We have introduced several improvements to container SBOMs. cdxgen now collects executable binaries and shared libraries in container images as file components, and it tracks specific environment variables that may affect the security properties of the hosted applications.
What's Changed
Other Changes
- Disable HTTP cache option with env var CDXGEN_NO_CACHE by @emcfins in #1681
- fix: correct types path by @marco-ippolito in #1683
- container sbom improvements by @prabhu in #1685
- Collect shared libraries from container images by @prabhu in #1687
- Support for parsing ld.so.conf and ld.so.conf.d directories by @prabhu in #1688
Full Changelog: v11.2.1...v11.2.2