-
spdx-rs claims support for serialization/deserialization of SPDX documents in formats corresponding to the json schema (JSON/yaml), and tag/value.
@alilleybrinker should we use that in cargo-spdx?
tofay updated
2 years ago
-
The function restoreRelationships is throwing an InvalidSPDXAnalysisException if an element for the given elementId cannot be found within the addedElements, i.e. the elements of the current SPDX file…
-
JSONMaestro could be useful for generating package.json files to get users' packages and libraries and modules published to npm/npmjs.
This could also be a good tool to check the package.json file to…
-
I had a SPDX-managed repository. This is the `project.spdx.yml`
```
SPDXID: "SPDXRef-DOCUMENT"
spdxVersion: "SPDX-2.2"
name: "myapplication"
documentNamespace: "bosch:/myapplication"
documentD…
-
Consider this [this example](https://github.com/fsfe/reuse-tool/files/7488242/Incorrect.use.of.LicenseInfoInFile.zip):
```
Incorrect use of LicenseInfoInFile
├── ColemanCount.png
├── ColemanCount.…
-
I'd like to package up these tools, but I find "tools-python" to be a very bad name.
Is it possible to change name to spdx-tools or python-spdx-tools ?
-
Instead of configuring subproject via the wacky taskExtension (which maybe should be limited to use only for mapping maven deps). We have a companion plugin to ` org.spdx.sbom` called `org.spdx.sbom-p…
-
I'm having some trouble with fixing a bug in https://github.com/clearlydefined/spdx
TLDR; We are having issues figuring out where parantheses go in SPDX expressions. This is causing validation erro…
-
For Kodi code we have switched to the SPDX-License-Identifier which makes it easier to identify what licenses are used. Perhaps this is a good idea as well for add-ons. Just as a suggestion for the de…
-
**Tool Version** v0.0.8
**OS** Windows 10
Observed that PackageSupplier values is not consistent across all SPDX files for all languages. Sometimes when person details are displayed then Organizat…