feat: express list of contributors of an element(component, ...)

CycloneDX / specification

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX

https://cyclonedx.org/

Apache License 2.0

337 stars 57 forks source link

feat: express list of contributors of an element(component, ...) #448

Open prabhu opened 2 months ago

prabhu commented 2 months ago

We currently do not have a way to track the full list of all contributors for a component version. Since contributors could be different from authors, we need a better mechanism to track individual committers and authors using nested components or externalReferences (which could be a URL or BOM-Link).

prabhu commented 1 month ago

releaseNotes could also benefit from dedicated organizationContact attributes to track contributors, reviewers, and releasers.