-
**Problem**
The SBOM community has identified multiple types of SBOM:
Software Bill of Materials (SBOM) -- the default of course
Software-as-a-Service Bill of Materials (SaaSBOM)
Hardware Bill o…
-
There is a concept of [SBOM](https://www.cisa.gov/sbom) that's implemented with [different standards](https://scribesecurity.com/sbom/standard-formats/#what-is-an-sbom-standard) and one of them is Cyc…
-
The SBOM generator is great! But often I want to know "Hey where did all these derivations come from" and for that it would be useful if we would also record the details from the flake lock file in t…
-
When running the `Veracode IaC/Secrets Scanning` workflow and the vulnerability database is not accessible, we get a strange results.json not found error:
```
Run veracode/container_iac_secrets_sc…
-
**Is your feature request related to a problem? Please describe.**
A clear unique identification (PURL) of each package/component is missing, but SBOM often includes several package types.
**Des…
-
**_Failed to run command: No module manager found_**
Hi, I am using spdx for the first time, Trying to run spdx on Windows x64 for cloned repo of product which is C# and C++ code.
Running too…
-
**Question**
Hello. I tried to generate SBOM, but I got some errors of "ConnectTimeout". Could you tell me how to solve this?
Please find the attached logs.
[logs.txt](https://github.com/whitesou…
-
**Is your feature request related to a problem? Please describe.**
I only need one project SBOM under my product to be generated and this within a short time of period (max. 3min). But currently I …
-
The WhiteSource UI includes internal libraries in the inventory report when shown as a hierarchy. This is useful information when generating SBOMs. Is it possible to include this in the SBOMs generate…
-
**Issue**
When using esbuild (with --bundle and --minify options) to package projects for use in a Lambda function, the function can not be scanned by Amazon Inspectors SBOM generator tool.
**I…