Skip to content

[c/c++] do not match OS packages for stdlib #788

New issue
New issue
Open
#1309
Open
[c/c++] do not match OS packages for stdlib#788
#1309
Assignees
aryan-rajoria
Labels
Consider Fundinggood first issueGood for newcomershelp wantedExtra attention is needed
@prabhu

Description

@prabhu
prabhu
opened on Dec 23, 2023

Tested with: https://github.com/ada-url/ada

#include <array>

It matches an OS package, which is incorrect.

{
      "group": "",
      "name": "nodejs21-devel",
      "version": "21.4.0",
      "purl": "pkg:rpm/[email protected]#nodejs21-21.4.0-1.1.src.rpm",
      "type": "library",
      "bom-ref": "pkg:rpm/[email protected]#nodejs21-21.4.0-1.1.src.rpm",
      "evidence": {
        "identity": {
          "field": "purl",
          "confidence": 0.8,
          "methods": [
            {
              "technique": "filename",
              "confidence": 0.8,
              "value": "PkgProvides array"
            }
          ]
        }
      }
    }

To fix this, we need a list of standard c/c++ libraries similar to Python and filter the list before looking for an OS package.

https://en.cppreference.com/w/cpp/standard_library
https://cplusplus.com/reference/

Metadata

Metadata

Assignees

Labels

Consider Fundinggood first issueGood for newcomershelp wantedExtra attention is needed

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions