How to get of rid of "Unable to find python site-packages
directory. License detection is skipped. err="site-packages directory not found""
#8081
Unanswered
sudhakarmancha
asked this question in
Q&A
Replies: 1 comment
-
Hello @sudhakarmancha
Unfortunately, there is no simple way to detect path to If you want to detect licenses for python dependencies - you need to "help" Trivy detect
Regards, Dmitriy |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Description
Hi Team,
Kudos to the entire team for building a such an amazing tool which enables developers early indication of vulnerabilities.
I have tried Trivy on package manger pom.xml ,the results are very encouraging . But its there is python scan errors.
I tried scanning the GitHub repo : https://github.com/CybOXProject/python-cybox.
Desired Behavior
Dependencies declared in requirements.txt file should be captured and their corresponding licenses should be provided in a json format
Actual Behavior
Ouput for Running trivy repo scan
D:\Shift_Left_Scripts>trivy repo "https://github.com/CybOXProject/python-cybox"
2024-12-11T18:34:42+05:30 INFO [vuln] Vulnerability scanning is enabled
2024-12-11T18:34:42+05:30 INFO [secret] Secret scanning is enabled
2024-12-11T18:34:42+05:30 INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-12-11T18:34:42+05:30 INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
Enumerating objects: 4265, done.
Counting objects: 100% (4265/4265), done.
Compressing objects: 100% (1954/1954), done.
Total 4265 (delta 3274), reused 3089 (delta 2306), pack-reused 0 (from 0)
2024-12-11T18:34:49+05:30 WARN [pip] Unable to find python
site-packages
directory. License detection is skipped. err="site-packages directory not found"2024-12-11T18:34:49+05:30 INFO Number of language-specific files num=1
2024-12-11T18:34:49+05:30 INFO [pip] Detecting vulnerabilities...
D:\Shift_Left_Scripts>
Reproduction Steps
Target
Filesystem
Scanner
License
Output Format
Table
Mode
Standalone
Debug Output
Operating System
Windows 10
Version
Checklist
trivy clean --all
Beta Was this translation helpful? Give feedback.
All reactions