-
### Current Behavior
Generate an SBOM of a docker image using syft:
`syft packages mcr.microsoft.com/oss/kubernetes-csi/csi-resizer:v.1.1.0 -o cyclonedx-json > test.json`
This will result in an SBO…
-
### Current Behavior
Currently, Dependency-Track lacks only support for detecting internal components using component name, group based regex.
### Proposed Behavior
Integrate CEL-based expression …
-
As of today, I noticed [`cyclonedx-go/testdata`](https://github.com/CycloneDX/cyclonedx-go/tree/795ee183544e3f8376b984e911f00188f79e90d8/testdata) only provides `valid-*` sample test BOM files in XML …
-
PGO: postgres-operator:ubi8-5.5.0-0
PGADMIN: crunchy-pgadmin4:ubi8-7.8-0
POSTGRES: crunchy-postgres:ubi8-16.1-0
We deployed pgadmin in namespace scoped mode.
We exposed pgadmin using an virtua…
-
Hello 👋. I have quickly reviewed the spec draft here and noticed that only CycloneDX and SPDX are identified. Is SWID, more specifically the compact CBOR alterntive [in IETF RFC9393](https://datatrack…
-
Must include:
Supplier Name
Component Name
Unique Identifier
Version String
Component Hash
Relationship
Author Name
Create using (TBD -- in process of evaluating SPDX, SWID, CyclineDX) format
![imag…
-
### The problem
I have a Washingmachine WCI860 and a Tumble dryer PDR508HP. Both were showing in Home Assistant but now the dryer is no longer showing up. Everything worked good before, no changes to…
-
App PP v1.4 has an app note in FPT_IDV_EXT.1 that says SWID tags will be required in "the next major release" of the PP. Based on this, we should consider whether that is still applicable and, if so, …
-
visit this website : https://pages.nist.gov/swid-tools/swid-maven-plugin/#the-assembly-swid-generator
use maven plugin , build local webapp throw error:
error: Assembly is incorrectly configu…
-
aside from the properties for the normal software properties, which are defined here:
https://github.com/usnistgov/swid-tools/blob/master/swid-builder/src/main/java/gov/nist/secauto/swid/builder/outp…