From 5d32054ab2b8a635c5d04537be09b413d56314db Mon Sep 17 00:00:00 2001
From: Christian Dupuis <cd@atomist.com>
Date: Thu, 5 Jan 2023 11:20:48 +0100
Subject: [PATCH] Fix secret detection in layer history

---
 sbom/trivy.go | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/sbom/trivy.go b/sbom/trivy.go
index d426320..3dd6e97 100644
--- a/sbom/trivy.go
+++ b/sbom/trivy.go
@@ -18,7 +18,6 @@ package sbom
 
 import (
 	"context"
-	"encoding/json"
 	"fmt"
 	"strings"
 
@@ -93,10 +92,9 @@ func trivySbom(cache *registry.ImageCache, lm *types.LayerMapping, resultChan ch
 	}
 	config := &cache.Source.Image.Metadata.Config
 	for o, h := range config.History {
-		js, _ := json.MarshalIndent(h, "", "  ")
 		secrets := scanner.Scan(secret.ScanArgs{
 			FilePath: "history",
-			Content:  js,
+			Content:  []byte(fmt.Sprintf("%s\n%s\n%s", h.CreatedBy, h.Author, h.Comment)),
 		})
 		if len(secrets.Findings) > 0 {
 			result.Secrets = append(result.Secrets, convertSecretFindings(secrets, types.SecretSource{