Function to compute verification code / SHA1 checksum

SamuraiAku / PkgToSoftwareBOM.jl

Produces a Software Bill of Materials (SBOM) describing your Julia Pkg environment. SBOM is in the SPDX format

MIT License

17 stars 1 forks source link

Function to compute verification code / SHA1 checksum #6

Closed SamuraiAku closed 1 year ago

SamuraiAku commented 1 year ago

Right now assuming that the git tree_hash is equivalent. Need to compute that independently to confirm. And there are edge cases where a git repository is not available.

SamuraiAku commented 1 year ago

The git tree_hash is not equivalent. Added a function spdxchecksum() to SPDX.jl that computes it correctly.