scanoss 1.37.0__py3-none-any.whl → 1.37.1__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- scanoss/__init__.py +1 -1
- scanoss/cyclonedx.py +7 -2
- scanoss/data/build_date.txt +1 -1
- scanoss/spdxlite.py +4 -2
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/METADATA +1 -1
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/RECORD +10 -10
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/WHEEL +0 -0
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/entry_points.txt +0 -0
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/licenses/LICENSE +0 -0
- {scanoss-1.37.0.dist-info → scanoss-1.37.1.dist-info}/top_level.txt +0 -0
scanoss/__init__.py
CHANGED
scanoss/cyclonedx.py
CHANGED
|
@@ -152,7 +152,11 @@ class CycloneDx(ScanossBase):
|
|
|
152
152
|
fdl = []
|
|
153
153
|
if licenses:
|
|
154
154
|
for lic in licenses:
|
|
155
|
-
|
|
155
|
+
name = lic.get('name')
|
|
156
|
+
source = lic.get('source')
|
|
157
|
+
if source not in ('component_declared', 'license_file', 'file_header'):
|
|
158
|
+
continue
|
|
159
|
+
fdl.append({'id': name})
|
|
156
160
|
fd['licenses'] = fdl
|
|
157
161
|
cdx[purl] = fd
|
|
158
162
|
# self.print_stderr(f'VD: {vdx}')
|
|
@@ -295,7 +299,8 @@ class CycloneDx(ScanossBase):
|
|
|
295
299
|
except Exception as e:
|
|
296
300
|
self.print_stderr(f'ERROR: Problem parsing input JSON: {e}')
|
|
297
301
|
return False
|
|
298
|
-
|
|
302
|
+
success, _ = self.produce_from_json(data, output_file)
|
|
303
|
+
return success
|
|
299
304
|
|
|
300
305
|
def _normalize_vulnerability_id(self, vuln: dict) -> tuple[str, str]:
|
|
301
306
|
"""
|
scanoss/data/build_date.txt
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
date:
|
|
1
|
+
date: 20251021125636, utime: 1761051396
|
scanoss/spdxlite.py
CHANGED
|
@@ -226,7 +226,9 @@ class SpdxLite:
|
|
|
226
226
|
Process license information and remove duplicates.
|
|
227
227
|
|
|
228
228
|
This method filters license information to include only licenses from trusted sources
|
|
229
|
-
('component_declared'
|
|
229
|
+
('component_declared', 'license_file', 'file_header'). Licenses with an unspecified
|
|
230
|
+
source (None or '') are allowed. Non-empty, non-allowed sources are excluded. It also
|
|
231
|
+
removes any duplicate license names.
|
|
230
232
|
The result is a simplified list of license dictionaries containing only the 'id' field.
|
|
231
233
|
|
|
232
234
|
Args:
|
|
@@ -247,7 +249,7 @@ class SpdxLite:
|
|
|
247
249
|
for license_info in licenses:
|
|
248
250
|
name = license_info.get('name')
|
|
249
251
|
source = license_info.get('source')
|
|
250
|
-
if source not in ("component_declared", "license_file", "file_header"):
|
|
252
|
+
if source not in (None, '') and source not in ("component_declared", "license_file", "file_header"):
|
|
251
253
|
continue
|
|
252
254
|
if name and name not in seen_names:
|
|
253
255
|
processed_licenses.append({'id': name})
|
|
@@ -6,13 +6,13 @@ protoc_gen_swagger/options/annotations_pb2_grpc.py,sha256=KZOW9Ciio-f9iL42FuLFnS
|
|
|
6
6
|
protoc_gen_swagger/options/openapiv2_pb2.py,sha256=w0xDs63uyrWGgzRaQZXfJpfI7Jpyvh-i9ay_uzOR-aM,16475
|
|
7
7
|
protoc_gen_swagger/options/openapiv2_pb2.pyi,sha256=hYOV6uQ2yqhP89042_V3GuAsvoBBiXf5CGuYmnFnfv4,54665
|
|
8
8
|
protoc_gen_swagger/options/openapiv2_pb2_grpc.py,sha256=sje9Nh3yE7CHCUWZwtjTgwsKB4GvyGz5vOrGTnRXJfc,917
|
|
9
|
-
scanoss/__init__.py,sha256=
|
|
9
|
+
scanoss/__init__.py,sha256=iSpp8sr8gCdIDSih9UjE7Tp4g6shXN9dHvwF3v737_0,1146
|
|
10
10
|
scanoss/cli.py,sha256=AV_tmWeCH_TxhKDOY3PR1zbLbDWt1yWa8CHpp-GABsY,97436
|
|
11
11
|
