Open prabhu opened 2 weeks ago
For scipy
cupy-backends is not found on PyPI.
If this package is available from PyPI or a registry, its name might be different from the module name. Raise a ticket at https://github.com/CycloneDX/cdxgen/issues so that this can be added to the mapping file pypi-pkg-aliases.json
Alternatively, if this is a package that gets installed directly in your environment and offers a python binding, then track such packages manually.
Assuming the version as latest for the package cupy-backends
cupyx is not found on PyPI.
If this package is available from PyPI or a registry, its name might be different from the module name. Raise a ticket at https://github.com/CycloneDX/cdxgen/issues so that this can be added to the mapping file pypi-pkg-aliases.json
Alternatively, if this is a package that gets installed directly in your environment and offers a python binding, then track such packages manually.
Assuming the version as latest for the package cupyx
multiple license expressions found [
{ expression: 'GNU General Public License (GPL)' },
{ expression: 'Public Domain' }
]
Repo: https://github.com/DefectDojo/django-DefectDojo