Jamie Magee
Jamie Magee
[`FluentAssertions.Analyzers`][1] is a [Roslyn analyzer][2] for [`FluentAssertions`][3]. It's based on [the `FluentAssertions` tips][4]. Adding it to Component Detection, and fixing all of the warnings it gives will make sure we...
Similar to the support that we have for SPDX SBOMs in [`Spdx22ComponentDetector`][1], we should also add support for CycloneDX SBOMs. References: - [CycloneDX specification][2] - [CycloneDX NuGet package][3] [1]: https://github.com/microsoft/component-detection/blob/main/src/Microsoft.ComponentDetection.Detectors/spdx/Spdx22ComponentDetector.cs...
Currently, all the install methods for Component Detection are to come to this repo and download the tool from the releases. I think it would be much more user friendly...
In .NET 6, there were many performance improvements made to marking classes as `sealed`. [Microbenchmarks show somewhere between 2x to 500x performance improvement][1]. This may require #455 to be completed...
Currently, most of our classes are `public`. This was fine whenever Component Detection wasn't open source. However, now that it is open source, and we _try_ to follow semantic versioning,...
We're receiving some support emails about poor performance for large Python projects. We should profile this detector, identify any hotspots, and optimize them. Potentially related to #108
[Nullable reference types][1] were introduced in C# 8 (.NET Core 3.0) and are enabled by default in new projects created targeting .NET 6. They help to prevent `NullReferenceException`s with 3...
In #184 and #230 we migrated from `Nett` to `Tomlyn` as our TOML parsing library as `Nett` was unsupported and deprecated. We used the `IgnoreMissingProperties` option to allow us to...
### Motivation I was seeing the same error as #1485. ### Implementation Added the import recommended by @tadman. ### Tests I don't think there's an easy way to test this,...
This is an overarching issue to track analyzer warnings that are currently silenced. To fix a single warning: 1. Remove the warning silence from [`.editorconfig`](https://github.com/microsoft/sbom-tool/blob/main/.editorconfig) 1. Run a build locally...