Hi Daniel, I'm currently working on packaging syft (the SBOM generator from Anchore) and noticed your ITP for grype from January 2024.
Since grype and syft are companion tools (grype uses syft for package detection), I wanted to check on the status of your packaging effort. Are you still actively working on grype? If not, would you be open to me taking over the ITP, or would you prefer to collaborate? I'm planning to submit syft to mentors soon and having both tools available would benefit the Debian supply chain security ecosystem. Best regards, Juan Méndez -- http://vejeta.com Jabber: [email protected] I'm an FSF member -- Help us support software freedom! https://my.fsf.org/join?referrer=327575
