tools
tools copied to clipboard
spdx
SPDX Tools
Currently, when jar commands fail, a single message line is output. This is not helpful for debugging, as it give no clues as to the source of the issue. The...
The current version used by Jena ARQ is 0.10.0 which has a medium severity CVE-2018-11798. Although likely does not pose a threat to the current usage of libthrift within the...
Currently, when parsing a tag/value PackageVerificationCode, the `excludes:` is not removed when adding the excluded file name to the PackageVerificationCode object. For example: ``` PackageVerificationCode: d6a770ba38583ed4bb4525bd96e50461655d2758 (excludes: ./package.spdx) ``` results...
"PackageLicenseConcluded: DocumentRef-1:LicenseRef-XY" in an SPDX document is valid according to Appendix IV of the spec., but the verifier fails: > Invalid license id 'DocumentRef-1:LicenseRef-XY'. Must start with 'LicenseRef-' and made...
Provide a executable JAR instead of letting the users compile it by them self.
The method https://github.com/spdx/tools/blob/fcdf7d243b7a66288de3630c56324e6dde4ff74c/src/org/spdx/compare/LicenseCompareHelper.java#L549 is used to compare texts against the SPDX license list. It currently iterates through all licenses and calls a very expensive comparison method on each license. The...
When I try to run `java -jar spdx-tools-2.1.12-jar-with-dependencies.jar MergeSpdxDocs` on some SPDX files, I get the following error: ``` The merge tools are currently being upgraded to SPDX 2.0 ```...
[exception.tag.txt](https://github.com/spdx/tools/files/1598423/exception.tag.txt) When converting an SPDX tag file to rdf using SPDXTools then an error is produced if the PackageLicenseInfoFromFiles tag contains the name of a license exception. The SPDX specification...
If a destination file for an SPDX tool command already exist, the command files with a Error: File [file] already exists - please specify a new file. It would be...
This is a limitation in Microsoft Excel. The error message for this is not very descriptive: Unexpected error translating the tag-value to spreadsheet: The maximum length of cell contents (text)...