This seems like a good way to go to by adding a bom-ref to the metadata/component and then adding that bom-ref to the dependencies with all the top-level dependencies into it.
rubocop -A run at the root of your checkout will help automatically fix most of the things that Codacy complains about it. It is right that the new top_level_pods function does not use the lockfile parameter so that can be removed.
This seems like a good way to go to by adding a bom-ref to the
metadata/componentand then adding that bom-ref to the dependencies with all the top-level dependencies into it.rubocop -Arun at the root of your checkout will help automatically fix most of the things that Codacy complains about it. It is right that the newtop_level_podsfunction does not use thelockfileparameter so that can be removed.