Ashwani Kumar Kamal
Ashwani Kumar Kamal
Hi can I work on this issue?
I kind of skimmed through the code base and found [this](https://github.com/aquasecurity/trivy/blob/471dcc3406cfc1d49cc3f79e90642b534e9073e2/pkg/scan/local/service.go#L482) function which seems to exclude dev dependencies. Could you confirm if I'm going in the right direction with this,...
Hi I missed updating the docs for this one Could we reopen this issue, I will link a PR for updating the docs
Thanks for dividing the issue in two parts, I will keep you posted about this
Hi @knqyf263, `bun.lock` uses JSON with trailing commas, related closed issue [here](https://github.com/oven-sh/bun/issues/11863). Do we have a json unmarshaller in the codebase which supports this? Asking because [xjson.UnmarshalRead](https://github.com/aquasecurity/trivy/blob/26437be083960d17bee8b1b37b8a6780eff07981/pkg/x/json/json.go#L46) apparently returns error...
> I updated the logic a bit. @DmitriyLewen thanks a lot for this, code looks much cleaner now > Can you take a look and tell me I didn't break...
Hi @knqyf263 can I work on this issue?
Hi @knqyf263, I looked through the code and found parser being used in the analyzer you pointed out, for example [yarn](https://github.com/aquasecurity/trivy/blob/8995838e8d184ee9178d5b52d2d3fa9b4e403015/pkg/dependency/parser/nodejs/yarn/parse.go) We will require a parser for bun as a...
Hi @DmitriyLewen, sure I can update the docs. Do you mean to update the information about the `--include-dev-deps` flag when using the cli? I can see the following description on...
Hi please find the PR for updating docs here: #8830