanoss/data/build_date.txt CHANGED
@@ -1 +1 @@
1
- date: 20250819171726, utime: 1755623846
1
+ date: 20250820161348, utime: 1755706428
scanoss/inspection/dependency_track/project_violation.py CHANGED
@@ -31,7 +31,7 @@ from ..policy_check import PolicyCheck, PolicyStatus
31
31
 
32
32
  # Constants
33
33
  PROCESSING_RETRY_DELAY = 5 # seconds
34
- DEFAULT_TIME_OUT = 300
34
+ DEFAULT_TIME_OUT = 300.0
35
35
  MILLISECONDS_TO_SECONDS = 1000
36
36
 
37
37
 
@@ -257,6 +257,12 @@ class DependencyTrackProjectViolationPolicyCheck(PolicyCheck[PolicyViolationDict
257
257
  self.print_msg(f'last_occurrence: {last_occurrence}')
258
258
  self.print_msg(f'last_vulnerability_analysis is updated: {last_vulnerability_analysis >= last_import}')
259
259
  self.print_msg(f'last_occurrence is updated: {last_occurrence >= last_import}')
260
+ # Catches case where vulnerability analysis is skipped for empty SBOMs
261
+ if 0 < last_import <= last_occurrence:
262
+ component_count = metrics.get('components', 0) if isinstance(metrics, dict) else 0
263
+ if component_count < 1:
264
+ self.print_msg('Notice: Empty SBOM detected. Assuming no violations.')
265
+ return True
260
266
  # If all timestamps are zero, this indicates no processing has occurred
261
267
  if last_vulnerability_analysis == 0 or last_occurrence == 0 or last_import == 0:
262
268
  self.print_stderr(f'Warning: Some project data appears to be unset. Returning False: {dt_project}')
{scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.4
2
2
  Name: scanoss
3
- Version: 1.31.3
3
+ Version: 1.31.4
4
4
  Summary: Simple Python library to leverage the SCANOSS APIs
5
5
  Home-page: https://scanoss.com
6
6
  Author: SCANOSS
{scanoss-1.31.3.dist-info → scanoss-1.31.4.dist-info}/RECORD RENAMED
@@ -4,8 +4,8 @@ protoc_gen_swagger/options/annotations_pb2.py,sha256=b25EDD6gssUWnFby9gxgcpLIROT
4
4
  protoc_gen_swagger/options/annotations_pb2_grpc.py,sha256=1oboBPFxaTEXt9Aw7EAj8gXHDCNMhZD2VXqocC9l_gk,159
5
5
  protoc_gen_swagger/options/openapiv2_pb2.py,sha256=vYElGp8E1vGHszvWqX97zNG9GFJ7u2QcdK9ouq0XdyI,14939
6
6
  protoc_gen_swagger/options/openapiv2_pb2_grpc.py,sha256=1oboBPFxaTEXt9Aw7EAj8gXHDCNMhZD2VXqocC9l_gk,159
7
- scanoss/__init__.py,sha256=-rDryvJMuAssXozu_AP2VLfNxsIq3GScH_VO60elp-c,1146
8
- scanoss/cli.py,sha256=Hx8ay24LQJq7H1vIs5kKt8UX7OeFxGADY-3uPgNnzlw,91645
7
+ scanoss/__init__.py,sha256=OOuDaYMgJubFKhfmPh0jgJEO4KpizU4Jn1VneOxP9IA,1146
8
+ scanoss/cli.py,sha256=x6mzHyFRdcyG22cZlUpsAtZ_QfdGiJJ6z4ye5DqVs6c,91663
9
9
  scanoss/components.py,sha256=b0R9DdKuXqyQiw5nZZwjQ6NJXBr1U9gyx1RI2FP9ozA,14511
10
10
  scanoss/constants.py,sha256=On8mQ-8ardVMHSJ7WOJqeTvGXIOWPLCgUanjE7Wk-wE,351
11
11
  scanoss/cryptography.py,sha256=oj5HHgJk1e31dzQfB-5sIVmQVcUJMsP5DUPyP9QpPgQ,9806
@@ -57,7 +57,7 @@ scanoss/api/vulnerabilities/__init__.py,sha256=IFrDk_DTJgKSZmmU-nuLXuq_s8sQZlrSC
57
57
  scanoss/api/vulnerabilities/v2/__init__.py,sha256=IFrDk_DTJgKSZmmU-nuLXuq_s8sQZlrSCHhIDMJT4r0,1122
58
58
