Is there any support for `conda` modules?

[ghost]

I have a python project that I would like to create an sbom for. I currently have it set up using conda, but that means that some requirements (e.g. opencv), have a different name in my requirements file (e.g. opencv instead of opencv-python. This means that if I try to build the module, I can't pip install the resulting wheels as it tries to pip install the requirements and fails. What is the right way to use sbom4python for a conda project?

[anthonyharrison]

@mtzeth Thanks for the question.

I haven't tried sbom4python with a conda project. sbom4python uses pip to extract information about the modules but doesn't install any modules (it only works with installed modules in a system).

There isn't a version of sbom4python in conda. Feel free to propose a oull requqest to submit a version of sbom4python to conda-forge.

You could try pip install sbom4python --no-deps and pip install lib4sbom --no-deps

Try running sbom4python, it probably won't work, so you may have to install more packages depending on what options you are interested in.

Can you try the following on a conda system (what environment (Linux, Windows etc) and conda installation are you using?) and paste the output here?

Install sbom4python in a clean python virtual environment (assuming conda has this facility) Run the following command sbom4python --module sbom4python --debug

Thanks