Filter moving target python packages in SBOMs (!21) · Merge requests · GitLab.org / security-products / analyzers / integration-test

Adam Cohen requested to merge filter-python-packages-in-sboms into main Mar 03, 2022

What does this MR do?

This MR filters the pip, setuptools and wheel packages from the CycloneDX SBOMs in the recorded CycloneDX files shared example, similar to how the scanning reports are filtered in the gemnasium-maven image_spec.rb. This is necessary because these packages are moving targets, and cause test failures unless filtered out.

For background, please see Ignore setuptools and wheel in gemnasium-python image integration tests.

What are the relevant issue numbers?

gitlab-org/gitlab#350509 (closed)

Edited Mar 03, 2022 by Adam Cohen

Filter moving target python packages in SBOMs

What does this MR do?

What are the relevant issue numbers?

Merge request reports