cyclonedx-gomod icon indicating copy to clipboard operation
cyclonedx-gomod copied to clipboard

Published 20 hours ago verified publisher icon CycloneDX

Capture compiler information

Open nscuro opened this issue 2 years ago • 0 comments

We're currently only capturing the Go version in app and mod. Ideally we would also include info about the Go compiler, like hashes of go and most likely more.

We'll need to do some research as to what properties make sense to include in the SBOM.

This was part of the feedback in https://zt.dev/posts/analysis-cyclonedx-gomod-sbom/

nscuro avatar Feb 11 '22 17:02 nscuro