fix: add optional flag that allows skipping npm audit checks with OWA…

…SP dependency-check scanner (#214)

* fix: adding possible flag to disable npm audit reports

* chore: added space

* chore: docs

* fix: set default to false

* chore: update libraries/owasp_dep_check/README.md on typo

Co-authored-by: ltdonner-bah <[email protected]>

---------

Co-authored-by: ltdonner-bah <[email protected]>

Removed public visibility from component (#213)

Add separate git repo option to NPM library (#211)

* adding support for running NPM step against a different git repo

* updating existing unit tests to work with library step changes

* adding new unit tests for withGit functionality

* add separate scriptArgs config option

* add @NonCPS annotation

* don't unstash if using git config

* updating npm library docs to include new scriptArgs parameter

* updating npm library unit tests

* add note on skipping unstash with git logic

Co-authored-by: Connor <[email protected]>

---------

Co-authored-by: Connor Younglund <[email protected]>
Co-authored-by: Connor <[email protected]>

changing default image tag from 'latest' (#199)

Grype SBOM scan capability (#193)

* push syft multi format

* test for loop

* test multi format syft

* check for report output

* fix increment operator

* fix sbom_format data type

* remove sbom_format default

* test sbom_format.size()

* ts for loop

* testing loop

* fix equal operator ==

* testing loop

* check args

* ts list

* ts ARGS

* remove size()

* loop troubleshoot

* Test using ArrayList

* comment out loops

* print loop index

* test with string concatenation

* rm println

* test toString

* test arraylist

* test

* test

* test ARG building

* testing

* test w/o tostring

* test

* move sbom_format to LinkedHashMap for extensions

* check sbom_format

* test

* fix lib conf

* revert to ArrayList for sbom_format var

* fixed lib config

* rm ! from index identifier

* fix format

* test

* ts stdout

* comment out erring cmd

* missed end "

* rm extra text

* test --output

* check ARGS

* test

* add space for multi outputs

* add formatter var

* ts formatter

* add space

* cmd formatting

* archival ts

* test archival

* trim trailing comma

* escape the $

* test if statements

* fixes

* add exception handling

* test exception

* skip archival if failed

* echo exception

* test

* test err

* test echo err

* test error

* exception test

* test throw err

* test error

* test

* test error

* add shouldFail bool

* Syft Unit test changes

* push syft Unit tests

* update syft docs

* make PR suggested changes

* troubleshoot json report archival

* make artifacts empty string.

* test regex

* escape $ sign

* test regex

* test regex in line

* regex in-line test

* test syft var from grype

* fix scan sbom var

* fix sbom scan var

* test

* test sbom_scan var

* wont work as expected test

* test regex

* fixed sbom var

* test filetype

* test file match

* rm String baseDir

* test findFiles

* fix sbom var

* test filePath

* testing findFiles

* move findFiles to after unstash

* exlude spdx json

* test excludes

* testing excludes in pipeline

* find json

* testing findFiles

* find files exclude

* test size

* test with img props

* replace raw_results_file var with asterisk

* test replaceALll

* test

* test img output

* test reportBase

* fixed reportBase var

* test

* move syftSbom def

* Add message for SBOM scanning

* test

* grype unit tests for SBOM scanning

* push grype unit test troubleshooting

* testing each method on findFiles

* test findFiles closure

* maps maps maps

* test println

* testing findFiles

* testing

* test findfiles

* ts

* testing

* Push unit test troubleshooting

* ts unit test

* working unit tests

* test results script

* test line 39, remove Unknown vuln

* change >> to > to stop appending

* put quotes back around 0 on ln39

* test

* updated unit tests

* format and trailing whitespace

* fence ln 43

* remove ``` from ln 43

* fix readme

* readme finessing

Implement new Yarn library (#187)

* implement new Yarn library

* remove `yarn --version` call

* fix mistake in test spec

* fix failing tests

Bump version to 4.3 (#185)

* allow none severity

* add none to lib config

* update readme

* bump version

Syft command fix (#174)

Grype library: add report_format/fail_on_severity defaults and fix bu…

…g where file extensions don't exist on generated reports (#170)

* add config options to k8s library (#115)

* [AIOPS-32] Adding in support, tests, and documentation for Maven (#118)

* added defaults/added file extension naming

* rm extra files/folders

* rm folders

* fix gitignore

* fix gitignore whitespace

* update unit tests

Co-authored-by: steven-terrana <[email protected]>
Co-authored-by: kdendtler <[email protected]>

Add sections for migrating from SDP 3.2 to 4.0 to NPM and Maven libra…

…ry docs (#168)

* add section for migrating from SDP 3.2 to 4.0 to NPM library docs

* adding 4.0 migration info to Maven docs

Co-authored-by: Peter Sigur <[email protected]>