Trivy scanner does not detect (several) language / runtime vulnerabilities in container images

[wojciechka]

IDs

GHSA-wqvq-5m8c-6g24 GHSA-xvch-5gv4-984h CVE-2025-47907 GHSA-4v7x-pqxf-cx7m CVE-2024-24790 CVE-2023-45285

Description

While looking into detection of vulnerabilities for Wolfi / Chainguard based images, we've created a set of sample images and run them against vulnerability scanners.

We've noticed some languages / runtimes (Golang, Python, NodeJS/npm) are not detected by Trivy and would like to better understand if there is anything that could be done to improve detection, either in Trivy or in metadata for Wolfi / Chainguard. We'd also like to know whether this is a false detection or if this is not supported.

Images that include Python and NodeJS/Npm modules that are vulnerable:

ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-python-package-wolfi
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-python-package-chainguard
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-nodejs-package-wolfi
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-nodejs-package-chainguard

For Python ones, the vulnerability is GHSA-wqvq-5m8c-6g24 and it is an older version of urllib3 package shipped in the image.

For NodeJS, the package is minimist and is vulnerable to GHSA-xvch-5gv4-984h.

Test images including Golang binaries that have vulnerabilities due to Golang version and Go modules used:

ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-golang-wolfi
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-golang-chainguard
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-wolfi
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-chainguard
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-layereded
ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-layereded-chainguard

The first 2 images contain vulnerabilities due to older version of Golang (CVE-2025-47907) and an older version of golang.org/x/net Go module (GHSA-4v7x-pqxf-cx7m).

The next 4 images include vulnerability for Golang (CVE-2024-24790) and an APK (CVE-2023-45285) - reported against aws-ebs-csi-driver-1.19 APK package version 1.19.0-r9.

Reproduction Steps

Scan image with trivy - such as:

To reproduce:


$ trivy image --quiet --format json --image-src remote ghcr.io/chainguard-images/scanner-test:...

