Jan Kowalleck
Jan Kowalleck
:mag_right: track the effort of integrating CycloneDX SBOM in `composer` - initial feature request: 1. https://github.com/composer/composer/issues/8251 1. https://github.com/composer/composer/issues/11693 - possible implementation: TBD - released via: TBD
## Is your feature request related to a problem? Please describe. on CI, i always need to have a php composer available in order to create an SBOM of a...
**:mega: please discuss the options and expectations in the comments below** ---- ## Is your feature request related to a problem? Please describe. CycloneDX spec 1.5 brought `metadata.lifecycles`, with allowes...
## Is your feature request related to a problem? Please describe. If a BOM was generated as reproducible, this should be easily visible from the BOM. Therefore, https://github.com/CycloneDX/cyclonedx-property-taxonomy/pull/70 exists ##...
currently the code of `CycloneDX\Composer\Plugin` is not integration-testable in a good way, and needs some love. since the whole code is marked as `@internal` a refactoring can be done without...
the project: https://app.codacy.com/gh/CycloneDX/cyclonedx-php-composer/dashboard generate coverge on demo runner tests upload test results upload test coverge on pullrequest on tag "v*"
packages may come from local sources. packages may come from alternative registries. ## acc / crit - [ ] local components are marked with ` relative: true`, `path: /path/to/pod` -...
benefit: have the config in a file, so no CLI parameters are needed parameter defaults are read from the config-file, and may override system defaults. parameters can still be overridden...
describe the architecture of the plugin target audience: developers
https://www.npmjs.com/package/eslint-config-standard-with-typescript is deprecated. > This package has been deprecated > Author message: `Please use eslint-config-love, instead.` new: https://www.npmjs.com/package/eslint-config-love?activeTab=readme