Gary O'Neall
Gary O'Neall
I'm not sure if this is a security vulnerability, but the redirect probably should use HTTP rather than HTTPS. Just changing it to HTTPS will likely mess up those running...
If there is an unexpected exception from the Java Bridge, add some text before the message to describe the error and action. For example "An unexpected error occurred. Please submit...
Request from @kestewart on the 4 August tech call to add an SPDX file for the online tools as part of our deployment efforts.
Programmatic access could put a substantial load on the service if multiple requests are made with high frequency. Suggest an enhancement to govern the rate at which requests from the...
This issue is to provide feedback on the SPDX 3.0 design and implementation prior to the pull request being created. The [v3-prototype](https://github.com/spdx/Spdx-Java-Library/tree/v3-prototype) branch is being used for development. There is...
Sonar is run on each pull request, but there is not check to see if it passed. It would also be nice to run the Java FindBugs and flag any...
With the fix for [verifying related elements](https://github.com/spdx/Spdx-Java-Library/pull/159) verify will now report any Relationship as invalid if it references an invalid Element, this will create one line for the package, and...
Add examples
It would help first time users to create some examples for common library usage. Some ideas for different examples: - [ ] Creating a document, adding a few files using...
The package information is missing for the packages after the second compare. This is only for one package, all other package and info matches. Attached are the input and output...
When comparing 2 SPDX documents with a LicenseRef containing no text, the comparison of those LicenseRef's is false, but no explanation is given. We probably do not want them to...