### Target

Container Image

### Scanner

Vulnerability

### Target OS

Wolfi OS / Chainguard OS

### Debug Output

```bash
Output for `ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-wolfi` image.


{
  "SchemaVersion": 2,
  "CreatedAt": "2025-11-06T12:29:30.98891339Z",
  "ArtifactName": "ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-wolfi",
  "ArtifactType": "container_image",
  "Metadata": {
    "Size": 89735168,
    "OS": {
      "Family": "wolfi",
      "Name": "20230201"
    },
    "ImageID": "sha256:bbc2b23336f776d01f62de07f727f04f81052d38eddf31aac7be14a9496b2006",
    "DiffIDs": [
      "sha256:4e538d9f09374e648befc803bbd840a4880fac85bfcab88d05e26e29f6a64ae2",
      "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf",
      "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7",
      "sha256:43fc8f5bf3f74239495fb47ca8ead3ee4881a3cbdb130f89f4935d94c8ba4a64",
      "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555",
      "sha256:6e200d398666548cd770b03abd1bba53cb578922baa3eba0a251a637d5e2957a",
      "sha256:e2b9df6b759150c59c1544c9e026387aac725fc1b61947fe63445cee5bee2cab",
      "sha256:c4967a5825313926090816d963f572f7e4a0a2e42670b7714576a558b67a109d",
      "sha256:35a2b0d5f787b338aadf23c12cf378cd98d1f381d01e6b0390b8d7560fb3683e",
      "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba",
      "sha256:36b525081ba362fa2e8c11f35080d8fc047422e6fa6073ebf45a57af7f1be2a9"
    ],
    "RepoTags": [
      "ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-wolfi"
    ],
    "RepoDigests": [
      "ghcr.io/chainguard-images/scanner-test@sha256:d8a2106061a70e87f92c3c00e961c7de6acf4b3e1fe11eb0d5da869ed759a12e"
    ],
    "ImageConfig": {
      "architecture": "amd64",
      "author": "github.com/chainguard-dev/apko",
      "created": "2025-11-05T19:46:40Z",
      "history": [
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        },
        {
          "author": "apko",
          "created": "2025-11-05T19:46:40Z",
          "created_by": "apko"
        }
      ],
      "os": "linux",
      "rootfs": {
        "type": "layers",
        "diff_ids": [
          "sha256:4e538d9f09374e648befc803bbd840a4880fac85bfcab88d05e26e29f6a64ae2",
          "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf",
          "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7",
          "sha256:43fc8f5bf3f74239495fb47ca8ead3ee4881a3cbdb130f89f4935d94c8ba4a64",
          "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555",
          "sha256:6e200d398666548cd770b03abd1bba53cb578922baa3eba0a251a637d5e2957a",
          "sha256:e2b9df6b759150c59c1544c9e026387aac725fc1b61947fe63445cee5bee2cab",
          "sha256:c4967a5825313926090816d963f572f7e4a0a2e42670b7714576a558b67a109d",
          "sha256:35a2b0d5f787b338aadf23c12cf378cd98d1f381d01e6b0390b8d7560fb3683e",
          "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba",
          "sha256:36b525081ba362fa2e8c11f35080d8fc047422e6fa6073ebf45a57af7f1be2a9"
        ]
      },
      "config": {
        "Entrypoint": [
          "echo",
          "Never gonna give you up\nNever gonna let you down\nNever gonna run around and desert you\nNever gonna make you cry\nNever gonna say goodbye\nNever gonna tell a lie and hurt youn"
        ],
        "Env": [
          "PATH=/usr/local/sbin:/usr/local/bin:/usr/bin:/usr/sbin:/sbin:/bin",
          "SSL_CERT_FILE=/etc/ssl/certs/ca-certificates.crt"
        ],
        "Labels": {
          "dev.chainguard.image.title": "scanner-test",
          "dev.chainguard.package.main": "",
          "org.opencontainers.image.authors": "Chainguard Team https://www.chainguard.dev/",
          "org.opencontainers.image.created": "2025-11-05T19:46:40Z",
          "org.opencontainers.image.source": "https://github.com/chainguard-images/images-private/tree/main/images/scanner-test",
          "org.opencontainers.image.title": "scanner-test",
          "org.opencontainers.image.url": "https://images.chainguard.dev/directory/image/scanner-test/overview",
          "org.opencontainers.image.vendor": "Chainguard"
        },
        "User": "65532"
      }
    },
    "Layers": [
      {
        "Size": 60440064,
        "Digest": "sha256:b3bb1f45915b4080ae2dd220957e7d56935499e56def27cf5a631ad6fdec5d7d",
        "DiffID": "sha256:4e538d9f09374e648befc803bbd840a4880fac85bfcab88d05e26e29f6a64ae2"
      },
      {
        "Size": 7222784,
        "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
        "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
      },
      {
        "Size": 6827520,
        "Digest": "sha256:25604b5e9a3fae094b52f59c3989864df90a1f214ec363fa7076616d3a60df0a",
        "DiffID": "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7"
      },
      {
        "Size": 3484160,
        "Digest": "sha256:a611e81ea967326c43734059ac44e80caa9c0e192c0e1df5f3db53be726881ca",
        "DiffID": "sha256:43fc8f5bf3f74239495fb47ca8ead3ee4881a3cbdb130f89f4935d94c8ba4a64"
      },
      {
        "Size": 2124800,
        "Digest": "sha256:cd33f282acb7754ce20219531dfd38526ac94af06d2700f1521024f868db7a6c",
        "DiffID": "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555"
      },
      {
        "Size": 1893888,
        "Digest": "sha256:b62f1945091b4e4da385827a52e0c7384c3ccbd4f440a556d68554bfebd7b247",
        "DiffID": "sha256:6e200d398666548cd770b03abd1bba53cb578922baa3eba0a251a637d5e2957a"
      },
      {
        "Size": 1889280,
        "Digest": "sha256:50a15d5188ff7495f735d5df2eccd774644994fe0dd389305505694b167fac0b",
        "DiffID": "sha256:e2b9df6b759150c59c1544c9e026387aac725fc1b61947fe63445cee5bee2cab"
      },
      {
        "Size": 1556480,
        "Digest": "sha256:b3dabcd8291157a8899effc083ad22e47378be5144fa7d9ee88c45380c7f9b4e",
        "DiffID": "sha256:c4967a5825313926090816d963f572f7e4a0a2e42670b7714576a558b67a109d"
      },
      {
        "Size": 1475072,
        "Digest": "sha256:50ec879e7ebf56e353f19da3f305485de137a3de54915feddf6cc5b5f6ca970d",
        "DiffID": "sha256:35a2b0d5f787b338aadf23c12cf378cd98d1f381d01e6b0390b8d7560fb3683e"
      },
      {
        "Size": 2699264,
        "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
        "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
      },
      {
        "Size": 121856,
        "Digest": "sha256:405fa6a380af25a79e773cb27a6ec4ee5d13aa8c8c29a911100991d7ff818b15",
        "DiffID": "sha256:36b525081ba362fa2e8c11f35080d8fc047422e6fa6073ebf45a57af7f1be2a9"
      }
    ]
  },
  "Results": [
    {
      "Target": "ghcr.io/chainguard-images/scanner-test:unfixed-vulnerabilities-chainguard-wolfi (wolfi 20230201)",
      "Class": "os-pkgs",
      "Type": "wolfi",
      "Packages": [
        {
          "ID": "[email protected]",
          "Name": "aws-ebs-csi-driver-1.19",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "25b285069dead790"
          },
          "Version": "1.19.0-r9",
          "Arch": "x86_64",
          "SrcName": "aws-ebs-csi-driver-1.19",
          "SrcVersion": "1.19.0-r9",
          "Licenses": [
            "Apache-2.0"
          ],
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:b3bb1f45915b4080ae2dd220957e7d56935499e56def27cf5a631ad6fdec5d7d",
            "DiffID": "sha256:4e538d9f09374e648befc803bbd840a4880fac85bfcab88d05e26e29f6a64ae2"
          },
          "Digest": "sha1:d7a92f6668bd23a24e5deb937a7b723be79389d9",
          "InstalledFiles": [
            "usr/bin/aws-ebs-csi-driver",
            "var/lib/db/sbom/aws-ebs-csi-driver-1.19-1.19.0-r9.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "aws-ebs-csi-driver-1.19",
          "Identifier": {
            "PURL": "pkg:apk/chainguard/[email protected]?arch=x86_64",
            "UID": "6990051001221c2d"
          },
          "Version": "1.19.0-r9",
          "Arch": "x86_64",
          "SrcName": "aws-ebs-csi-driver-1.19",
          "SrcVersion": "1.19.0-r9",
          "Licenses": [
            "Apache-2.0"
          ],
          "Layer": {
            "Digest": "sha256:b3bb1f45915b4080ae2dd220957e7d56935499e56def27cf5a631ad6fdec5d7d",
            "DiffID": "sha256:4e538d9f09374e648befc803bbd840a4880fac85bfcab88d05e26e29f6a64ae2"
          },
          "FilePath": "/usr/bin/aws-ebs-csi-driver",
          "InstalledFiles": [
            "usr/bin/aws-ebs-csi-driver",
            "var/lib/db/sbom/aws-ebs-csi-driver-1.19-1.19.0-r9.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "bash",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "59432c6a235cf60a"
          },
          "Version": "5.3-r3",
          "Arch": "x86_64",
          "SrcName": "bash",
          "SrcVersion": "5.3-r3",
          "Licenses": [
            "GPL-3.0-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]_p20251025-r1",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:b3dabcd8291157a8899effc083ad22e47378be5144fa7d9ee88c45380c7f9b4e",
            "DiffID": "sha256:c4967a5825313926090816d963f572f7e4a0a2e42670b7714576a558b67a109d"
          },
          "Digest": "sha1:88eaaa18579ef0a9c03008a2808b28e8437ebbba",
          "InstalledFiles": [
            "usr/bin/bash",
            "var/lib/db/sbom/bash-5.3-r3.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "blkid",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "51b518421dd290d"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:d47a9f7d48e86f72f2eb120a068a66eeb610a25d",
          "InstalledFiles": [
            "usr/bin/blkid",
            "var/lib/db/sbom/blkid-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "blockdev",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "38e1cdce33a27e1"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:60f6d6c087ed92720e3319be5f43b94c43b73564",
          "InstalledFiles": [
            "usr/bin/blockdev",
            "var/lib/db/sbom/blockdev-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "ca-certificates-bundle@20250911-r0",
          "Name": "ca-certificates-bundle",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/ca-certificates-bundle@20250911-r0?arch=x86_64\u0026distro=20230201",
            "UID": "938ebd3120db025a"
          },
          "Version": "20250911-r0",
          "Arch": "x86_64",
          "SrcName": "ca-certificates",