  scanoss/api/vulnerabilities/v2/scanoss_vulnerabilities_pb2.py,sha256=CFhF80av8tenGvn9AIsGEtRJPuV2dC_syA5JLZb2lDw,5464
59
59
  scanoss/api/vulnerabilities/v2/scanoss_vulnerabilities_pb2_grpc.py,sha256=HlS4k4Zmx6RIAqaO9I96jD-eyF5yU6Xx04pVm7pdqOg,6864
60
- scanoss/data/build_date.txt,sha256=2tCxoRbQknMo5kAyoXwYD0J0x61ovZ4bAjZlzX7WBc4,40
60
+ scanoss/data/build_date.txt,sha256=DKeY3LHaDSMadpxZMiR3kW7fJL2T7lJHe51XkpS9rdw,40
61
61
  scanoss/data/scanoss-settings-schema.json,sha256=ClkRYAkjAN0Sk704G8BE_Ok006oQ6YnIGmX84CF8h9w,8798
62
62
  scanoss/data/spdx-exceptions.json,sha256=s7UTYxC7jqQXr11YBlIWYCNwN6lRDFTR33Y8rpN_dA4,17953
63
63
  scanoss/data/spdx-licenses.json,sha256=A6Z0q82gaTLtnopBfzeIVZjJFxkdRW1g2TuumQc-lII,228794
@@ -65,7 +65,7 @@ scanoss/export/__init__.py,sha256=D4C0lWLuNp8k_BjQZEc07WZcUgAvriVwQWOk063b0ZU,11
65
65
  scanoss/export/dependency_track.py,sha256=A_xQH6_r9xL_fth1Wr770GCTRFVyn7XcUPfVUsXp4-w,9271
66
66
  scanoss/inspection/__init__.py,sha256=D4C0lWLuNp8k_BjQZEc07WZcUgAvriVwQWOk063b0ZU,1122
67
67
  scanoss/inspection/policy_check.py,sha256=JOJko_QVB7_6I8VQiGFJmOmJheN5jlwtpGOS2kBMMCo,9756
68
- scanoss/inspection/dependency_track/project_violation.py,sha256=p_azHUesYuKqEMYjj7JV8lC2BSwS2tRp5hJVg6NrILQ,20094
68
+ scanoss/inspection/dependency_track/project_violation.py,sha256=TQkdlDzgUzG2AcI0Q-qiwIhzvm6XjbXcLooefBVX2ZM,20468
69
69
  scanoss/inspection/raw/component_summary.py,sha256=J4DDGNg9WIxIaTeblk6u4tmtMf4veXDesuC4rmpHNkM,4090
70
70
  scanoss/inspection/raw/copyleft.py,sha256=xAKIYROUG-F9SbPs3iIDmTg8yqovh3NVZNni4-byd68,9324
71
71
  scanoss/inspection/raw/license_summary.py,sha256=m5JVcqnqViPLrwHI5-XCpIEQzUiKtnhFC3FWhfM0T00,5823
@@ -83,9 +83,9 @@ scanoss/utils/abstract_presenter.py,sha256=teiDTxBj5jBMCk2T8i4l1BJPf_u4zBLWrtCTF
83
83
  scanoss/utils/crc64.py,sha256=TMrwQimSdE6imhFOUL7oAG6Kxu-8qMpGWMuMg8QpSVs,3169
84
84
  scanoss/utils/file.py,sha256=62cA9a17TU9ZvfA3FY5HY4-QOajJeSrc8S6xLA_f-3M,2980
85
85
  scanoss/utils/simhash.py,sha256=6iu8DOcecPAY36SZjCOzrrLMT9oIE7-gI6QuYwUQ7B0,5793
86
- scanoss-1.31.3.dist-info/licenses/LICENSE,sha256=LLUaXoiyOroIbr5ubAyrxBOwSRLTm35ETO2FmLpy8QQ,1074
87
- scanoss-1.31.3.dist-info/METADATA,sha256=bIPN0AvLiMRacepK5dGbiL-YLoHA5fQF1fmZLcueI0k,6108
88
- scanoss-1.31.3.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
89
- scanoss-1.31.3.dist-info/entry_points.txt,sha256=Uy28xnaDL5KQ7V77sZD5VLDXPNxYYzSr5tsqtiXVzAs,48
90
- scanoss-1.31.3.dist-info/top_level.txt,sha256=V11PrQ6Pnrc-nDF9xnisnJ8e6-i7HqSIKVNqduRWcL8,27
91
- scanoss-1.31.3.dist-info/RECORD,,
86
+ scanoss-1.31.4.dist-info/licenses/LICENSE,sha256=LLUaXoiyOroIbr5ubAyrxBOwSRLTm35ETO2FmLpy8QQ,1074
87
+ scanoss-1.31.4.dist-info/METADATA,sha256=SoprUDEBurPdo2BAFgH-v3b0XwNGsXdPqCoZU7rzano,6108
88
+ scanoss-1.31.4.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
89
+ scanoss-1.31.4.dist-info/entry_points.txt,sha256=Uy28xnaDL5KQ7V77sZD5VLDXPNxYYzSr5tsqtiXVzAs,48
90
+ scanoss-1.31.4.dist-info/top_level.txt,sha256=V11PrQ6Pnrc-nDF9xnisnJ8e6-i7HqSIKVNqduRWcL8,27
91
+ scanoss-1.31.4.dist-info/RECORD,,