-
Notifications
You must be signed in to change notification settings - Fork 567
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
syft packages
panics on OCI archive creation
#1318
Labels
bug
Something isn't working
Comments
Hi @sophiewigmore -- I believe this was just fixed (with PR #1313) and a new version of Syft released (v0.60.3) with the fix in it; could you validate this fixes your issue? |
Ah! Let me try. |
Yes, that worked. Totally missed that fix. Thank you :) |
Thanks for following up, @sophiewigmore! |
This was referenced Nov 19, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Please provide a set of steps on how to reproduce the issue
What happened:
Running
syft packages <oci archive> --output cyclonedx-json --file sbom.json
panics during the cataloguing phase:This only occurs for one of our OCI archives, which has a lot of packages (800+).
You can test this out by downloading an example OCI archive similar to the one I was testing with from our release: https://github.com/paketo-buildpacks/jammy-full-stack/releases/download/v0.0.31/jammy-full-stack-0.0.31-build.oci and then running the same
syft package
command on it with Syft 0.60.1What you expected to happen:
Expected SBOM generation to succeed as usual
Anything else we need to know?:
This issue only starting happening on 0.60.1 (and 0.60.2)
Environment:
syft version
: 0.60.1cat /etc/os-release
or similar): mac OS and Ubuntu 22.04.1The text was updated successfully, but these errors were encountered: