Jan Kowalleck

icon company @sovereigntech icon location Nuremberg, Germany icon location Software Engineer & Architect · FOSS Author & Maintainer · @OWASP @CycloneDX Project Co-Lead

Results 828 comments of Jan Kowalleck

Feature Proposal: Make it possible to correlate package/component dependencies

my thoughts: > [...] it's necessary to have the logical relationships between the packages and the actually required components in order to figure out an educated mitigation strategy if the...

Missing feature in Version 4 / cyclonedx-npm to inlcuse License text

Thanks for the feedback, @vanthome. > I tried to switch to @cyclonedx/cyclonedx-npm but lacks this feature. if you want to request a feature, please open a request in the dedicated...

Missing feature in Version 4 / cyclonedx-npm to inlcuse License text

the missing feature was requested via https://github.com/CycloneDX/cyclonedx-node-npm/issues/256 All questions were answered. An downgrade path was described. I consider this topic as closed. If further discussion is needed, then let me...

Single-line SBOM file is not diff-friendly

feel free to open a pull-request for the feature

chore: Bump setuptools from 47.0.0 to 59.6.0

@dependabot rebase

chore: Bump setuptools from 47.0.0 to 59.6.0

@dependabot rebase

Typing & PEP 561

was caused by https://github.com/CycloneDX/cyclonedx-python-lib/issues/52

Adding type hints

i support the request. @madpah FYI this request might be a duplicate to https://github.com/package-url/packageurl-python/issues/65

Adding type hints

@pombredanne how do you feel about the topic? i mean, we do have 3 options: * adding typing here in the project in code -- generally preferred * adding typing...

Adding type hints

I thank you so much for your effort, @gruebel