* configuration of nerdfont in devcontainer

Co-authored-by: DJ Schleen <[email protected]>

Signed-off-by: DJ Schleen <[email protected]>

Signed-off-by: DJ Schleen <[email protected]>

Signed-off-by: DJ Schleen <[email protected]>

Signed-off-by: DJ Schleen <[email protected]>

Signed-off-by: DJ Schleen <[email protected]>

* Initial commit of AI rendering scaffold
* Fixes test cases and ignore loading functionality
...

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](ht...

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](ht...

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release n...

Bumps [github.com/jedib0t/go-pretty/v6](https://github.com/jedib0t/go-pretty) from 6.4.9 to 6.5....

Signed-off-by: DJ Schleen <[email protected]>

Signed-off-by: Pablo Hinojosa <[email protected]>

* Refactored logic out of scan.go into a scanner
* Reduced cyclomatic complexity
* More test c...

* Fixes an issue where return code was 10 if no severity flag was set
* Adds exit code function...

Version bump

* Updates dependencies
* Flags added, return codes on os.Exit
* Filtering done implemented
* ...

* Fitering of bad purls
* Adds issue output for invalid Purls detected in SBOMS
* Simplifies j...

This adds newly supported purl types apk, deb, docker and rpm to the documentation for the Snyk ...

* Sets CGO_ENABLED=0
* Corrects xml output label to json
* More demo sboms

---------

Co-...

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4.
- [Release notes](ht...

Goreleaser not working, removed deprecated --rm-dist in favor of --clean

Updates goreleaser to 4.2.0

* Doesn't process components without purls (or empty purl nodes)
* Syft action in release.yml f...

chore: update snyk readme to include mor ecosystems support

Adds sponsor link

* Fixes issue where a license expression wasn't being utilized

* Improves test coverage

* EPSS enrichment feeds off Vulnerability.Cve
* Adds Cve field to osv vulnerability output
* F...

build(deps): bump goreleaser/goreleaser-action in /.github/workflows

Bumps [goreleaser/gorele...

Bumps [github.com/jedib0t/go-pretty/v6](https://github.com/jedib0t/go-pretty) from 6.4.2 to 6.4....

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.0 to 1.8.1.
-...

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3.
- [Release notes](ht...

* Adds Snyk provider documentation

* Updated documentation for EPSS
* STDOUT now renders EPSS percentage
* Centralization of enri...

The links to the download locations are leading to hookz project releases and not Bomber.

* Adds section in JSON for scanned files with sha256 hash
* Adds file section with names and ha...

Pass package URL when querying OSV

Co-authored-by: DJ Schleen <[email protected]>

Deletes extra characters from HTML template

Complexity fix for STDIN changes

Explicit rather than implicit. Use "-" as an argument to scan to trigger
reading from stdin.

* Renders and sanitizes Markdown vuln descriptions to HTML

* Adds error check for res close i...

Co-authored-by: Maximilian Combüchen <[email protected]>
Co-authored-by: Gareth Rushgrove <...

Test file clutter

* License support for STDOUT

* Adds Licenses to html renderer, fixes rendering when no vulns ...

* Adds xml format support for CycloneDX
* Version bump

* Initial html output

* Fixes strange severity issues, colors severity output in html, update...

* Refactored rendering logic out of cmd

* Fixes issue where SPDX wasn't being recognized

*...

* Removed removeDuplicates in favor of DKFM common

* Provider factory
* http request cleanup
* Removes README.md reference to bomber being a modu...

Fixes strange merge problems

* Initial output of JSON
* Fixes OSV output not showing
* Omits empty fields in json output
*...

* JSON output using --output
* Fixes OSV output not showing
* Omits empty fields in json outpu...

Fixes severity to use Moderate instead of Medium

Adds ecosystem pre-scan info

Fixes updated README.md

Fixes release typo from hookz to bomber

* Extracting common interface, stub out OSV provider
* Initial Snyk providers
* Implemented OS...

* Adds vulnerability struct for OSSIndex vuln details
* Adds debug and enhanced summary output
...

Warns on missing credentials, fixes output when no valid SBOMs are found

Fixes bomber's sbom badge links

Update README.md

Fixes codecov badge

* Adding cli
* Tabular output
* Working functionality for scanning against OSSIndex
* Impleme...

* Initial repository structure and structs
* Adds github release workflow
* Stubs out tests
*...