-
**What happened**:
In the case of scanning a Go project with a go.mod file with a replace statement, e.g. [here](https://github.com/golang/tools/blob/master/gopls/go.mod). It supposed to recursively …
-
For example, I saw this (_not_ a valid SPDX expressions):
`GPL-3.0-or-later-with-Autoconf-macro-exception`
Which probably should rather be this (a valid SPDX expressions):
`GPL-3.0-or-later WITH Au…
-
Steps to reproduce:
1) flatten: `npx truffle-flattener ./contracts/WrappedShift.sol >> ./build/flattened/WrappedShift.sol`
2) generate docs: `npx solidity-docgen -i ./build/flattened/`
Error:
…
-
### Component
Forge
### Have you ensured that all of these are up to date?
- [X] Foundry
- [x] Foundryup
### What version of Foundry are you on?
forge 0.2.0 (d1ab09d 2024-03-30T00:17:2…
-
Hello,
I got an error message "error in getting mvn transitive dependency tree and parsing it" when I tried to generator from a simple Maven project:
```
$ ./spdx-sbom-generator -p /home/ubuntu…
-
### What bug did Slither miss and which detector did you anticipate would catch it?
When I run slither ./a.sol I get AssertionError
### Frequency
Very Frequently
### Code example to reprod…
-
Based on the CNCF [guideline](https://github.com/cncf/foundation/blob/main/copyright-notices.md) we can use something like below:
```
Copyright Confidential Containers Contributors
```
-
**Yev Bronshteyn 2016-04-26 17:12:03 UTC**
Currently, either all the files in a package must be specified or, via the filesAnalyzed attribute, none.
However, there's a use case for specifying …
-
Ensure that as part of the test, you can run the sbom generator against yourself and verify that it actually works.
At least at a minimum we start there :)
-
I'm using the official buildroot image of Mini board.
This is before customizing the buildroot.
![Mini-Buildroot-device-1](https://github.com/LuckfoxTECH/luckfox-pico/assets/6020549/c7232b7c-2c35-…