Skip to content

feat: New Dependency logic implimentation #383

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
crvreddy merged 35 commits into from
Feb 5, 2026
Merged

feat: New Dependency logic implimentation #383

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
35 commits
Select commit Hold shift + click to select a range
849965f
Implimentation of write dependencies update in bom file
crvreddy Dec 18, 2025
7d290b5
missed changes
crvreddy Dec 19, 2025
cd06505
Fixed issues
crvreddy Jan 8, 2026
95af421
updated the usage document
malavikakrishnan123 Jan 12, 2026
664a3b8
Merge branch 'feature/DependencyMapping' of https://github.com/siemen…
malavikakrishnan123 Jan 12, 2026
91b6313
updated code changes
crvreddy Jan 19, 2026
7579190
Merge branch 'feature/DependencyMapping' of https://github.com/siemen…
crvreddy Jan 19, 2026
c6191ed
added test cases
crvreddy Jan 25, 2026
5ce644b
added test cases
crvreddy Jan 25, 2026
2e339fe
test cases updated
crvreddy Jan 25, 2026
f7d06a9
sonarissues fixed
crvreddy Jan 25, 2026
851e4f0
Resolved issues in test cases
crvreddy Jan 27, 2026
ac202f2
removed unused file
crvreddy Jan 27, 2026
30f7616
Merge branch 'feature/ChocoPackages_Discovery' into feature/Dependenc…
crvreddy Jan 27, 2026
b88b04e
build issue fixed
crvreddy Jan 27, 2026
ec729ba
fixed integration test cases
crvreddy Jan 27, 2026
ad0d3d8
updated inputfile
crvreddy Jan 27, 2026
0575e04
Merge branch 'feature/ChocoPackages_Discovery' into feature/Dependenc…
crvreddy Jan 30, 2026
ee1789e
fixed build issue
crvreddy Jan 30, 2026
c736768
failed test cases pushed
crvreddy Jan 30, 2026
d7f1b14
alpine testcase issue fixed
crvreddy Jan 30, 2026
30a2669
failed test case fix
crvreddy Jan 31, 2026
15d1842
test case fix
crvreddy Jan 31, 2026
bd5503e
linux machine issue
crvreddy Jan 31, 2026
c398d80
alpine issue fix
crvreddy Jan 31, 2026
2bb7eb9
removed failed testcase
crvreddy Jan 31, 2026
696104e
fixed test case
crvreddy Feb 2, 2026
e26d736
reverted changes
crvreddy Feb 2, 2026
84f7bb1
testing for alpine
crvreddy Feb 2, 2026
a2c6bbf
Alpine testcase removed
crvreddy Feb 3, 2026
648d0ac
Merge branch 'feature/ChocoPackages_Discovery' into feature/Dependenc…
crvreddy Feb 5, 2026
7ff2208
fixed build issue
crvreddy Feb 5, 2026
e718424
updated changes
crvreddy Feb 5, 2026
a40ad82
updated changes
crvreddy Feb 5, 2026
e4a7167
sonar issues fix
crvreddy Feb 5, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9,725 changes: 9,725 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Maven/cdx_dep.json
View file
Open in desktop

Large diffs are not rendered by default.

65,957 changes: 65,957 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Npm/cdx_dep.json
View file
Open in desktop

Large diffs are not rendered by default.

20,024 changes: 20,024 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Npm/package-lock.json
View file
Open in desktop

Large diffs are not rendered by default.

8,565 changes: 8,565 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Nuget/cdx_dep.json
View file
Open in desktop

Large diffs are not rendered by default.

10,458 changes: 10,458 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Nuget/project.assets.json
View file
Open in desktop

Large diffs are not rendered by default.

4,386 changes: 4,386 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Python/cdx_dep.json
View file
Open in desktop

Large diffs are not rendered by default.

