-
-
Notifications
You must be signed in to change notification settings - Fork 4.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Generate CycloneDX BOM #8251
Comments
I have no idea what you are talking about, nor what cyclonedx is, nor why I should spend time figuring out any of this.. So unless you spend some effort at least explaining I'd say no :) |
CycloneDX is the std format for software composition management software to consume. See OWASP DependencyTrack as an example. To get PHP supported by DependencyTrack a way to generate a compliant BOM is needed. |
Ok.. we can keep this open as a way to track it, but tbh this isn't gonna be high on the priority list at the moment. |
There is a plugin for this feature request: https://github.com/CycloneDX/cyclonedx-php-composer |
Ah very nice, closing this then. Definitely better handled as a third party package as I don't think we want to maintain this. |
Can you add a feature to generate a CycloneDX compatible BOM to composer?
Here's the spec: https://cyclonedx.org/docs/1.1/
All the information is already in composer so shouldn't be too hard.
The text was updated successfully, but these errors were encountered: