Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RFC: SBOM generation #714

Open
wants to merge 22 commits into
base: main
Choose a base branch
from
Open

RFC: SBOM generation #714

wants to merge 22 commits into from

Commits on Aug 7, 2023

  1. rfc for npm cli sbom generation 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 7, 2023
    Configuration menu
    Copy the full SHA
    fac44c2 View commit details
    Browse the repository at this point in the history

Commits on Aug 8, 2023

  1. sbom rfc refinement 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 8, 2023
    Configuration menu
    Copy the full SHA
    0b6acf7 View commit details
    Browse the repository at this point in the history

Commits on Aug 9, 2023

  1. spdx example clean-up 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 9, 2023
    Configuration menu
    Copy the full SHA
    be514e6 View commit details
    Browse the repository at this point in the history

  2. spdx example clean-up 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 9, 2023
    Configuration menu
    Copy the full SHA
    649fde5 View commit details
    Browse the repository at this point in the history

Commits on Aug 10, 2023

  1. cyclonedx example clean-up 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 10, 2023
    Configuration menu
    Copy the full SHA
    677ca7c View commit details
    Browse the repository at this point in the history

  2. spdx example clean-up 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 10, 2023
    Configuration menu
    Copy the full SHA
    b354cce View commit details
    Browse the repository at this point in the history

  3. clarify cyclonedx npm properties 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 10, 2023
    Configuration menu
    Copy the full SHA
    b550c58 View commit details
    Browse the repository at this point in the history

  4. clarify cyclonedx sbom output 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 10, 2023
    Configuration menu
    Copy the full SHA
    ab2cea9 View commit details
    Browse the repository at this point in the history

Commits on Aug 14, 2023

  1. clarify use of workspace flags 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 14, 2023
    Configuration menu
    Copy the full SHA
    23170c0 View commit details
    Browse the repository at this point in the history

  2. mention @cyclonedx/cyclonedx-library package 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 14, 2023
    Configuration menu
    Copy the full SHA
    0912839 View commit details
    Browse the repository at this point in the history

  3. mention @cyclonedx/cyclonedx-npm in prior art 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 14, 2023
    Configuration menu
    Copy the full SHA
    52bb0e4 View commit details
    Browse the repository at this point in the history

Commits on Aug 22, 2023

  1. drop section on linked packages 

    Add description of scenarios which will result in errors

Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 22, 2023
    Configuration menu
    Copy the full SHA
    f9738a1 View commit details
    Browse the repository at this point in the history

Commits on Aug 23, 2023

  1. update recommendation about format neutrality 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Aug 23, 2023
    Configuration menu
    Copy the full SHA
    070d29f View commit details
    Browse the repository at this point in the history

Commits on Sep 12, 2023

  1. add --sbom-type flag 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    9db5619 View commit details
    Browse the repository at this point in the history

  2. add info about cdx lifecycle phase 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    617337e View commit details
    Browse the repository at this point in the history

  3. add info about negated --workspaces command 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    fd7783d View commit details
    Browse the repository at this point in the history

  4. switch recommended cdx format to 1.5 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    7da3739 View commit details
    Browse the repository at this point in the history

  5. update impl description 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    777f3dc View commit details
    Browse the repository at this point in the history

  6. remove bikeshedding about re-using npm-ls 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    1ff7335 View commit details
    Browse the repository at this point in the history

  7. formatting fixup 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    d20e4c5 View commit details
    Browse the repository at this point in the history

  8. update spdx exmample 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    4f140b9 View commit details
    Browse the repository at this point in the history

  9. update cdx example 

    Signed-off-by: Brian DeHamer <bdehamer@github.com>
    @bdehamer
    bdehamer committed Sep 12, 2023
    Configuration menu
    Copy the full SHA
    8370368 View commit details
    Browse the repository at this point in the history