[catalog] No description of `Language` field

ossf / sbom-everywhere

Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption

Apache License 2.0

68 stars 22 forks source link

[catalog] No description of `Language` field #63

Open funnelfiasco opened 1 month ago

funnelfiasco commented 1 month ago

The SBOM Catalog's contributing docs don't mention the Language field that appears in data.yaml. From existing entries, it seems to be "what language ecosystems does this tool work in?" but it's not entirely clear.

In #62, I used "generic" because I saw other examples of that, but I'm not sure if that's...right.

funnelfiasco commented 1 month ago

The tool tip on the catalog itself says:

Filter to distinguish between different programming languages, build tools or operating system

But it's not clear if the language a tool is written in applies here. Arguably, these should be three separate values (e.g. Language, SupportedTool, and SupportedOS)

joshbressers commented 2 weeks ago

Would I be correct in assuming #65 resolves this?

funnelfiasco commented 2 weeks ago

No, #65 is for the License field, but this one is for Language.