ort icon indicating copy to clipboard operation
ort copied to clipboard
verified publisher icon oss-review-toolkit

Capture the dependency graph in CycloneDX BOMs

Open sschuberth opened this issue 4 years ago • 0 comments

Since the CycloneDX 1.2 spec, the dependency graph moved from an extension to a core feature. So after https://github.com/oss-review-toolkit/ort/pull/3897 is merged, we could make use of it as the hierarchy of dependencies is valuable additional information.

sschuberth avatar Apr 19 '21 08:04 sschuberth