cyclonedx-rust-cargo icon indicating copy to clipboard operation
cyclonedx-rust-cargo copied to clipboard
verified publisher icon CycloneDX

Record the rustc target platform into the SBOM

Open Shnatsel opened this issue 2 years ago • 3 comments

Fixes #528

Shnatsel avatar Nov 01 '23 16:11 Shnatsel

I think this is basically good to go, we just need to wait for the result of https://github.com/CycloneDX/cyclonedx-property-taxonomy/issues/75

lfrancke avatar Nov 06 '23 09:11 lfrancke

That property needs a fair bit of design work. We need to specify where it is legal for it to appear: on metadata only, or does it also appear on a component to specify what target is it for? When recording dependencies for all platforms, do we have a boolean flag to indicate it, or do we list all platforms considered? If the latter, does it make sense to make that property an array or a set, instead of specifying it multiple times?

Shnatsel avatar Nov 07 '23 01:11 Shnatsel

I've opened https://github.com/CycloneDX/cyclonedx-property-taxonomy/pull/78/ upstream. Once that's merged, this PR will need to be reworked to match that schema.

Shnatsel avatar Nov 08 '23 22:11 Shnatsel

https://github.com/CycloneDX/cyclonedx-property-taxonomy/pull/78 is merged, so it would be nice to revive this.

Shnatsel avatar Aug 20 '24 19:08 Shnatsel

Superseded by #762

Shnatsel avatar Aug 20 '24 19:08 Shnatsel