Robert
Robert
@tdruez I believe I've created this ticket prior to us having PurlDB up and running. Leveraging purl2url for SBOM imports makes perfect sense if no PurlDB instance is being used,...
Sorry if this ticket is too similar or has too much overlap.
The implementation issue is in the `get_cyclonedx_bom` function where all dependencies get added to the root node regardless of how the dependency tree looks like. The function would first have...
It seems this even happens with successful scanned projects in ScanCode.io. This can cause problems when trying to fix a package import was seemingly not properly completed. For instance, in...
Ideally, one should be able to pick whether to: - Repeat the entire scan - Only repeat the scan for previously failed pipelines and reimport for already successfully completed The...
Thank you very much! I'll give it a try together with the other fix once I'm done with my other tasks. I will probably not have enough time to do...
Solution is perfect! Great UX, state is immediately visible and easy to use.
This may still be relevant for those that do not use PurlDB, but PurlDB does mostly solve this for us.
@tdruez Thank you for your work on enhancements! Just to make sure, can "Improve Packages from PurlDB" still be applied potentially overwriting results by ScanCode.io and will this ensure that...
This might as well be an issue on the PurlDB side, but it seems to me that technically the entries are correct so it should be on DejaCode's side to...