Paul Horton
Paul Horton
Duplicates #354
Leaving this open as some work may be required in this application for outputting dependency graphs once `cyclonedx-python-lib` successfully supports `bom.dependencies` - see https://github.com/CycloneDX/cyclonedx-python-lib/issues/7.
Hey @mr-zepol - am I correct that you are seeing the following (XML - example) generated by this library? ``` ... NOASSERTION some-url-here ... ``` In other words and invalid...
@coderpatros - does `cyclonedx-dotnet` perform schema validation? I'm assuming not based on the above report?
Hi @mikekanenz - thanks for the Issue. It was removed partly in oversight as `jake` was refactored. We'll get this added back for you.
@DmytroLitvinov - given OSS Index has introduced breaking changes (see #121) - can you look to see if: 1. You are still seeing this issue (we are aware an OSS...
Hi @blackstream-x, Thanks for the request. Can you let us know: 1. What version of `jake` you are using? 2. What command you are invoking? `jake` (should) already support passing...
@itamarst - FYI we've added Conda support in `jake` when generating an SBOM: ``` conda list --explicit | jake sbom -t CONDA ``` We're looking next into supporting Conda and...
Thanks @bollwyvl - will take a look at that package... - can you share a complete output that includes the above package from either `conda list --explicit` and/or `conda list...
@bollwyvl - I've done a bit more digging on this, and specifically the example you've provided above. FYI - the parsing of Conda lock files is actually handled by a...