sbom-tool icon indicating copy to clipboard operation
sbom-tool copied to clipboard

Published 20 hours ago verified publisher icon microsoft

Create sbom for specific project in solution

Open m-bachner opened this issue 6 months ago • 1 comments

We have a use case where we need to generate an sbom file for one specific project in a bigger solution. As I understand it the sbom-tool needs the complete source directory of the project and all dependent projects. In our case we have other unrelated projects in the same solution.

So is it possible to only keep dependencies and transitive dependencies of one specific csproj in a solution and ignore unrelated projects?

m-bachner avatar Jun 06 '25 09:06 m-bachner

Hi @m-bachner I would suggestion pointing the buildDropPath and buildComponent path parameters to project specific directories, instead of solution specific directories. The exact parameters you provide will depend on the details of your solution/project set up, but making these parameters more specific will limit the scope of the produced SBOM.

sfoslund avatar Jun 26 '25 17:06 sfoslund

Okay, thank you for your reply.

m-bachner avatar Jul 03 '25 06:07 m-bachner