Skip to content

Support arangodb binary recent version #4571

New issue
New issue
Open
#4662
Open
Support arangodb binary recent version#4571
#4662
Labels
bugSomething isn't working
@witchcraze

Description

@witchcraze
witchcraze
opened on Jan 25, 2026

What happened:

From https://hub.docker.com/_/arangodb, library/arangodb should be under community license, but recent iamges seems enterprise version.

Anyway, Syft can not detect arangodb from recent library/arangodb image.
(And Syft will not detect arangodb arangodb enterprise version.)

Current matcher can not detect some pattern

  • 3.12.5 0 - 3.12.7.1

Steps to reproduce the issue:

By 3.12.4, community version

$ syft -q library/arangodb:3.12.4 | grep arangodb
arangodb                                    3.12.4                              binary
github.com/arangodb-helper/arangodb         v0.19.8                             go-module
github.com/arangodb-helper/go-certificates  v0.0.0-20180821055445-9fca24fc2680  go-module
github.com/arangodb-helper/go-helper        v0.4.2                              go-module
github.com/arangodb/go-driver               v1.6.0                              go-module
github.com/arangodb/go-upgrade-rules        v0.0.0-20200605091205-439fb1ee86e7  go-module
github.com/arangodb/go-velocypack           v0.0.0-20200318135517-5af53c29c67e  go-module

$ docker run -it --rm library/arangodb:3.12.4 /usr/bin/arangosh --version
3.12.4

This executable uses the GNU C library (glibc), which is licensed under the GNU Lesser General Public License (LGPL), see https://www.gnu.org/copyleft/lesser.html and https://www.gnu.org/licenses/gpl.html

architecture: 64bit
arm: false
asan: false
assertions: false
avx: true
avx2: false
boost-version: 1.78.0
build-date: 2025-01-23 11:55:28
build-id: ea9180ab294afbee11c96eb8b62b600277f1540b
build-repository: refs/tags/v3.12.4 532d00b43f1
compiler: clang [Ubuntu Clang 16.0.6 (23ubuntu4)]
coverage: false
cplusplus: 202002
curl-version: none
debug: false
endianness: little
failure-tests: false
fd-client-event-handler: poll
fd-setsize: 1024
full-version-string: ArangoDB 3.12.4 [linux] 64bit, using jemalloc, build refs/tags/v3.12.4 532d00b43f1, VPack 0.2.1, RocksDB 7.2.0, ICU 64.2, V8 12.1.165, OpenSSL 3.4.0 22 Oct 2024
icu-version: 64.2
ipo: true
iresearch-version: 1.3.0.0
jemalloc: true
libunwind: true
license: community
maintainer-mode: false
memory-profiler: true
ndebug: true
openssl-version-compile-time: OpenSSL 3.4.0 22 Oct 2024
openssl-version-run-time: OpenSSL 3.4.0 22 Oct 2024
optimization-flags: -mfxsr -mmmx -msse -msse2 -mcx16 -msahf -mpopcnt -msse3 -msse4.1 -msse4.2 -mssse3 -mpclmul -mavx -mxsave
pic: 2
pie: 2
platform: linux
reactor-type: epoll
replication2-enabled: false
rocksdb-version: 7.2.0
server-version: 3.12.4
sizeof int: 4
sizeof long: 8
sizeof void*: 8
sse42: true
tsan: false
unaligned-access: false
v8-version: 12.1.165
vpack-version: 0.2.1
zlib-version: 1.2.13

$ docker run -it --rm library/arangodb:3.12.4 strings /usr/bin/arangosh | grep '3\.12\.4'
refs/tags/v3.12.4 532d00b43f1
3.12.4 [linux]
3.12.4
3.12.4 [H

From 3.12.5, enterprise version

$ syft -q library/arangodb:3.12.5 | grep arangodb
github.com/arangodb-helper/arangodb                         v0.19.12                               go-module
github.com/arangodb-helper/go-certificates                  v0.0.0-20180821055445-9fca24fc2680     go-module
github.com/arangodb-helper/go-helper                        v0.4.2                                 go-module
github.com/arangodb/go-driver                               v1.6.6                                 go-module
github.com/arangodb/go-upgrade-rules                        v0.0.0-20200605091205-439fb1ee86e7     go-module
github.com/arangodb/go-velocypack                           v0.0.0-20200318135517-5af53c29c67e     go-module

$ docker run -it --rm library/arangodb:3.12.5 /usr/bin/arangosh --version
3.12.5

This executable uses the GNU C library (glibc), which is licensed under the GNU Lesser General Public License (LGPL), see https://www.gnu.org/copyleft/lesser.html and https://www.gnu.org/licenses/gpl.html

architecture: 64bit
arm: false
asan: false
assertions: false
avx: true
avx2: false
boost-version: 1.78.0
build-date: 2025-06-18 19:07:34
build-id: a27242856df47bdc3afe950e8c0e3bc11ee2e449
build-repository: 3aed02d952d
compiler: clang [Ubuntu Clang 19.1.7 (++20250114103332+cd708029e0b2-1~exp1~20250114103446.78)]
coverage: false
cplusplus: 202002
curl-version: none
debug: false
endianness: little
enterprise-build-repository: 9318e1f0
enterprise-version: enterprise
failure-tests: false
fd-client-event-handler: poll
fd-setsize: 1024
full-version-string: ArangoDB 3.12.5 enterprise [linux] 64bit, using jemalloc, build 3aed02d952d, VPack 0.2.1, RocksDB 7.2.0, ICU 64.2, V8 12.1.165, OpenSSL 3.5.0 8 Apr 2025
icu-version: 64.2
ipo: true
iresearch-version: 1.3.0.0
jemalloc: true
libunwind: true
license: enterprise
maintainer-mode: false
memory-profiler: true
ndebug: true
openssl-version-compile-time: OpenSSL 3.5.0 8 Apr 2025
openssl-version-run-time: OpenSSL 3.5.0 8 Apr 2025
optimization-flags: -mfxsr -mmmx -msse -msse2 -mcx16 -msahf -mpopcnt -msse3 -msse4.1 -msse4.2 -mssse3 -mpclmul -mavx -mxsave
pic: 2
pie: 2
platform: linux
reactor-type: epoll
replication2-enabled: false
rocksdb-version: 7.2.0
server-version: 3.12.5
sizeof int: 4
sizeof long: 8
sizeof void*: 8
sse42: true
tsan: false
unaligned-access: false
v8-version: 12.1.165
vpack-version: 0.2.1
zlib-version: 1.2.13

$ docker run -it --rm library/arangodb:3.12.5 strings /usr/bin/arangosh | grep '3\.12\.5'
3.12.5
3.12.5 enterprise [linux]

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    OSS

    Status

    Ready

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions