Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deterministic sbom file #135

Open
MartinWitt opened this issue Mar 8, 2023 · 2 comments
Open

Deterministic sbom file #135

MartinWitt opened this issue Mar 8, 2023 · 2 comments
Labels
feature request New feature or request

Comments

@MartinWitt
Copy link

Is your feature request related to a problem? Please describe.

We are examining the output of several SBOM producers. We noticed that the cyclonedx json file changes between different runs for the same project with build info go. The ideal behavior is deterministic.

Describe the solution you'd like to see

You might sort the lists in your json before writing them as json files. Any stable sorting will do.
@MartinWitt MartinWitt added the feature request New feature or request label Mar 8, 2023
@monperrus
Copy link

@yahavi WDYT?
Thanks a lot!

@eyalbe4
Copy link
Contributor

eyalbe4 commented Mar 23, 2023

@MartinWitt,
Thank you for the feedback! We definitely want to see this done. In case you'd like to contribute this fix through a pull request, this will help us get this out as quickly as possible.

@LogFlames LogFlames mentioned this issue Jun 12, 2024
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature request New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@monperrus @eyalbe4 @MartinWitt