          "SrcVersion": "20250911-r0",
          "Licenses": [
            "MPL-2.0",
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:8e917fb16b64828bd4a222463d604f88cf299336",
          "InstalledFiles": [
            "etc/pki/tls/certs/ca-bundle.crt",
            "etc/ssl/cert.pem",
            "etc/ssl/certs/ca-bundle.crt",
            "etc/ssl/certs/ca-certificates.crt",
            "var/lib/db/sbom/ca-certificates-bundle-20250911-r0.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "e2fsprogs",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "2b6d8f8550c8f591"
          },
          "Version": "1.47.3-r1",
          "Arch": "x86_64",
          "SrcName": "e2fsprogs",
          "SrcVersion": "1.47.3-r1",
          "Licenses": [
            "GPL-2.0-or-later",
            "LGPL-2.0-or-later",
            "BSD-3-Clause",
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:cd33f282acb7754ce20219531dfd38526ac94af06d2700f1521024f868db7a6c",
            "DiffID": "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555"
          },
          "Digest": "sha1:85d4cfe4dd5cd12a2265c67a36786c37b1dfdbf5",
          "InstalledFiles": [
            "etc/e2scrub.conf",
            "etc/mke2fs.conf",
            "usr/bin/e2fsck",
            "usr/bin/fsck.ext2",
            "usr/bin/fsck.ext3",
            "usr/bin/fsck.ext4",
            "usr/bin/mke2fs",
            "usr/bin/mkfs.ext2",
            "usr/bin/mkfs.ext3",
            "usr/bin/mkfs.ext4",
            "var/lib/db/sbom/e2fsprogs-1.47.3-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "e2fsprogs-extra",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "1ce2956d2df29b03"
          },
          "Version": "1.47.3-r1",
          "Arch": "x86_64",
          "SrcName": "e2fsprogs",
          "SrcVersion": "1.47.3-r1",
          "Licenses": [
            "GPL-2.0-or-later",
            "LGPL-2.0-or-later",
            "BSD-3-Clause",
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:cd33f282acb7754ce20219531dfd38526ac94af06d2700f1521024f868db7a6c",
            "DiffID": "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555"
          },
          "Digest": "sha1:42824400ecd5547d89a78f92addd20fcfd58a07a",
          "InstalledFiles": [
            "usr/bin/badblocks",
            "usr/bin/chattr",
            "usr/bin/debugfs",
            "usr/bin/dumpe2fs",
            "usr/bin/e2freefrag",
            "usr/bin/e2image",
            "usr/bin/e2label",
            "usr/bin/e2mmpstatus",
            "usr/bin/e2scrub",
            "usr/bin/e2scrub_all",
            "usr/bin/e2undo",
            "usr/bin/e4crypt",
            "usr/bin/e4defrag",
            "usr/bin/filefrag",
            "usr/bin/logsave",
            "usr/bin/lsattr",
            "usr/bin/mklost+found",
            "usr/bin/resize2fs",
            "usr/bin/tune2fs",
            "usr/lib/e2initrd_helper",
            "var/lib/db/sbom/e2fsprogs-extra-1.47.3-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "e2fsprogs-libs",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "ba8d2fa6d7164b55"
          },
          "Version": "1.47.3-r1",
          "Arch": "x86_64",
          "SrcName": "e2fsprogs",
          "SrcVersion": "1.47.3-r1",
          "Licenses": [
            "GPL-2.0-or-later",
            "LGPL-2.0-or-later",
            "BSD-3-Clause",
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:cd33f282acb7754ce20219531dfd38526ac94af06d2700f1521024f868db7a6c",
            "DiffID": "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555"
          },
          "Digest": "sha1:9fcfb433759ee2260def3fcce9361b935c657aad",
          "InstalledFiles": [
            "usr/lib/libe2p.so.2",
            "usr/lib/libe2p.so.2.3",
            "usr/lib/libext2fs.so.2",
            "usr/lib/libext2fs.so.2.4",
            "usr/lib/libss.so.2",
            "usr/lib/libss.so.2.0",
            "var/lib/db/sbom/e2fsprogs-libs-1.47.3-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "glibc",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "7197065d9ef608a"
          },
          "Version": "2.42-r4",
          "Arch": "x86_64",
          "SrcName": "glibc",
          "SrcVersion": "2.42-r4",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:25604b5e9a3fae094b52f59c3989864df90a1f214ec363fa7076616d3a60df0a",
            "DiffID": "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7"
          },
          "Digest": "sha1:bce7d4e5715da7bcc6f96df3a44bf8c09720e243",
          "InstalledFiles": [
            "etc/rpc",
            "etc/apk/commit_hooks.d/ldconfig-commit.sh",
            "usr/bin/ld.so",
            "usr/bin/ldconfig",
            "usr/lib/libBrokenLocale.so.1",
            "usr/lib/libanl.so.1",
            "usr/lib/libc.so.6",
            "usr/lib/libc_malloc_debug.so.0",
            "usr/lib/libdl.so.2",
            "usr/lib/libm.so.6",
            "usr/lib/libmemusage.so",
            "usr/lib/libmvec.so.1",
            "usr/lib/libnsl.so.1",
            "usr/lib/libnss_compat.so.2",
            "usr/lib/libnss_dns.so.2",
            "usr/lib/libnss_files.so.2",
            "usr/lib/libpthread.so.0",
            "usr/lib/libresolv.so.2",
            "usr/lib/librt.so.1",
            "usr/lib/libthread_db.so.1",
            "usr/lib/libutil.so.1",
            "var/lib/db/sbom/glibc-2.42-r4.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "glibc-locale-posix",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "1dd8163e60bc7d60"
          },
          "Version": "2.42-r4",
          "Arch": "x86_64",
          "SrcName": "glibc",
          "SrcVersion": "2.42-r4",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:25604b5e9a3fae094b52f59c3989864df90a1f214ec363fa7076616d3a60df0a",
            "DiffID": "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7"
          },
          "Digest": "sha1:693c31d5fdd379f483d0de118f0b0957a67c21f8",
          "InstalledFiles": [
            "usr/lib/locale/C.utf8/LC_ADDRESS",
            "usr/lib/locale/C.utf8/LC_COLLATE",
            "usr/lib/locale/C.utf8/LC_CTYPE",
            "usr/lib/locale/C.utf8/LC_IDENTIFICATION",
            "usr/lib/locale/C.utf8/LC_MEASUREMENT",
            "usr/lib/locale/C.utf8/LC_MONETARY",
            "usr/lib/locale/C.utf8/LC_NAME",
            "usr/lib/locale/C.utf8/LC_NUMERIC",
            "usr/lib/locale/C.utf8/LC_PAPER",
            "usr/lib/locale/C.utf8/LC_TELEPHONE",
            "usr/lib/locale/C.utf8/LC_TIME",
            "usr/lib/locale/C.utf8/LC_MESSAGES/SYS_LC_MESSAGES",
            "var/lib/db/sbom/glibc-locale-posix-2.42-r4.spdx.json"
          ]
        },
        {
          "ID": "inih@62-r1",
          "Name": "inih",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/inih@62-r1?arch=x86_64\u0026distro=20230201",
            "UID": "d5552c834a1d4129"
          },
          "Version": "62-r1",
          "Arch": "x86_64",
          "SrcName": "inih",
          "SrcVersion": "62-r1",
          "Licenses": [
            "BSD-3-Clause"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:ba6e52c2b36d6e347be0e0d787eb7c60ab6a8f88",
          "InstalledFiles": [
            "usr/lib/libINIReader.so.0",
            "usr/lib/libinih.so.0",
            "var/lib/db/sbom/inih-62-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "ld-linux",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "eb85eafdf0f30288"
          },
          "Version": "2.42-r4",
          "Arch": "x86_64",
          "SrcName": "glibc",
          "SrcVersion": "2.42-r4",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:25604b5e9a3fae094b52f59c3989864df90a1f214ec363fa7076616d3a60df0a",
            "DiffID": "sha256:a00abde5c5a10411a7eea33c53188716ad91fb66c4fbbe7323455162e2fe53e7"
          },
          "Digest": "sha1:b2912c628d4c6ced5e252448dcec623886e6f695",
          "InstalledFiles": [
            "etc/ld.so.conf",
            "etc/ld.so.conf.d/libc.conf",
            "usr/lib/ld-linux-x86-64.so.2",
            "var/lib/db/sbom/ld-linux-2.42-r4.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libblkid",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "e0355eb0e3bffe25"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:cd73bbb32fa73315a8821fc43de00a204e765fde",
          "InstalledFiles": [
            "usr/lib/libblkid.so.1",
            "usr/lib/libblkid.so.1.1.0",
            "var/lib/db/sbom/libblkid-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libcom_err",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "95cd06b2bdb5d1d9"
          },
          "Version": "1.47.3-r1",
          "Arch": "x86_64",
          "SrcName": "e2fsprogs",
          "SrcVersion": "1.47.3-r1",
          "Licenses": [
            "GPL-2.0-or-later",
            "LGPL-2.0-or-later",
            "BSD-3-Clause",
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:cd33f282acb7754ce20219531dfd38526ac94af06d2700f1521024f868db7a6c",
            "DiffID": "sha256:e9ce9aa965a755cb2fa035289d00225d14b202117bf39aa808e296efa5e40555"
          },
          "Digest": "sha1:a2942d78c8080b14bbd656bcecb9aa853abd886f",
          "InstalledFiles": [
            "usr/lib/libcom_err.so.2",
            "usr/lib/libcom_err.so.2.1",
            "var/lib/db/sbom/libcom_err-1.47.3-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libgcc",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "4c5bba0c5226f044"
          },
          "Version": "15.2.0-r3",
          "Arch": "x86_64",
          "SrcName": "gcc",
          "SrcVersion": "15.2.0-r3",
          "Licenses": [
            "GPL-3.0-or-later WITH GCC-exception-3.1"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:a611e81ea967326c43734059ac44e80caa9c0e192c0e1df5f3db53be726881ca",
            "DiffID": "sha256:43fc8f5bf3f74239495fb47ca8ead3ee4881a3cbdb130f89f4935d94c8ba4a64"
          },
          "Digest": "sha1:90294044b70464d91fb60811da20128562214b5f",
          "InstalledFiles": [
            "usr/lib/libgcc_s.so.1",
            "var/lib/db/sbom/libgcc-15.2.0-r3.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libmount",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "aca1451b51238056"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:a3657b1e5630b9c627ebf4288fb519085590b0d2",
          "InstalledFiles": [
            "usr/lib/libmount.so.1",
            "usr/lib/libmount.so.1.1.0",
            "var/lib/db/sbom/libmount-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libpcre2-8-0",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "922ecc50a9907efc"
          },
          "Version": "10.47-r0",
          "Arch": "x86_64",
          "SrcName": "pcre2",
          "SrcVersion": "10.47-r0",
          "Licenses": [
            "BSD-3-Clause"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:e5b9172f7d4bf65315b3125dca578c8936f612c8",
          "InstalledFiles": [
            "usr/lib/libpcre2-8.so.0",
            "usr/lib/libpcre2-8.so.0.15.0",
            "var/lib/db/sbom/libpcre2-8-0-10.47-r0.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libselinux",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "f39659a89994e997"
          },
          "Version": "3.9-r1",
          "Arch": "x86_64",
          "SrcName": "libselinux",
          "SrcVersion": "3.9-r1",
          "Licenses": [
            "libselinux-1.0"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:50ec879e7ebf56e353f19da3f305485de137a3de54915feddf6cc5b5f6ca970d",
            "DiffID": "sha256:35a2b0d5f787b338aadf23c12cf378cd98d1f381d01e6b0390b8d7560fb3683e"
          },
          "Digest": "sha1:d1b5405230a5fc3df97e97727fbf18de3b0dcc6a",
          "InstalledFiles": [
            "usr/bin/avcstat",
            "usr/bin/compute_av",
            "usr/bin/compute_create",
            "usr/bin/compute_member",
            "usr/bin/compute_relabel",
            "usr/bin/getconlist",
            "usr/bin/getdefaultcon",
            "usr/bin/getenforce",
            "usr/bin/getfilecon",
            "usr/bin/getpidcon",
            "usr/bin/getpidprevcon",
            "usr/bin/getpolicyload",
            "usr/bin/getsebool",
            "usr/bin/getseuser",
            "usr/bin/matchpathcon",
            "usr/bin/policyvers",
            "usr/bin/sefcontext_compile",
            "usr/bin/selabel_compare",
            "usr/bin/selabel_digest",
            "usr/bin/selabel_get_digests_all_partial_matches",
            "usr/bin/selabel_lookup",
            "usr/bin/selabel_lookup_best_match",
            "usr/bin/selabel_partial_match",
            "usr/bin/selinux_check_access",
            "usr/bin/selinux_check_securetty_context",
            "usr/bin/selinuxenabled",
            "usr/bin/selinuxexeccon",
            "usr/bin/setenforce",
            "usr/bin/setfilecon",
            "usr/bin/togglesebool",
            "usr/bin/validatetrans",
            "usr/lib/libselinux.so.1",
            "usr/share/man/man3/avc_add_callback.3",
            "usr/share/man/man3/avc_audit.3",
            "usr/share/man/man3/avc_av_stats.3",
            "usr/share/man/man3/avc_cache_stats.3",
            "usr/share/man/man3/avc_cleanup.3",
            "usr/share/man/man3/avc_compute_create.3",
            "usr/share/man/man3/avc_compute_member.3",
            "usr/share/man/man3/avc_context_to_sid.3",
            "usr/share/man/man3/avc_destroy.3",
            "usr/share/man/man3/avc_entry_ref_init.3",
            "usr/share/man/man3/avc_get_initial_context.3",
            "usr/share/man/man3/avc_get_initial_sid.3",
            "usr/share/man/man3/avc_has_perm.3",
            "usr/share/man/man3/avc_has_perm_noaudit.3",
            "usr/share/man/man3/avc_init.3",
            "usr/share/man/man3/avc_netlink_acquire_fd.3",
            "usr/share/man/man3/avc_netlink_check_nb.3",
            "usr/share/man/man3/avc_netlink_close.3",
            "usr/share/man/man3/avc_netlink_loop.3",
            "usr/share/man/man3/avc_netlink_open.3",
            "usr/share/man/man3/avc_netlink_release_fd.3",
            "usr/share/man/man3/avc_open.3",
            "usr/share/man/man3/avc_reset.3",
            "usr/share/man/man3/avc_sid_stats.3",
            "usr/share/man/man3/avc_sid_to_context.3",
            "usr/share/man/man3/checkPasswdAccess.3",
            "usr/share/man/man3/context_free.3",
            "usr/share/man/man3/context_new.3",
            "usr/share/man/man3/context_range_get.3",
            "usr/share/man/man3/context_range_set.3",
            "usr/share/man/man3/context_role_get.3",
            "usr/share/man/man3/context_role_set.3",
            "usr/share/man/man3/context_str.3",
            "usr/share/man/man3/context_type_get.3",
            "usr/share/man/man3/context_type_set.3",
            "usr/share/man/man3/context_user_get.3",
            "usr/share/man/man3/context_user_set.3",
            "usr/share/man/man3/fgetfilecon.3",
            "usr/share/man/man3/fgetfilecon_raw.3",
            "usr/share/man/man3/fini_selinuxmnt.3",
            "usr/share/man/man3/freecon.3",
            "usr/share/man/man3/freeconary.3",
            "usr/share/man/man3/fsetfilecon.3",
            "usr/share/man/man3/fsetfilecon_raw.3",
            "usr/share/man/man3/get_default_context.3",
            "usr/share/man/man3/get_default_context_with_level.3",
            "usr/share/man/man3/get_default_context_with_role.3",
            "usr/share/man/man3/get_default_context_with_rolelevel.3",
            "usr/share/man/man3/get_default_type.3",
            "usr/share/man/man3/get_ordered_context_list.3",
            "usr/share/man/man3/get_ordered_context_list_with_level.3",
            "usr/share/man/man3/getcon.3",
            "usr/share/man/man3/getcon_raw.3",
            "usr/share/man/man3/getexeccon.3",
            "usr/share/man/man3/getexeccon_raw.3",
            "usr/share/man/man3/getfilecon.3",
            "usr/share/man/man3/getfilecon_raw.3",
            "usr/share/man/man3/getfscreatecon.3",
            "usr/share/man/man3/getfscreatecon_raw.3",
            "usr/share/man/man3/getkeycreatecon.3",
            "usr/share/man/man3/getkeycreatecon_raw.3",
            "usr/share/man/man3/getpeercon.3",
            "usr/share/man/man3/getpeercon_raw.3",
            "usr/share/man/man3/getpidcon.3",
            "usr/share/man/man3/getpidcon_raw.3",
            "usr/share/man/man3/getpidprevcon.3",
            "usr/share/man/man3/getpidprevcon_raw.3",
            "usr/share/man/man3/getprevcon.3",
            "usr/share/man/man3/getprevcon_raw.3",
            "usr/share/man/man3/getseuserbyname.3",
            "usr/share/man/man3/getsockcreatecon.3",
            "usr/share/man/man3/getsockcreatecon_raw.3",
            "usr/share/man/man3/init_selinuxmnt.3",
            "usr/share/man/man3/is_context_customizable.3",
            "usr/share/man/man3/is_selinux_enabled.3",
            "usr/share/man/man3/is_selinux_mls_enabled.3",
            "usr/share/man/man3/lgetfilecon.3",
            "usr/share/man/man3/lgetfilecon_raw.3",
            "usr/share/man/man3/lsetfilecon.3",
            "usr/share/man/man3/lsetfilecon_raw.3",
            "usr/share/man/man3/manual_user_enter_context.3",
            "usr/share/man/man3/matchmediacon.3",
            "usr/share/man/man3/matchpathcon.3",
            "usr/share/man/man3/matchpathcon_checkmatches.3",
            "usr/share/man/man3/matchpathcon_filespec_add.3",
            "usr/share/man/man3/matchpathcon_filespec_destroy.3",
            "usr/share/man/man3/matchpathcon_filespec_eval.3",
            "usr/share/man/man3/matchpathcon_fini.3",
            "usr/share/man/man3/matchpathcon_index.3",
            "usr/share/man/man3/matchpathcon_init.3",
            "usr/share/man/man3/mode_to_security_class.3",
            "usr/share/man/man3/print_access_vector.3",
            "usr/share/man/man3/query_user_context.3",
            "usr/share/man/man3/rpm_execcon.3",
            "usr/share/man/man3/security_av_perm_to_string.3",
            "usr/share/man/man3/security_av_string.3",
            "usr/share/man/man3/security_check_context.3",
            "usr/share/man/man3/security_check_context_raw.3",
            "usr/share/man/man3/security_class_to_string.3",
            "usr/share/man/man3/security_commit_booleans.3",
            "usr/share/man/man3/security_compute_av.3",
            "usr/share/man/man3/security_compute_av_flags.3",
            "usr/share/man/man3/security_compute_av_flags_raw.3",
            "usr/share/man/man3/security_compute_av_raw.3",
            "usr/share/man/man3/security_compute_create.3",
            "usr/share/man/man3/security_compute_create_name.3",
            "usr/share/man/man3/security_compute_create_name_raw.3",
            "usr/share/man/man3/security_compute_create_raw.3",
            "usr/share/man/man3/security_compute_member.3",
            "usr/share/man/man3/security_compute_member_raw.3",
            "usr/share/man/man3/security_compute_relabel.3",
            "usr/share/man/man3/security_compute_relabel_raw.3",
            "usr/share/man/man3/security_compute_user.3",
            "usr/share/man/man3/security_compute_user_raw.3",
            "usr/share/man/man3/security_deny_unknown.3",
            "usr/share/man/man3/security_disable.3",
            "usr/share/man/man3/security_get_boolean_active.3",
            "usr/share/man/man3/security_get_boolean_names.3",
            "usr/share/man/man3/security_get_boolean_pending.3",
            "usr/share/man/man3/security_get_checkreqprot.3",
            "usr/share/man/man3/security_get_initial_context.3",
            "usr/share/man/man3/security_get_initial_context_raw.3",
            "usr/share/man/man3/security_getenforce.3",
            "usr/share/man/man3/security_load_booleans.3",
            "usr/share/man/man3/security_load_policy.3",
            "usr/share/man/man3/security_mkload_policy.3",
            "usr/share/man/man3/security_policyvers.3",
            "usr/share/man/man3/security_reject_unknown.3",
            "usr/share/man/man3/security_set_boolean.3",
            "usr/share/man/man3/security_set_boolean_list.3",
            "usr/share/man/man3/security_setenforce.3",
            "usr/share/man/man3/security_validatetrans.3",
            "usr/share/man/man3/security_validatetrans_raw.3",
            "usr/share/man/man3/selabel_close.3",
            "usr/share/man/man3/selabel_digest.3",
            "usr/share/man/man3/selabel_get_digests_all_partial_matches.3",
            "usr/share/man/man3/selabel_lookup.3",
            "usr/share/man/man3/selabel_lookup_best_match.3",
            "usr/share/man/man3/selabel_lookup_best_match_raw.3",
            "usr/share/man/man3/selabel_lookup_raw.3",
            "usr/share/man/man3/selabel_open.3",
            "usr/share/man/man3/selabel_partial_match.3",
            "usr/share/man/man3/selabel_stats.3",
            "usr/share/man/man3/selinux_binary_policy_path.3",
            "usr/share/man/man3/selinux_boolean_sub.3",
            "usr/share/man/man3/selinux_check_access.3",
            "usr/share/man/man3/selinux_check_passwd_access.3",
            "usr/share/man/man3/selinux_check_securetty_context.3",
            "usr/share/man/man3/selinux_colors_path.3",
            "usr/share/man/man3/selinux_contexts_path.3",
            "usr/share/man/man3/selinux_current_policy_path.3",
            "usr/share/man/man3/selinux_default_context_path.3",
            "usr/share/man/man3/selinux_default_type_path.3",
            "usr/share/man/man3/selinux_failsafe_context_path.3",
            "usr/share/man/man3/selinux_file_context_cmp.3",
            "usr/share/man/man3/selinux_file_context_homedir_path.3",
            "usr/share/man/man3/selinux_file_context_local_path.3",
            "usr/share/man/man3/selinux_file_context_path.3",
            "usr/share/man/man3/selinux_file_context_verify.3",
            "usr/share/man/man3/selinux_getenforcemode.3",
            "usr/share/man/man3/selinux_getpolicytype.3",
            "usr/share/man/man3/selinux_homedir_context_path.3",
            "usr/share/man/man3/selinux_init_load_policy.3",
            "usr/share/man/man3/selinux_lsetfilecon_default.3",
            "usr/share/man/man3/selinux_media_context_path.3",
            "usr/share/man/man3/selinux_mkload_policy.3",
            "usr/share/man/man3/selinux_netfilter_context_path.3",
            "usr/share/man/man3/selinux_path.3",
            "usr/share/man/man3/selinux_policy_root.3",
            "usr/share/man/man3/selinux_raw_context_to_color.3",
            "usr/share/man/man3/selinux_removable_context_path.3",
            "usr/share/man/man3/selinux_restorecon.3",
            "usr/share/man/man3/selinux_restorecon_default_handle.3",
            "usr/share/man/man3/selinux_restorecon_get_skipped_errors.3",
            "usr/share/man/man3/selinux_restorecon_parallel.3",
            "usr/share/man/man3/selinux_restorecon_set_alt_rootpath.3",
            "usr/share/man/man3/selinux_restorecon_set_exclude_list.3",
            "usr/share/man/man3/selinux_restorecon_set_sehandle.3",
            "usr/share/man/man3/selinux_restorecon_xattr.3",
            "usr/share/man/man3/selinux_securetty_types_path.3",
            "usr/share/man/man3/selinux_sepgsql_context_path.3",
            "usr/share/man/man3/selinux_set_callback.3",
            "usr/share/man/man3/selinux_set_mapping.3",
            "usr/share/man/man3/selinux_set_policy_root.3",
            "usr/share/man/man3/selinux_status_close.3",
            "usr/share/man/man3/selinux_status_deny_unknown.3",
            "usr/share/man/man3/selinux_status_getenforce.3",
            "usr/share/man/man3/selinux_status_open.3",
            "usr/share/man/man3/selinux_status_policyload.3",
            "usr/share/man/man3/selinux_status_updated.3",
            "usr/share/man/man3/selinux_user_contexts_path.3",
            "usr/share/man/man3/selinux_usersconf_path.3",
            "usr/share/man/man3/selinux_x_context_path.3",
            "usr/share/man/man3/set_matchpathcon_flags.3",
            "usr/share/man/man3/set_matchpathcon_invalidcon.3",
            "usr/share/man/man3/set_matchpathcon_printf.3",
            "usr/share/man/man3/set_selinuxmnt.3",
            "usr/share/man/man3/setcon.3",
            "usr/share/man/man3/setcon_raw.3",
            "usr/share/man/man3/setexeccon.3",
            "usr/share/man/man3/setexeccon_raw.3",
            "usr/share/man/man3/setexecfilecon.3",
            "usr/share/man/man3/setfilecon.3",
            "usr/share/man/man3/setfilecon_raw.3",
            "usr/share/man/man3/setfscreatecon.3",
            "usr/share/man/man3/setfscreatecon_raw.3",
            "usr/share/man/man3/setkeycreatecon.3",
            "usr/share/man/man3/setkeycreatecon_raw.3",
            "usr/share/man/man3/setsockcreatecon.3",
            "usr/share/man/man3/setsockcreatecon_raw.3",
            "usr/share/man/man3/sidget.3",
            "usr/share/man/man3/sidput.3",
            "usr/share/man/man3/string_to_av_perm.3",
            "usr/share/man/man3/string_to_security_class.3",
            "usr/share/man/man5/customizable_types.5",
            "usr/share/man/man5/default_contexts.5",
            "usr/share/man/man5/default_type.5",
            "usr/share/man/man5/failsafe_context.5",
            "usr/share/man/man5/file_contexts.5",
            "usr/share/man/man5/file_contexts.homedirs.5",
            "usr/share/man/man5/file_contexts.local.5",
            "usr/share/man/man5/file_contexts.subs.5",
            "usr/share/man/man5/file_contexts.subs_dist.5",
            "usr/share/man/man5/media.5",
            "usr/share/man/man5/removable_context.5",
            "usr/share/man/man5/secolor.conf.5",
            "usr/share/man/man5/securetty_types.5",
            "usr/share/man/man5/selabel_db.5",
            "usr/share/man/man5/selabel_file.5",
            "usr/share/man/man5/selabel_media.5",
            "usr/share/man/man5/selabel_x.5",
            "usr/share/man/man5/sepgsql_contexts.5",
            "usr/share/man/man5/service_seusers.5",
            "usr/share/man/man5/seusers.5",
            "usr/share/man/man5/user_contexts.5",
            "usr/share/man/man5/virtual_domain_context.5",
            "usr/share/man/man5/virtual_image_context.5",
            "usr/share/man/man5/x_contexts.5",
            "usr/share/man/man8/avcstat.8",
            "usr/share/man/man8/booleans.8",
            "usr/share/man/man8/getenforce.8",
            "usr/share/man/man8/getsebool.8",
            "usr/share/man/man8/matchpathcon.8",
            "usr/share/man/man8/sefcontext_compile.8",
            "usr/share/man/man8/selinux.8",
            "usr/share/man/man8/selinuxenabled.8",
            "usr/share/man/man8/selinuxexeccon.8",
            "usr/share/man/man8/setenforce.8",
            "usr/share/man/man8/togglesebool.8",
            "var/lib/db/sbom/libselinux-3.9-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libsepol",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "64b2e3e5ce54b706"
          },
          "Version": "3.9-r1",
          "Arch": "x86_64",
          "SrcName": "libsepol",
          "SrcVersion": "3.9-r1",
          "Licenses": [
            "LGPL-2.1-only"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:a69157b80dd9974bbc306c3e7c81fdc497839174",
          "InstalledFiles": [
            "usr/bin/chkcon",
            "usr/bin/sepol_check_access",
            "usr/bin/sepol_compute_av",
            "usr/bin/sepol_compute_member",
            "usr/bin/sepol_compute_relabel",
            "usr/bin/sepol_validate_transition",
            "usr/lib/libsepol.so.2",
            "usr/share/man/man3/sepol_check_context.3",
            "usr/share/man/man8/chkcon.8",
            "usr/share/man/man8/genpolbools.8",
            "usr/share/man/man8/genpolusers.8",
            "var/lib/db/sbom/libsepol-3.9-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libsmartcols",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "783100d6c7e47ac8"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:57b21a81b1a4f8846cbedc29f93c7ba1c32530d3",
          "InstalledFiles": [
            "usr/lib/libsmartcols.so.1",
            "usr/lib/libsmartcols.so.1.1.0",
            "var/lib/db/sbom/libsmartcols-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libstdc++",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/libstdc%2B%[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "ae6a6e1d1b00986c"
          },
          "Version": "15.2.0-r3",
          "Arch": "x86_64",
          "SrcName": "gcc",
          "SrcVersion": "15.2.0-r3",
          "Licenses": [
            "GPL-3.0-or-later WITH GCC-exception-3.1"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:a611e81ea967326c43734059ac44e80caa9c0e192c0e1df5f3db53be726881ca",
            "DiffID": "sha256:43fc8f5bf3f74239495fb47ca8ead3ee4881a3cbdb130f89f4935d94c8ba4a64"
          },
          "Digest": "sha1:37fa79a8a9c08340b172fb484665528bb2532e82",
          "InstalledFiles": [
            "usr/lib/libstdc++.so.6",
            "usr/lib/libstdc++.so.6.0.34",
            "usr/lib/libstdc++.so.6.0.34-gdb.py",
            "var/lib/db/sbom/libstdc++-15.2.0-r3.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "liburcu",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "cbb1c36d63d978c6"
          },
          "Version": "0.15.4-r0",
          "Arch": "x86_64",
          "SrcName": "liburcu",
          "SrcVersion": "0.15.4-r0",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:6f158dcc7bd8c35f86d43ffc32e7a9bbf4a75db8",
          "InstalledFiles": [
            "usr/lib/liburcu-bp.so.8",
            "usr/lib/liburcu-bp.so.8.1.0",
            "usr/lib/liburcu-cds.so.8",
            "usr/lib/liburcu-cds.so.8.1.0",
            "usr/lib/liburcu-common.so.8",
            "usr/lib/liburcu-common.so.8.1.0",
            "usr/lib/liburcu-mb.so.8",
            "usr/lib/liburcu-mb.so.8.1.0",
            "usr/lib/liburcu-memb.so.8",
            "usr/lib/liburcu-memb.so.8.1.0",
            "usr/lib/liburcu-qsbr.so.8",
            "usr/lib/liburcu-qsbr.so.8.1.0",
            "usr/lib/liburcu.so.8",
            "usr/lib/liburcu.so.8.1.0",
            "var/lib/db/sbom/liburcu-0.15.4-r0.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "libuuid",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "250e90becaf14cd4"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:8c365ba032ee839163dee841208001be3adb82db",
          "InstalledFiles": [
            "usr/lib/libuuid.so.1",
            "usr/lib/libuuid.so.1.3.0",
            "var/lib/db/sbom/libuuid-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "lsblk",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "507be0138d49710d"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]_p20251025-r1",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:5c1e652a90f9ed96f78a517d8f12ef4ebb737180",
          "InstalledFiles": [
            "usr/bin/lsblk",
            "var/lib/db/sbom/lsblk-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "mount",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "4b2dddfbbc782bfd"
          },
          "Version": "2.41.2-r1",
          "Arch": "x86_64",
          "SrcName": "util-linux",
          "SrcVersion": "2.41.2-r1",
          "Licenses": [
            "GPL-3.0-or-later",
            "GPL-2.0-or-later",
            "GPL-2.0-only",
            "GPL-1.0-only",
            "LGPL-2.1-or-later",
            "BSD-1-Clause",
            "BSD-3-Clause",
            "BSD-4-Clause-UC",
            "MIT",
            "CC-PDDC"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "wolfi-baselayout@20230201-r24"
          ],
          "Layer": {
            "Digest": "sha256:4b535d7ffccfdd8196457f1a97835fd95976301886409c03130025cdc1f7d09b",
            "DiffID": "sha256:4ae65596a98858f66805d7c54182a0a5f178c473c84fb48f82fbfd484ccb8adf"
          },
          "Digest": "sha1:59c6068aaae3f71060f92592641288c7a71fcf9d",
          "InstalledFiles": [
            "usr/bin/mount",
            "var/lib/db/sbom/mount-2.41.2-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]_p20251025-r1",
          "Name": "ncurses",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]_p20251025-r1?arch=x86_64\u0026distro=20230201",
            "UID": "7609b9a65735bc6f"
          },
          "Version": "6.5_p20251025-r1",
          "Arch": "x86_64",
          "SrcName": "ncurses",
          "SrcVersion": "6.5_p20251025-r1",
          "Licenses": [
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "[email protected]",
            "[email protected]_p20251025-r1"
          ],
          "Layer": {
            "Digest": "sha256:50a15d5188ff7495f735d5df2eccd774644994fe0dd389305505694b167fac0b",
            "DiffID": "sha256:e2b9df6b759150c59c1544c9e026387aac725fc1b61947fe63445cee5bee2cab"
          },
          "Digest": "sha1:09635e35481d1632cab54dba2820ceea7a3ea877",
          "InstalledFiles": [
            "usr/bin/captoinfo",
            "usr/bin/clear",
            "usr/bin/infocmp",
            "usr/bin/infotocap",
            "usr/bin/reset",
            "usr/bin/tabs",
            "usr/bin/tic",
            "usr/bin/toe",
            "usr/bin/tput",
            "usr/bin/tset",
            "usr/lib/libformw.so.6",
            "usr/lib/libformw.so.6.5",
            "usr/lib/libmenuw.so.6",
            "usr/lib/libmenuw.so.6.5",
            "usr/lib/libncursesw.so.6",
            "usr/lib/libncursesw.so.6.5",
            "usr/lib/libpanelw.so.6",
            "usr/lib/libpanelw.so.6.5",
            "usr/lib/libtinfo.so.6",
            "usr/lib/libtinfo.so.6.5",
            "usr/lib/terminfo",
            "usr/share/tabset/std",
            "usr/share/tabset/stdcrt",
            "usr/share/tabset/vt100",
            "usr/share/tabset/vt300",
            "var/lib/db/sbom/ncurses-6.5_p20251025-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]_p20251025-r1",
          "Name": "ncurses-terminfo-base",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]_p20251025-r1?arch=x86_64\u0026distro=20230201",
            "UID": "b2e7227cebbdf010"
          },
          "Version": "6.5_p20251025-r1",
          "Arch": "x86_64",
          "SrcName": "ncurses",
          "SrcVersion": "6.5_p20251025-r1",
          "Licenses": [
            "MIT"
          ],
          "Maintainer": "wolfi",
          "Layer": {
            "Digest": "sha256:50a15d5188ff7495f735d5df2eccd774644994fe0dd389305505694b167fac0b",
            "DiffID": "sha256:e2b9df6b759150c59c1544c9e026387aac725fc1b61947fe63445cee5bee2cab"
          },
          "Digest": "sha1:a42a0a82288d10f1013bff4f627eba43762bb659",
          "InstalledFiles": [
            "etc/terminfo/a/alacritty",
            "etc/terminfo/a/ansi",
            "etc/terminfo/d/dumb",
            "etc/terminfo/g/gnome",
            "etc/terminfo/g/gnome+pcfkeys",
            "etc/terminfo/g/gnome-2007",
            "etc/terminfo/g/gnome-2008",
            "etc/terminfo/g/gnome-2012",
            "etc/terminfo/g/gnome-256color",
            "etc/terminfo/g/gnome-fc5",
            "etc/terminfo/g/gnome-rh62",
            "etc/terminfo/g/gnome-rh72",
            "etc/terminfo/g/gnome-rh80",
            "etc/terminfo/g/gnome-rh90",
            "etc/terminfo/k/konsole",
            "etc/terminfo/k/konsole+pcfkeys",
            "etc/terminfo/k/konsole-16color",
            "etc/terminfo/k/konsole-256color",
            "etc/terminfo/k/konsole-base",
            "etc/terminfo/k/konsole-direct",
            "etc/terminfo/k/konsole-linux",
            "etc/terminfo/k/konsole-solaris",
            "etc/terminfo/k/konsole-vt100",
            "etc/terminfo/k/konsole-vt420pc",
            "etc/terminfo/k/konsole-xf3x",
            "etc/terminfo/k/konsole-xf4x",
            "etc/terminfo/l/linux",
            "etc/terminfo/p/putty",
            "etc/terminfo/p/putty+cursor",
            "etc/terminfo/p/putty+fnkeys",
            "etc/terminfo/p/putty+fnkeys+esc",
            "etc/terminfo/p/putty+fnkeys+linux",
            "etc/terminfo/p/putty+fnkeys+sco",
            "etc/terminfo/p/putty+fnkeys+vt100",
            "etc/terminfo/p/putty+fnkeys+vt400",
            "etc/terminfo/p/putty+fnkeys+xterm",
            "etc/terminfo/p/putty+keypad",
            "etc/terminfo/p/putty+screen",
            "etc/terminfo/p/putty-256color",
            "etc/terminfo/p/putty-m1",
            "etc/terminfo/p/putty-m1b",
            "etc/terminfo/p/putty-m2",
            "etc/terminfo/p/putty-noapp",
            "etc/terminfo/p/putty-sco",
            "etc/terminfo/p/putty-screen",
            "etc/terminfo/p/putty-vt100",
            "etc/terminfo/s/screen",
            "etc/terminfo/s/screen+fkeys",
            "etc/terminfo/s/screen+italics",
            "etc/terminfo/s/screen-16color",
            "etc/terminfo/s/screen-16color-bce",
            "etc/terminfo/s/screen-16color-bce-s",
            "etc/terminfo/s/screen-16color-s",
            "etc/terminfo/s/screen-256color",
            "etc/terminfo/s/screen-256color-bce",
            "etc/terminfo/s/screen-256color-bce-s",
            "etc/terminfo/s/screen-256color-s",
            "etc/terminfo/s/screen-base",
            "etc/terminfo/s/screen-bce",
            "etc/terminfo/s/screen-bce.Eterm",
            "etc/terminfo/s/screen-bce.gnome",
            "etc/terminfo/s/screen-bce.konsole",
            "etc/terminfo/s/screen-bce.linux",
            "etc/terminfo/s/screen-bce.mrxvt",
            "etc/terminfo/s/screen-bce.rxvt",
            "etc/terminfo/s/screen-bce.xterm-new",
            "etc/terminfo/s/screen-s",
            "etc/terminfo/s/screen-w",
            "etc/terminfo/s/screen.Eterm",
            "etc/terminfo/s/screen.gnome",
            "etc/terminfo/s/screen.konsole",
            "etc/terminfo/s/screen.konsole-256color",
            "etc/terminfo/s/screen.linux",
            "etc/terminfo/s/screen.linux-m1",
            "etc/terminfo/s/screen.linux-m1b",
            "etc/terminfo/s/screen.linux-m2",
            "etc/terminfo/s/screen.linux-s",
            "etc/terminfo/s/screen.minitel1",
            "etc/terminfo/s/screen.minitel1-nb",
            "etc/terminfo/s/screen.minitel12-80",
            "etc/terminfo/s/screen.minitel1b",
            "etc/terminfo/s/screen.minitel1b-80",
            "etc/terminfo/s/screen.minitel1b-nb",
            "etc/terminfo/s/screen.minitel2-80",
            "etc/terminfo/s/screen.mlterm",
            "etc/terminfo/s/screen.mlterm-256color",
            "etc/terminfo/s/screen.mrxvt",
            "etc/terminfo/s/screen.putty",
            "etc/terminfo/s/screen.putty-256color",
            "etc/terminfo/s/screen.putty-m1",
            "etc/terminfo/s/screen.putty-m1b",
            "etc/terminfo/s/screen.putty-m2",
            "etc/terminfo/s/screen.rxvt",
            "etc/terminfo/s/screen.teraterm",
            "etc/terminfo/s/screen.vte",
            "etc/terminfo/s/screen.vte-256color",
            "etc/terminfo/s/screen.xterm-256color",
            "etc/terminfo/s/screen.xterm-new",
            "etc/terminfo/s/screen.xterm-r6",
            "etc/terminfo/s/screen.xterm-xfree86",
            "etc/terminfo/s/screen2",
            "etc/terminfo/s/screen3",
            "etc/terminfo/s/screen4",
            "etc/terminfo/s/screen5",
            "etc/terminfo/s/st-0.6",
            "etc/terminfo/s/st-0.7",
            "etc/terminfo/s/st-0.8",
            "etc/terminfo/s/st-0.8.5",
            "etc/terminfo/s/st-16color",
            "etc/terminfo/s/st-256color",
            "etc/terminfo/s/st-direct",
            "etc/terminfo/s/sun",
            "etc/terminfo/t/terminator",
            "etc/terminfo/t/terminology",
            "etc/terminfo/t/terminology-0.6.1",
            "etc/terminfo/t/terminology-1.0.0",
            "etc/terminfo/t/terminology-1.8.1",
            "etc/terminfo/t/tmux",
            "etc/terminfo/t/tmux-256color",
            "etc/terminfo/t/tmux-direct",
            "etc/terminfo/v/vt100",
            "etc/terminfo/v/vt100+",
            "etc/terminfo/v/vt100+4bsd",
            "etc/terminfo/v/vt100+enq",
            "etc/terminfo/v/vt100+fnkeys",
            "etc/terminfo/v/vt100+keypad",
            "etc/terminfo/v/vt100+noapp",
            "etc/terminfo/v/vt100+noapp+pc",
            "etc/terminfo/v/vt100+pf1-pf4",
            "etc/terminfo/v/vt100+pfkeys",
            "etc/terminfo/v/vt100-am",
            "etc/terminfo/v/vt100-bm",
            "etc/terminfo/v/vt100-bm-o",
            "etc/terminfo/v/vt100-bot-s",
            "etc/terminfo/v/vt100-nam",
            "etc/terminfo/v/vt100-nam-w",
            "etc/terminfo/v/vt100-nav",
            "etc/terminfo/v/vt100-nav-w",
            "etc/terminfo/v/vt100-putty",
            "etc/terminfo/v/vt100-s",
            "etc/terminfo/v/vt100-s-bot",
            "etc/terminfo/v/vt100-s-top",
            "etc/terminfo/v/vt100-top-s",
            "etc/terminfo/v/vt100-vb",
            "etc/terminfo/v/vt100-w",
            "etc/terminfo/v/vt100-w-am",
            "etc/terminfo/v/vt100-w-nam",
            "etc/terminfo/v/vt100-w-nav",
            "etc/terminfo/v/vt100nam",
            "etc/terminfo/v/vt102",
            "etc/terminfo/v/vt102+enq",
            "etc/terminfo/v/vt102-nsgr",
            "etc/terminfo/v/vt102-w",
            "etc/terminfo/v/vt125",
            "etc/terminfo/v/vt131",
            "etc/terminfo/v/vt132",
            "etc/terminfo/v/vt200",
            "etc/terminfo/v/vt200-8",
            "etc/terminfo/v/vt200-8bit",
            "etc/terminfo/v/vt200-js",
            "etc/terminfo/v/vt200-old",
            "etc/terminfo/v/vt200-w",
            "etc/terminfo/v/vt220",
            "etc/terminfo/v/vt220+cvis",
            "etc/terminfo/v/vt220+cvis8",
            "etc/terminfo/v/vt220+keypad",
            "etc/terminfo/v/vt220+pcedit",
            "etc/terminfo/v/vt220+sfkeys",
            "etc/terminfo/v/vt220+ufkeys",
            "etc/terminfo/v/vt220+vtedit",
            "etc/terminfo/v/vt220-8",
            "etc/terminfo/v/vt220-8bit",
            "etc/terminfo/v/vt220-base",
            "etc/terminfo/v/vt220-js",
            "etc/terminfo/v/vt220-nam",
            "etc/terminfo/v/vt220-old",
            "etc/terminfo/v/vt220-w",
            "etc/terminfo/v/vt220d",
            "etc/terminfo/v/vt52",
            "etc/terminfo/v/vte",
            "etc/terminfo/v/vte+pcfkeys",
            "etc/terminfo/v/vte-2007",
            "etc/terminfo/v/vte-2008",
            "etc/terminfo/v/vte-2012",
            "etc/terminfo/v/vte-2014",
            "etc/terminfo/v/vte-2017",
            "etc/terminfo/v/vte-2018",
            "etc/terminfo/v/vte-2022",
            "etc/terminfo/v/vte-256color",
            "etc/terminfo/v/vte-direct",
            "etc/terminfo/x/xterm",
            "etc/terminfo/x/xterm+256color",
            "etc/terminfo/x/xterm+256color2",
            "etc/terminfo/x/xterm+256setaf",
            "etc/terminfo/x/xterm+256setaf2",
            "etc/terminfo/x/xterm+88color",
            "etc/terminfo/x/xterm+88color2",
            "etc/terminfo/x/xterm+acs",
            "etc/terminfo/x/xterm+alt+title",
            "etc/terminfo/x/xterm+alt1049",
            "etc/terminfo/x/xterm+alt47",
            "etc/terminfo/x/xterm+app",
            "etc/terminfo/x/xterm+app+pc",
            "etc/terminfo/x/xterm+decedit",
            "etc/terminfo/x/xterm+direct",
            "etc/terminfo/x/xterm+direct16",
            "etc/terminfo/x/xterm+direct2",
            "etc/terminfo/x/xterm+direct256",
            "etc/terminfo/x/xterm+edit",
            "etc/terminfo/x/xterm+focus",
            "etc/terminfo/x/xterm+indirect",
            "etc/terminfo/x/xterm+kbs",
            "etc/terminfo/x/xterm+keypad",
            "etc/terminfo/x/xterm+meta",
            "etc/terminfo/x/xterm+noalt",
            "etc/terminfo/x/xterm+noapp",
            "etc/terminfo/x/xterm+nofkeys",
            "etc/terminfo/x/xterm+nopcfkeys",
            "etc/terminfo/x/xterm+osc104",
            "etc/terminfo/x/xterm+pc+edit",
            "etc/terminfo/x/xterm+pcc0",
            "etc/terminfo/x/xterm+pcc1",
            "etc/terminfo/x/xterm+pcc2",
            "etc/terminfo/x/xterm+pcc3",
            "etc/terminfo/x/xterm+pce2",
            "etc/terminfo/x/xterm+pcf0",
            "etc/terminfo/x/xterm+pcf2",
            "etc/terminfo/x/xterm+pcfkeys",
            "etc/terminfo/x/xterm+r5+fkeys",
            "etc/terminfo/x/xterm+r5+lockeys",
            "etc/terminfo/x/xterm+r6f2",
            "etc/terminfo/x/xterm+sl",
            "etc/terminfo/x/xterm+sl-alt",
            "etc/terminfo/x/xterm+sl-twm",
            "etc/terminfo/x/xterm+sm+1002",
            "etc/terminfo/x/xterm+sm+1003",
            "etc/terminfo/x/xterm+sm+1005",
            "etc/terminfo/x/xterm+sm+1006",
            "etc/terminfo/x/xterm+titlestack",
            "etc/terminfo/x/xterm+tmux",
            "etc/terminfo/x/xterm+tmux2",
            "etc/terminfo/x/xterm+vt+edit",
            "etc/terminfo/x/xterm+x10mouse",
            "etc/terminfo/x/xterm+x11hilite",
            "etc/terminfo/x/xterm+x11mouse",
            "etc/terminfo/x/xterm-1002",
            "etc/terminfo/x/xterm-1003",
            "etc/terminfo/x/xterm-1005",
            "etc/terminfo/x/xterm-1006",
            "etc/terminfo/x/xterm-16color",
            "etc/terminfo/x/xterm-24",
            "etc/terminfo/x/xterm-256color",
            "etc/terminfo/x/xterm-88color",
            "etc/terminfo/x/xterm-8bit",
            "etc/terminfo/x/xterm-basic",
            "etc/terminfo/x/xterm-bold",
            "etc/terminfo/x/xterm-color",
            "etc/terminfo/x/xterm-direct",
            "etc/terminfo/x/xterm-direct16",
            "etc/terminfo/x/xterm-direct2",
            "etc/terminfo/x/xterm-direct256",
            "etc/terminfo/x/xterm-hp",
            "etc/terminfo/x/xterm-mono",
            "etc/terminfo/x/xterm-new",
            "etc/terminfo/x/xterm-nic",
            "etc/terminfo/x/xterm-noapp",
            "etc/terminfo/x/xterm-old",
            "etc/terminfo/x/xterm-p370",
            "etc/terminfo/x/xterm-p371",
            "etc/terminfo/x/xterm-pcolor",
            "etc/terminfo/x/xterm-r5",
            "etc/terminfo/x/xterm-r6",
            "etc/terminfo/x/xterm-sco",
            "etc/terminfo/x/xterm-sun",
            "etc/terminfo/x/xterm-utf8",
            "etc/terminfo/x/xterm-vt220",
            "etc/terminfo/x/xterm-vt52",
            "etc/terminfo/x/xterm-x10mouse",
            "etc/terminfo/x/xterm-x11hilite",
            "etc/terminfo/x/xterm-x11mouse",
            "etc/terminfo/x/xterm-xf86-v32",
            "etc/terminfo/x/xterm-xf86-v33",
            "etc/terminfo/x/xterm-xf86-v333",
            "etc/terminfo/x/xterm-xf86-v40",
            "etc/terminfo/x/xterm-xf86-v43",
            "etc/terminfo/x/xterm-xf86-v44",
            "etc/terminfo/x/xterm-xfree86",
            "etc/terminfo/x/xterm-xi",
            "etc/terminfo/x/xterm.js",
            "etc/terminfo/x/xterm1",
            "etc/terminfo/x/xtermc",
            "etc/terminfo/x/xtermm",
            "etc/terminfo/x/xterms",
            "etc/terminfo/x/xterms-sun",
            "var/lib/db/sbom/ncurses-terminfo-base-6.5_p20251025-r1.spdx.json"
          ]
        },
        {
          "ID": "wolfi-baselayout@20230201-r24",
          "Name": "wolfi-baselayout",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/wolfi-baselayout@20230201-r24?arch=x86_64\u0026distro=20230201",
            "UID": "16a77d1086b20c0f"
          },
          "Version": "20230201-r24",
          "Arch": "x86_64",
          "SrcName": "wolfi-baselayout",
          "SrcVersion": "20230201-r24",
          "Licenses": [
            "MIT"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "ca-certificates-bundle@20250911-r0"
          ],
          "Layer": {
            "Digest": "sha256:a6077ea14d04c02ca125a0f46e60fbf02fd2065ade76a87cfcee61fb046c5d2b",
            "DiffID": "sha256:9b73fc5d5c8bae020b8c033a6c439adbb146181cb6a0df0c473c5a7326aed3ba"
          },
          "Digest": "sha1:641f4c772368712dac05600ca3a283a9c001d31a",
          "InstalledFiles": [
            "bin",
            "lib",
            "lib64",
            "sbin",
            "etc/group",
            "etc/host.conf",
            "etc/hosts",
            "etc/mtab",
            "etc/nsswitch.conf",
            "etc/os-release",
            "etc/passwd",
            "etc/profile",
            "etc/protocols",
            "etc/services",
            "etc/shadow",
            "etc/shells",
            "etc/profile.d/locale.sh",
            "etc/secfixes.d/wolfi",
            "usr/lib64",
            "usr/sbin",
            "usr/local/lib64",
            "var/lib/db/sbom/wolfi-baselayout-20230201-r24.spdx.json",
            "var/spool/mail",
            "var/spool/cron/crontabs"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "xfsprogs",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "e695a3db3e6b56fc"
          },
          "Version": "6.17.0-r1",
          "Arch": "x86_64",
          "SrcName": "xfsprogs",
          "SrcVersion": "6.17.0-r1",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:b62f1945091b4e4da385827a52e0c7384c3ccbd4f440a556d68554bfebd7b247",
            "DiffID": "sha256:6e200d398666548cd770b03abd1bba53cb578922baa3eba0a251a637d5e2957a"
          },
          "Digest": "sha1:2d696429869efeb35394e2a9ded487d671134275",
          "InstalledFiles": [
            "var/lib/db/sbom/xfsprogs-6.17.0-r1.spdx.json"
          ]
        },
        {
          "ID": "[email protected]",
          "Name": "xfsprogs-core",
          "Identifier": {
            "PURL": "pkg:apk/wolfi/[email protected]?arch=x86_64\u0026distro=20230201",
            "UID": "cad76773692279c6"
          },
          "Version": "6.17.0-r1",
          "Arch": "x86_64",
          "SrcName": "xfsprogs",
          "SrcVersion": "6.17.0-r1",
          "Licenses": [
            "LGPL-2.1-or-later"
          ],
          "Maintainer": "wolfi",
          "DependsOn": [
            "[email protected]",
            "inih@62-r1",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]"
          ],
          "Layer": {
            "Digest": "sha256:b62f1945091b4e4da385827a52e0c7384c3ccbd4f440a556d68554bfebd7b247",
            "DiffID": "sha256:6e200d398666548cd770b03abd1bba53cb578922baa3eba0a251a637d5e2957a"
          },
          "Digest": "sha1:62600a710d021ce6de54326c07aa2da86f9a0cec",
          "InstalledFiles": [
            "usr/bin/fsck.xfs",
            "usr/bin/mkfs.xfs",
            "usr/bin/xfs_repair",
            "usr/share/xfsprogs/mkfs/dax_x86_64.conf",
            "usr/share/xfsprogs/mkfs/lts_4.19.conf",
            "usr/share/xfsprogs/mkfs/lts_5.10.conf",
            "usr/share/xfsprogs/mkfs/lts_5.15.conf",
            "usr/share/xfsprogs/mkfs/lts_5.4.conf",
            "usr/share/xfsprogs/mkfs/lts_6.1.conf",
            "usr/share/xfsprogs/mkfs/lts_6.12.conf",
            "usr/share/xfsprogs/mkfs/lts_6.6.conf",
            "var/lib/db/sbom/xfsprogs-core-6.17.0-r1.spdx.json"
          ]
        }
      ]
    }
  ]
}

### Version

```bash
$ trivy --version
Version: 0.67.1
Vulnerability DB:
  Version: 2
  UpdatedAt: 2025-11-06 06:28:27.475900541 +0000 UTC
  NextUpdate: 2025-11-07 06:28:27.47590024 +0000 UTC
  DownloadedAt: 2025-11-06 12:24:08.783804738 +0000 UTC

### Checklist

- [X] Read [the documentation regarding wrong detection](https://trivy.dev/dev/community/contribute/discussion/#false-detection)
- [X] Ran Trivy with `-f json` that shows data sources and confirmed that the security advisory in data sources was correct

[DmitriyLewen]

Hello @wojciechka
Thanks for your interest to Trivy!

Your examples are quite large, and it’s not entirely clear what exactly you expect.
You can find information about supported file types here:
• OS packages — https://trivy.dev/latest/docs/coverage/os/
• Language packages — https://trivy.dev/latest/docs/coverage/language/#supported-languages

Keep in mind that some files are only scanned in certain modes (for example, only in fs/repo or, conversely, only in image/rootfs).

If you can provide more details — what kind of packages you expect, how you installed them, and which vulnerabilities you expect to see — I’ll be able to help you faster and more accurately.

Regards, Dmitriy

[wojciechka]

@DmitriyLewen Thank you for the information.

I mentioned all images that I was working on. I apologize if that caused confusion or is a lot.

I checked the supported OSes and languages - all images are Wolfi/Chainguard based. The ones I listed use Python, Node.js and Golang, so it should be a supported combination.

Perhaps it's better to focus on just one image - perhaps ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-golang-chainguard.

This is an image built using Chainguard OS, that mostly includes a Golang binary (/usr/bin/scanner-test-golang-vulnerability), installed via an APK (scanner-test-golang-vulnerability-unfixed=0.0.1-r0).

That Go binary is built with Golang v1.24.5 that is vulnerable to CVE-2025-47907 (among other things). It also includes golang.org/x/net v0.17.0 vulnerable to GHSA-4v7x-pqxf-cx7m.

When I try to scan it as an image with trivy, I am not seeing any Golang related vulnerabilities.

When I use grype to scan the image, it correctly identifies both vulnerabilities (and a few others).

I am wondering if this is because the binary is part of an APK, and then those binaries are not scanned? Or are there flags in trivy that I need to pass to enable scanning of Golang binaries in an image, if those binaries were part of an APK file?

Please let me know if this helped. I am happy to provide more context, or try to test more things on my end, as it may be that I am misunderstanding some parts of trivy.

[DmitriyLewen]

Hello @wojciechka

includes a Golang binary ... installed via an APK

1. Trivy uses Vendor advisory database for packages installed from package managers - https://trivy.dev/docs/latest/scanner/vulnerability/#data-source-selection
2. Trivy excludes files of package from result. But you can use --detection-priority flag - https://trivy.dev/docs/latest/scanner/vulnerability/#detection-priority

   ➜  ~ trivy image ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-golang-chainguard --detection-priority comprehensive -q --table-mode summary
   
   Report Summary
   
   ┌────────────────────────────────────────────────────────────────────────────────┬────────────┬─────────────────┬─────────┐
   │                                     Target                                     │    Type    │ Vulnerabilities │ Secrets │
   ├────────────────────────────────────────────────────────────────────────────────┼────────────┼─────────────────┼─────────┤
   │ ghcr.io/chainguard-images/scanner-test:unfixed-vulnerability-golang-chainguard │ chainguard │        0        │    -    │
   │ (chainguard 20230214)                                                          │            │                 │         │
   ├────────────────────────────────────────────────────────────────────────────────┼────────────┼─────────────────┼─────────┤
   │ usr/bin/scanner-test-golang-vulnerability                                      │  gobinary  │       15        │    -    │
   └────────────────────────────────────────────────────────────────────────────────┴────────────┴─────────────────┴─────────┘
   Legend:
   - '-': Not scanned
   - '0': Clean (no security findings detected)
   

[wojciechka]

Thank you very much for this. It was exactly what I was looking for. All Golang, Python and Node vulnerabilities are now present and it is what I was expecting to get.

Thank you again for all the help.