Generated SBOM contains duplicate entries in dependsOn which shouldn't be the case. #7530
djeanprost
started this conversation in
Bugs
Replies: 2 comments 10 replies
-
Hello @djeanprost Can you share image with this issue? Regards, Dmitriy |
Beta Was this translation helpful? Give feedback.
7 replies
-
We have a similar/same issue with maven dependencies. Here the sample with the duplicate entries:
|
Beta Was this translation helpful? Give feedback.
3 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Description
Trivy 0.55.1 generated the bom I provide as an attachement.
dependsOn
entries for "ref": "pkg:bitnami/python@3.12.5-1?arch=amd64&distro=debian-12
" contains duplicated valuesDesired Behavior
No duplicates entries in dependsOn
Actual Behavior
Duplicated entries in 6th dependsOn
sbom (2).json
Reproduction Steps
Target
Container Image
Scanner
Vulnerability
Output Format
CycloneDX
Mode
Standalone
Debug Output
Operating System
Docker image
Version
Checklist
trivy clean --all
Beta Was this translation helpful? Give feedback.
All reactions