-
### Feature Description
clomonitor requires a valid SBOM is present in a repo to improve the repo score
**SOFTWARE BILL OF MATERIALS (SBOM)**
ID: sbom
List of components in a piece of software…
-
Given the technology is growing into the level of tens of thousands of repositories, we should have a better way to scale the ingestion of that information.
SBoMs are files that (ideally) contain all…
-
When I running maven command line with **mvn clean org.cyclonedx:cyclonedx-maven-plugin:2.8.1:makeAggregateBom** using **-DexcludeGroupId or -DexcludeArtifactId** doesn't seem to ignore the required a…
-
### Current Behavior
In further improvement related to https://github.com/DependencyTrack/dependency-track/issues/4230
I believe it is a must to set a scope limit of policies per "component" not onl…
-
**What would you like to be added**:
Users are looking to create SBOMs that meet the NTIA Minimum Fields requirements. Users typically do this through a two step process.
1. Generate an SBOM with …
-
## Summary
Describe the bug - a clear and concise overview of what the bug is.
optional flag `-f ` does not output a different file type.
## Background
Provide context to the issue - provi…
-
This issue is to capture discussions happening in various SIGs around creating a software bill of materials.
-
MegaLinter would run faster on my project if I had a flavor containing the following list of linters:
BASH_EXEC, BASH_SHELLCHECK, BASH_SHFMT, COPYPASTE_JSCPD, POWERSHELL_POWERSHELL, POWERSHELL_POWE…
-
**Is your feature request related to a problem? Please describe.**
I am using this Git repo as submodule in my projekt.
Now I want to get the released version to access also the SBOM file, like:
…
-
There is a concept of [SBOM](https://www.cisa.gov/sbom) that's implemented with [different standards](https://scribesecurity.com/sbom/standard-formats/#what-is-an-sbom-standard) and one of them is Cyc…