scanoss/components.py,sha256=NFyt_w3aoMotr_ZaFU-ng00_89sruc0kgY7ERnJXkmM,15891
|
|
12
12
|
scanoss/constants.py,sha256=GHLTaLNVxXdTXRj7ngRK4u4S653pHzM8qFy4JFLa0wQ,450
|
|
13
13
|
scanoss/cryptography.py,sha256=lOoD_dW16ARQxYiYyb5R8S7gx0FqWIsnGkKfsB0nGaU,10627
|
|
14
14
|
scanoss/csvoutput.py,sha256=3wdXPeIqZG84bCtXFh8fMZO3XodekeSx6RZXoOhZMFc,10551
|
|
15
|
-
scanoss/cyclonedx.py,sha256=
|
|
15
|
+
scanoss/cyclonedx.py,sha256=mHeX66yQCk41N3YCIzKy_fI7fLqQnetYPFRIzUKy_M4,18416
|
|
16
16
|
scanoss/delta.py,sha256=slmgnD7SsUOmfSE2zb0zdRAGo-JcjPJAtxyzuCSzO3I,9455
|
|
17
17
|
scanoss/file_filters.py,sha256=QcLqunaBKQIafjNZ9_Snh9quBX5_-fsTusVmxwjC1q8,18511
|
|
18
18
|
scanoss/filecount.py,sha256=RZjKQ6M5P_RQg0_PMD2tsRe5Z8f98ke0sxYVjPDN8iQ,6538
|
|
@@ -25,7 +25,7 @@ scanoss/scanossbase.py,sha256=Dkpwxa8NH8XN1iRl03NM_Mkvby0JQ4qfvCiiUrJ5ul0,3163
|
|
|
25
25
|
scanoss/scanossgrpc.py,sha256=6s5TH2i3XB4xaXylmxFu7chlVlYjCZE_DpvRkiiaoHk,41541
|
|
26
26
|
scanoss/scanpostprocessor.py,sha256=-JsThlxrU70r92GHykTMERnicdd-6jmwNsE4PH0MN2o,11063
|
|
27
27
|
scanoss/scantype.py,sha256=gFmyVmKQpHWogN2iCmMj032e_sZo4T92xS3_EH5B3Tc,1310
|
|
28
|
-
scanoss/spdxlite.py,sha256=
|
|
28
|
+
scanoss/spdxlite.py,sha256=4JMxmyNmvcL6fjScihk8toWfSuQ-Pj1gzaT3SIn1fXA,29425
|
|
29
29
|
scanoss/threadeddependencies.py,sha256=aN8E43iKS1pWJLJP3xCle5ewlfR5DE2-ljUzI_29Xwk,9851
|
|
30
30
|
scanoss/threadedscanning.py,sha256=38ryN_kZGpzmrd_hkuiY9Sb3tOG248canGCDQDmGEwI,9317
|
|
31
31
|
scanoss/winnowing.py,sha256=RsR9jRTR3TzS1pEeKQ2RuYlIG8Q7RnUQFfgPLog6B-A,21679
|
|
@@ -64,7 +64,7 @@ scanoss/api/vulnerabilities/__init__.py,sha256=IFrDk_DTJgKSZmmU-nuLXuq_s8sQZlrSC
|
|
|
64
64
|
scanoss/api/vulnerabilities/v2/__init__.py,sha256=IFrDk_DTJgKSZmmU-nuLXuq_s8sQZlrSCHhIDMJT4r0,1122
|
|
65
65
|
scanoss/api/vulnerabilities/v2/scanoss_vulnerabilities_pb2.py,sha256=pmm0MSiXkdf8e4rCIIDRcsNRixR2vGvD1Xak4l-wdwI,16550
|
|
66
66
|
scanoss/api/vulnerabilities/v2/scanoss_vulnerabilities_pb2_grpc.py,sha256=BNxT5kUKQ-mgtOt5QYBM1Qrg5LNDqSpWKpfEZquIlsM,19127
|
|
67
|
-
scanoss/data/build_date.txt,sha256=
|
|
67
|
+
scanoss/data/build_date.txt,sha256=qPsNY6QPHKQ79btjzaFPFpxM6-K0Xi1IQy91V4GMGtE,40
|
|
68
68
|
scanoss/data/scanoss-settings-schema.json,sha256=ClkRYAkjAN0Sk704G8BE_Ok006oQ6YnIGmX84CF8h9w,8798
|
|
69
69
|
scanoss/data/spdx-exceptions.json,sha256=s7UTYxC7jqQXr11YBlIWYCNwN6lRDFTR33Y8rpN_dA4,17953
|
|
70
70
|
scanoss/data/spdx-licenses.json,sha256=A6Z0q82gaTLtnopBfzeIVZjJFxkdRW1g2TuumQc-lII,228794
|
|
@@ -90,9 +90,9 @@ scanoss/utils/abstract_presenter.py,sha256=teiDTxBj5jBMCk2T8i4l1BJPf_u4zBLWrtCTF
|
|
|
90
90
|
scanoss/utils/crc64.py,sha256=TMrwQimSdE6imhFOUL7oAG6Kxu-8qMpGWMuMg8QpSVs,3169
|
|
91
91
|
scanoss/utils/file.py,sha256=62cA9a17TU9ZvfA3FY5HY4-QOajJeSrc8S6xLA_f-3M,2980
|
|
92
92
|
scanoss/utils/simhash.py,sha256=6iu8DOcecPAY36SZjCOzrrLMT9oIE7-gI6QuYwUQ7B0,5793
|
|
93
|
-
scanoss-1.37.
|
|
94
|
-
scanoss-1.37.
|
|
95
|
-
scanoss-1.37.
|
|
96
|
-
scanoss-1.37.
|
|
97
|
-
scanoss-1.37.
|
|
98
|
-
scanoss-1.37.
|
|
93
|
+
scanoss-1.37.1.dist-info/licenses/LICENSE,sha256=LLUaXoiyOroIbr5ubAyrxBOwSRLTm35ETO2FmLpy8QQ,1074
|
|
94
|
+
scanoss-1.37.1.dist-info/METADATA,sha256=TVPNfoQfdf8wAOeuvMjRQ945eme9JlfcnPe8-a-Z8Ck,6181
|
|
95
|
+
scanoss-1.37.1.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
|
|
96
|
+
scanoss-1.37.1.dist-info/entry_points.txt,sha256=Uy28xnaDL5KQ7V77sZD5VLDXPNxYYzSr5tsqtiXVzAs,48
|
|
97
|
+
scanoss-1.37.1.dist-info/top_level.txt,sha256=V11PrQ6Pnrc-nDF9xnisnJ8e6-i7HqSIKVNqduRWcL8,27
|
|
98
|
+
scanoss-1.37.1.dist-info/RECORD,,
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|