3,185 changes: 3,185 additions & 0 deletions TestFiles/IntegrationTestFiles/DependencyTestFiles/Python/poetry.lock
View file
Open in desktop

Large diffs are not rendered by default.

260 changes: 41 additions & 219 deletions TestFiles/IntegrationTestFiles/SystemTest1stIterationData/Alpine/cyclonedx.cdx.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
{
"$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
"$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
"bomFormat": "CycloneDX",
"specVersion": "1.4",
"serialNumber": "urn:uuid:80ef8e07-0343-46e3-898e-1eb298abd180",
"specVersion": "1.6",
"serialNumber": "urn:uuid:1929f792-77a4-4e98-bcbe-32dd1af08a44",
"version": 1,
"metadata": {
"timestamp": "2023-09-27T09:39:34Z",
"timestamp": "2026-01-20T10:14:31Z",
"tools": [
{
"vendor": "anchore",
Expand All @@ -22,9 +22,9 @@
},
"components": [
{
"bom-ref": "pkg:apk/alpine/apk-tools@2.12.9-r3?arch=x86_64&distro=alpine-3.16.2&package-id=9dee250113821796",
"bom-ref": "pkg:apk/alpine/apk-tools@2.12.9-r3?arch=x86_64&distro=alpine-3.16.2&package-id=9dee250113821796",
"type": "library",
"publisher": "Natanael Copa <ncopa@alpinelinux.org>",
"publisher": "Natanael Copa &lt;ncopa@alpinelinux.org&gt;",
"name": "apk-tools",
"version": "2.12.9-r3",
"description": "Alpine Package Keeper - package manager for alpine",
Expand All @@ -36,7 +36,7 @@
}
],
"cpe": "cpe:2.3:a:apk-tools:apk-tools:2.12.9-r3:*:*:*:*:*:*:*",
"purl": "pkg:apk/alpine/apk-tools@2.12.9-r3?arch=x86_64&distro=alpine-3.16.2",
"purl": "pkg:apk/alpine/apk-tools@2.12.9-r3?arch=x86_64&amp;distro=alpine-3.16.2",
"externalReferences": [
{
"url": "https://gitlab.alpinelinux.org/alpine/apk-tools",
Expand All @@ -55,93 +55,13 @@
{
"name": "syft:package:type",
"value": "apk"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:apk-tools:apk_tools:2.12.9-r3:*:*:*:*:*:*:*"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:apk_tools:apk-tools:2.12.9-r3:*:*:*:*:*:*:*"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:apk_tools:apk_tools:2.12.9-r3:*:*:*:*:*:*:*"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:apk:apk-tools:2.12.9-r3:*:*:*:*:*:*:*"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:apk:apk_tools:2.12.9-r3:*:*:*:*:*:*:*"
},
{
"name": "syft:location:0:layerID",
"value": "sha256:8b748ae311ac56fd4526329a7f09d0ea19ce73a56174589a421f12b0c1d19b4f"
},
{
"name": "syft:location:0:path",
"value": "/lib/apk/db/installed"
},
{
"name": "syft:metadata:gitCommitOfApkPort",
"value": "34d90ac8388e88126893f5d27ea35d304e65e5ab"
},
{
"name": "syft:metadata:installedSize",
"value": "307200"
},
{
"name": "syft:metadata:originPackage",
"value": "apk-tools"
},
{
"name": "syft:metadata:provides:0",
"value": "so:libapk.so.3.12.0=3.12.0"
},
{
"name": "syft:metadata:provides:1",
"value": "cmd:apk=2.12.9-r3"
},
{
"name": "syft:metadata:pullChecksum",
"value": "Q1VFFFWMKjB9aRkehIATc5kwgAhlU="
},
{
"name": "syft:metadata:pullDependencies:0",
"value": "musl>=1.2"
},
{
"name": "syft:metadata:pullDependencies:1",
"value": "ca-certificates-bundle"
},
{
"name": "syft:metadata:pullDependencies:2",
