We do not re-collect git repo in parent POMs

nexB / purldb

Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat is at https://gitter.im/aboutcode-org/discuss

https://purldb.readthedocs.io/

29 stars 20 forks source link

We do not re-collect git repo in parent POMs #494

Open pombredanne opened 2 weeks ago

pombredanne commented 2 weeks ago

We do not collect git repo in parent POMs and we should. See for instance: https://repo1.maven.org/maven2/ch/qos/logback/logback-parent/1.1.11/logback-parent-1.1.11.pom which is the parent of: https://repo1.maven.org/maven2/ch/qos/logback/logback-classic/1.1.11/logback-classic-1.1.11.pom

pombredanne commented 1 week ago