Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Extend cycloneDX presenters with syft-specific values #154

Closed
wagoodman opened this issue Aug 24, 2020 · 2 comments · Fixed by #710
Closed

Extend cycloneDX presenters with syft-specific values #154

wagoodman opened this issue Aug 24, 2020 · 2 comments · Fixed by #710
Labels
enhancement New feature or request I/O Describes bug or enhancement around application input or output

Comments

@wagoodman
Copy link
Contributor

wagoodman commented Aug 24, 2020
edited

The CycloneDX spec allows for user-defined values to be added to most select sections. We should extend each component to report out grype-specific information. Similar to our json output, but embedded in each component section:

<syft:metadata version="1">
    <catalogers>
        <cataloger>python-cataloger</cataloger>
    </catalogers>
    <locations>
        <location>
            <path>/somewhere/to-path.json</path>
            <layer-index>1</layer-index>
        </location>
    </locations>
</syft:metadata>
@wagoodman wagoodman added the enhancement New feature or request label Aug 24, 2020
@wagoodman wagoodman changed the title Extend cycloneDX presenters with grype-specific values Extend cycloneDX presenters with syft-specific values Aug 24, 2020
@wagoodman wagoodman mentioned this issue Aug 24, 2020
Merged
@coderpatros
Copy link

In v1.3 of the spec we have added generic properties for metadata, components and services

They might not suit for this. But if they do, it would make converting between XML, JSON and protobuf formats easier.

@wagoodman wagoodman added the I/O Describes bug or enhancement around application input or output label Aug 23, 2021
This was referenced Sep 15, 2021
Open
Open
@snyk-bot snyk-bot mentioned this issue Sep 27, 2021
Open
@samj1912
Copy link
Contributor

Some of this is added in #710

@samj1912 samj1912 mentioned this issue Dec 23, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request I/O Describes bug or enhancement around application input or output
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Improve CycloneDX format output samj1912/syft-1
3 participants
@wagoodman @coderpatros @samj1912