Closed viveksahu26 closed 1 month ago
@viveksahu26 not sure cloning the entire repo just to get the files is a good idea. Is there a way just to pull files that are sboms. We can fix what extensions we look at.
So, yeah @riteshnoronha . It is possible to implement in a different way i.e. apart form cloning whole repo:
@viveksahu26 let me know if this is ready for review
@viveksahu26 let me know if this is ready for review
Yeah it's ready for review...
Hey @riteshnoronha , remove complexity which were there due to 2 reasons:
https://github.com/interlynk-io/sbomqs/tree/main/samples
. So, now removed support for dir, only support for file url is there: https://github.com/interlynk-io/sbomqs/blob/main/samples/sbomqs-spdx-syft.json
If we support urls then this should work.
Should work in all places we support file names. e.g compliance etc
closes: #266 This PR add support for
sbomqs score
command to score directly from git URLs. Till now it funtionality limited to local files. For example:$ sbomqs score -b <sbom.spdx.json file>
New feature supports:
Example: