Changes in Update Released on 24-March-2023

This Update includes the changes described in the following sections.

Issues/Bugs Addressed

The following issues were addressed in the Update:

Issue ID

Issue Summary

SCA-44498, SCA-44503, SCA-45457

Integration of PURL to Alpine, Rubygems, Go in the data library

SCA-46214

Generic Mapper is an addition to our vulnerability mappers . This is an enhancement to the existing NPMJS mapper to include Maven and Packagist and make it a generic one.

Enhanced License Detection Capability for Components

License detection capability and license evidence mechanism for the following components was updated/added:

3dfx Glide License
Academic Free License v1.1
Academic Free License v1.2
Academic Free License v2.0
Academic Free License v2.1
Academic Free License v3.0
Adaptive Public License 1.0
Adobe Systems Incorporated Source Code License Agreement
Giftware License
Adobe Glyph List License
Apple Public Source License 1.0
Apple Public Source License 1.1
Apple Public Source License 1.2
Apple Public Source License 2.0
Artistic License 1.0
Artistic License 2.0
Beerware License
eCos license version 2.0
Educational Community License v1.0
Educational Community License v2.0
Educational Community License v2.0
Attribution Assurance License
Apache License 1.0
Apache License 1.1
Apache License 2.0
Eiffel Forum License v1.0
Eiffel Forum License v2.0
Amazon Digital Services License
ANTLR Software Rights Notice
ANTLR Software Rights Notice with license fallback
Adobe Postscript AFM License

Collector Status

The following table lists Collector Status information.

Name

Date of Last Successful Run

npm

1/31/2023

crates

8/25/2022

cpan

3/23/2023

clojars

2/9/2023

rubygems

3/23/2023

maven-google

2/10/2023

cran

3/18/2023

hackage

2/12/2023

packagist

2/5/2023

go

3/24/2023

pypi

2/13/2023

nuget gallery

3/16/2023

maven2-ibiblio

1/18/2023

github

2/14/2023

fedora-koji

2/13/2023

alpine

3/22/2023

gitlab

11/19/2022