Java - Maven - NOASSERTION is displayed for PackageHomePage for all packages even when ${project.url} exists in pom.xml

opensbom-generator / spdx-sbom-generator

Support CI generation of SBOMs via golang tooling.

396 stars 109 forks source link

Java - Maven - NOASSERTION is displayed for PackageHomePage for all packages even when ${project.url} exists in pom.xml #128

Open niruautomation opened 3 years ago

niruautomation commented 3 years ago

@prathapbproximabiz Tool Version Cloned code from main branch of https://github.com/spdx/spdx-sbom-generator on 11-06-2021 and built the tool Test Repo https://github.com/zxing/zxing OS Windows 10

Observed that NOASSERTION is displayed for PackageHomePage for all packages even when ${project.url} exists in pom.xml

SPDX file

POM file

prathapbproximabiz commented 3 years ago

@mlehotskylf @niravpatel27 we are setting PackageHomePage information at package, but it is not displayed from formatting module. @niravpatel27 could you please confirm it. Thank you.

prathapbproximabiz commented 3 years ago

Reported issue fixed, will send PR shortly.

prathapbproximabiz commented 3 years ago

@niruautomation Once below PR is approved and merged, please retest it. Thank you. https://github.com/spdx/spdx-sbom-generator/pull/150

niruautomation commented 3 years ago

@prathapbproximabiz I cloned the code from master on 14-06-2021, build the tool and verified the ticket. Issue is fixed only for root package. Issue still exists for other packages

Example1

Example2