🗞️ News
Grype has just released an excitin version as it embeds the following issue :
Include php in Grype supported languages #792
cpendery
posted on
What would you like to be added: php, via composer, should be listed in Grype's supported languages
Why is this needed: Composer is a namespace under Github in the Grype databases as early as May
Additional context:
🍿 News and upgrade demo
Top comments (4)
Not finding vulnerabilities in php (composer) #797
What happened: Using grype as usual with a php (composer) project:
grype dir:.
produces an empty list of vulnerabilities.What you expected to happen: A list of vulnerabilities.
How to reproduce it (as minimally and precisely as possible): I tried with this project, which is a composer project, and grype found no vulnerabilities. Even checking out tags of older versions.
Environment:
grype version
:cat /etc/os-release
or similar):Released to the Scan Action, check merged PR below :
Update Grype to v0.40.1 #180
Update Grype to v0.40.1
... and coming to the scan action :
Update Grype to v0.40.1 #180
Update Grype to v0.40.1