jbom can't make SBOM

I want to make SBOM for Apache Tomcat . But it's made like this. What should I do?

{ "bomFormat" : "CycloneDX", "specVersion" : "1.4", "serialNumber" : "344e6328-1f3b-46e2-a6eb-3a459c8181c2", "version" : 1, "metadata" : { "timestamp" : "2023-08-22T09:43:50Z", "tools" : [ { "vendor" : "Eclipse Foundation - https://projects.eclipse.org/projects/technology.jbom", "name" : "jbom", "version" : "1.2.2-SNAPSHOT" } ], "component" : { "name" : "127.0.0.1 (localhost.localdomain)", "description" : "Java", "type" : "application" }, "manufacture" : { "name" : "Unknown" } }, "dependencies" : [ ] }

Aug 22 '23 09:08 Lizzulizzu

I want to make it as below.

{ "name" : "Apache Tomcat", "version" : "8.5.15", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "43ba9326ac5b4bdecb3d221048387853" }, { "alg" : "SHA-1", "content" : "a92b066b0ea9ee1cb05b7d5e4bfed4ad8898f741" } ], "properties" : [ { "name" : "path", "value" : "BOOT-INF/lib" }, { "name" : "archive", "value" : "tomcat-embed-websocket-8.5.15.jar" }, { "name" : "codesource", "value" : "/root/jbom/target/test-classes/spring-petclinic-1.5.1.jar!/BOOT-INF/lib/tomcat-embed-websocket-8.5.15.jar" }, { "name" : "maven", "value" : "https://search.maven.org/search?q=1:a92b066b0ea9ee1cb05b7d5e4bfed4ad8898f741" } ], "type" : "library" }

Aug 22 '23 09:08 Lizzulizzu

jbom creates an SBOM for an entire running Java application. Can you describe your environment a bit more? What did you run?

Jun 10 '24 20:06 planetlevel

jbom jbom copied to clipboard

can't make SBOM

jbom
jbom copied to clipboard