feat(importCDX): Add functionality to configure release creation when importing SBOM to an existing project

eclipse-sw360 / sw360

SW360 project

https://www.eclipse.org/sw360/

Other

116 stars 96 forks source link

feat(importCDX): Add functionality to configure release creation when importing SBOM to an existing project #2458

Open sameed20 opened 1 month ago

sameed20 commented 1 month ago

This PR introduces the feature that allows users to configure release creation when importing CycloneDX SBOM to an existing project.

closes: #2435

akshitjoshii commented 1 month ago

Testing this PR.

akshitjoshii commented 1 month ago

@sameed20 The REST API docs have not been updated. Pls update the docs for this endpoint as well

akshitjoshii commented 1 month ago

@sameed20 Feature is working as expected if the component has a VCS field in the SBOM for both orphan and non-orphan pkgs. But if an orphan pkg is present in the project and the SBOM also has different version of the orphan pkg then the it is simply adding the orphan pkgs and never replacing it. Same behaviour is seen when imported from UI or rest.