"value": "so:libc.musl-x86_64.so.1"
},
{
"name": "syft:metadata:pullDependencies:3",
"value": "so:libcrypto.so.1.1"
},
{
"name": "syft:metadata:pullDependencies:4",
"value": "so:libssl.so.1.1"
},
{
"name": "syft:metadata:pullDependencies:5",
"value": "so:libz.so.1"
},
{
"name": "syft:metadata:size",
"value": "120745"
}
]
},
{
"bom-ref": "pkg:apk/alpine/busybox@1.35.0-r17?arch=x86_64&distro=alpine-3.16.2&package-id=d0f6245e9fe7ecbe",
"bom-ref": "pkg:apk/alpine/busybox@1.35.0-r17?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=d0f6245e9fe7ecbe",
"type": "library",
"publisher": "Sören Tempel <soeren+alpine@soeren-tempel.net>",
"publisher": "S\u00f6ren Tempel &lt;soeren+alpine@soeren-tempel.net&gt;",
"name": "busybox",
"version": "1.35.0-r17",
"description": "Size optimized toolbox of many common UNIX utilities",
Expand All @@ -153,7 +73,7 @@
}
],
"cpe": "cpe:2.3:a:busybox:busybox:1.35.0-r17:*:*:*:*:*:*:*",
"purl": "pkg:apk/alpine/busybox@1.35.0-r17?arch=x86_64&distro=alpine-3.16.2",
"purl": "pkg:apk/alpine/busybox@1.35.0-r17?arch=x86_64&amp;distro=alpine-3.16.2",
"externalReferences": [
{
"url": "https://busybox.net/",
Expand All @@ -172,57 +92,13 @@
{
"name": "syft:package:type",
"value": "apk"
},
{
"name": "syft:location:0:layerID",
"value": "sha256:8b748ae311ac56fd4526329a7f09d0ea19ce73a56174589a421f12b0c1d19b4f"
},
{
"name": "syft:location:0:path",
"value": "/lib/apk/db/installed"
},
{
"name": "syft:metadata:gitCommitOfApkPort",
"value": "2bf6ec48e526113f87216683cd341a78af5f0b3f"
},
{
"name": "syft:metadata:installedSize",
"value": "962560"
},
{
"name": "syft:metadata:originPackage",
"value": "busybox"
},
{
"name": "syft:metadata:provides:0",
"value": "/bin/sh"
},
{
"name": "syft:metadata:provides:1",
"value": "cmd:busybox=1.35.0-r17"
},
{
"name": "syft:metadata:provides:2",
"value": "cmd:sh=1.35.0-r17"
},
{
"name": "syft:metadata:pullChecksum",
"value": "Q1iZ+C2JJdBlm2KKtAOkSkM7zZegY="
},
{
"name": "syft:metadata:pullDependencies:0",
"value": "so:libc.musl-x86_64.so.1"
},
{
"name": "syft:metadata:size",
"value": "507831"
}
]
},
{
"bom-ref": "pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&distro=alpine-3.16.2&package-id=3a729016c3dde81e",
"bom-ref": "pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=3a729016c3dde81e",
"type": "library",
"publisher": "Timo Teräs <timo.teras@iki.fi>",
"publisher": "Timo Ter\u00e4s &lt;timo.teras@iki.fi&gt;",
"name": "musl",
"version": "1.2.3-r0",
"description": "the musl c library (libc) implementation",
Expand All @@ -234,7 +110,7 @@
}
],
"cpe": "cpe:2.3:a:musl-libc:musl:1.2.3-r0:*:*:*:*:*:*:*",
"purl": "pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&distro=alpine-3.16.2",
"purl": "pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2",
"externalReferences": [
{
"url": "https://musl.libc.org/",
Expand All @@ -253,53 +129,13 @@
{
"name": "syft:package:type",
"value": "apk"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:musl_libc:musl:1.2.3-r0:*:*:*:*:*:*:*"
},
{
"name": "syft:cpe23",
"value": "cpe:2.3:a:musl:musl:1.2.3-r0:*:*:*:*:*:*:*"
