cyclonedx-cli
cyclonedx-cli copied to clipboard
CycloneDX
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
…and BomMetadataReferThisToolkit() methods in OOP fashion Depends on library changes from https://github.com/CycloneDX/cyclonedx-dotnet-library/pull/256 * No idea how to facilitate this with C# recipes to pass CI before that PR gets merged...
Faced an issue regarding BOM component. In the BOM there is a column named "Type", for converting it from CSV to JSON it is encountering an error. Command Used in...
I am trying to convert SPDX to Cyclone DX with cli while i am trying this option i am facing - Unhandled exception: System.Text.Json.JsonException: The JSON value could not be...
Fix truncating pre-existing output file when overwritten Closes: https://github.com/CycloneDX/cyclonedx-cli/issues/255 Closes: https://github.com/CycloneDX/cyclonedx-cli/issues/329
Tried to validate a sbom using cyclonedx-cli command: ``` cyclonedx validate --input-format json --input-file /tmp/scan-trivy.cdx --fail-on-errors --input-version v1_4 ``` What I expected: Invalid sboms should result in a clear and...
When converting a cyclonedx.xml to json and a dependency/component has multiple licenses, only the first license is taken into account. ``` cyclonedx-cli convert \ --input-format xml \ --input-file ${ORT_OUTPUT_DIR}/bom.cyclonedx.xml \...
To make the CycloneDX CLI tool more flexible, it could be refactored in a DLL with an optional console app front end. That way it could be used directly in...
While running dev-tests with different builds of the tool, I've got invalid JSONs, looking like this (at where the parser reading them back complained): ```` ... { "ref": "pkg:maven/io.cucumber/[email protected]?type=jar", "dependsOn":...
