Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

have "formulation" as part of the BOM - MBOM #1019

Open
jkowalleck opened this issue Jul 5, 2023 · 0 comments
Open

have "formulation" as part of the BOM - MBOM #1019

jkowalleck opened this issue Jul 5, 2023 · 0 comments
Labels
enhancement New feature or request help wanted Extra attention is needed idea schema 1.5

Comments

@jkowalleck
Copy link
Member

jkowalleck commented Jul 5, 2023
edited

Is your feature request related to a problem? Please describe.

CycloneDX 1.5 supports formulation: https://cyclonedx.org/guides/sbom/formulation
This could be used to document how webpack was configured and how it compiled/packed the results.

Describe the solution you'd like

  • if target is spec 1.5, then the result should contain information how webpack built the result.
  • add Manufacturing Bill of Materials (MBOM) to the capabilities/keywords
  • ... to be continued & discussed

Describe alternatives you've considered

--

Additional context

need to POC/investigate what information can be gathered from webpack, and if the information qualifies for "CDX formulation"
@jkowalleck jkowalleck added enhancement New feature or request schema 1.5 labels Jul 5, 2023
@jkowalleck jkowalleck pinned this issue Jul 5, 2023
@jkowalleck jkowalleck changed the title have "formulation" as part of the SBOM have "formulation" as part of the BOM - MBOM Jul 7, 2023
@jkowalleck jkowalleck added help wanted Extra attention is needed idea labels Jul 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request help wanted Extra attention is needed idea schema 1.5
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jkowalleck