},
{
"name": "syft:location:0:layerID",
"value": "sha256:8b748ae311ac56fd4526329a7f09d0ea19ce73a56174589a421f12b0c1d19b4f"
},
{
"name": "syft:location:0:path",
"value": "/lib/apk/db/installed"
},
{
"name": "syft:metadata:gitCommitOfApkPort",
"value": "ee13d43a53938d8a04ba787b9423f3270a3c14a7"
},
{
"name": "syft:metadata:installedSize",
"value": "622592"
},
{
"name": "syft:metadata:originPackage",
"value": "musl"
},
{
"name": "syft:metadata:provides:0",
"value": "so:libc.musl-x86_64.so.1=1"
},
{
"name": "syft:metadata:pullChecksum",
"value": "Q1aCu0LmUDoAFSOX49uHvkYC1WasQ="
},
{
"name": "syft:metadata:size",
"value": "383304"
}
]
},
{
"bom-ref": "pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&distro=alpine-3.16.2&package-id=5dc27240599b9efa",
"bom-ref": "pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=5dc27240599b9efa",
"type": "library",
"publisher": "Natanael Copa <ncopa@alpinelinux.org>",
"publisher": "Natanael Copa &lt;ncopa@alpinelinux.org&gt;",
"name": "zlib",
"version": "1.2.12-r3",
"description": "A compression/decompression Library",
Expand All @@ -311,7 +147,7 @@
}
],
"cpe": "cpe:2.3:a:zlib:zlib:1.2.12-r3:*:*:*:*:*:*:*",
"purl": "pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&distro=alpine-3.16.2",
"purl": "pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&amp;distro=alpine-3.16.2",
"externalReferences": [
{
"url": "https://zlib.net/",
Expand All @@ -330,46 +166,32 @@
{
"name": "syft:package:type",
"value": "apk"
},
{
"name": "syft:location:0:layerID",
"value": "sha256:8b748ae311ac56fd4526329a7f09d0ea19ce73a56174589a421f12b0c1d19b4f"
},
{
"name": "syft:location:0:path",
"value": "/lib/apk/db/installed"
},
{
"name": "syft:metadata:gitCommitOfApkPort",
"value": "57ce38bde7ce42964b664c137935cf2de803ac44"
},
{
"name": "syft:metadata:installedSize",
"value": "110592"
},
{
"name": "syft:metadata:originPackage",
"value": "zlib"
},
{
"name": "syft:metadata:provides:0",
"value": "so:libz.so.1=1.2.12"
},
{
"name": "syft:metadata:pullChecksum",
"value": "Q1Ekuqm/0CPywDCKEbEwhsPCw+z9E="
},
{
"name": "syft:metadata:pullDependencies:0",
"value": "so:libc.musl-x86_64.so.1"
},
{
"name": "syft:metadata:size",
"value": "53346"
}
]
}
],
"dependencies": [
{
"ref": "pkg:apk/alpine/apk-tools@2.12.9-r3?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=9dee250113821796",
"dependsOn": [
"pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=3a729016c3dde81e",
"pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=5dc27240599b9efa"
]
},
{
"ref": "pkg:apk/alpine/busybox@1.35.0-r17?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=d0f6245e9fe7ecbe",
"dependsOn": [
"pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=3a729016c3dde81e"
]
},
{
"ref": "pkg:apk/alpine/zlib@1.2.12-r3?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=5dc27240599b9efa",
"dependsOn": [
"pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=3a729016c3dde81e"
]
},
{
"ref": "pkg:apk/alpine/musl@1.2.3-r0?arch=x86_64&amp;distro=alpine-3.16.2&amp;package-id=3a729016c3dde81e"
}
]

}

}
Loading