We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The tool seems to not traverse the component graph properly, see for example:
sbomqs.exe score bom_issue_328_components.json SBOM Quality Score:5.9 components:2 bom_issue_328_components.json
The SBOM obviously has 4 components described. 1 component in the BOM metadata and three libraries A, B, C.
Using the simple test case file from:
https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/tests/fixtures/json/1.4/bom_issue_328_components.json
The text was updated successfully, but these errors were encountered:
Let me take a look will get back. I understand the issue, will fix it.
Sorry, something went wrong.
OK we have a fix here #134, should be part of our next release, if u would like to use it earlier, let me know.
A new version of the tool v0.0.13 has been released.
Successfully merging a pull request may close this issue.
The tool seems to not traverse the component graph properly, see for example:
The SBOM obviously has 4 components described. 1 component in the BOM metadata and three libraries A, B, C.
Using the simple test case file from:
https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/tests/fixtures/json/1.4/bom_issue_328_components.json
The text was updated successfully, but these errors were encountered: