ConvertDepsToMap converts a slice of Dependency structs to a map for easier comparison.

DiffDependencies compares two sets of dependencies (represented as maps) and finds what's added in newDeps.

ECOSYSTEM_GO identifies the Go language.

ECOSYSTEM_NPM identifies the NPM ecosystem.

ECOSYSTEM_PYPI identifies the Python Package Index.

IngestStatusComplete means ingestion is done, data available.

IngestStatusFailed ingestion failed permanently.

IngestStatusPending means that the ingestion process is waiting to start.

IngestStatusScoring means the scoring process is underway.

Ecosystems enumerates the supported ecosystems.

Activity captures a package's activity score.

ActivityDescription captures the fields of the activuty score.

Alternative is an alternative package returned from the package intelligence API.

AlternativesList is the alternatives block in the trusty API response.

Dependency represents a generic dependency structure.

HistoricalProvenance has the historical provenance components from a package.

MaliciousData contains the security details when a dependency is malicious.

PackageData contains the data about the queried package.

Provenance has the package's provenance score and provenance type components.

ProvenanceDescription contians the provenance types.

Reply is the response from the package report API.

ScoreSummary is the summary score returned from the package intelligence API.

SigstoreProvenance has the sigstore certificate data when a package was signed using a github actions workflow.

Typosquatting score for the package's name.

TyposquattingDescription captures the dat details of the typosquatting score.

Ecosystem is an identifier of a packaging system supported by Trusty.