Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support GitHub Dependency submission API #5523

Open
tsteenbe opened this issue Jul 5, 2022 · 4 comments
Open

Support GitHub Dependency submission API #5523

tsteenbe opened this issue Jul 5, 2022 · 4 comments
Labels
new feature Issues that are considered to be new features reporter About the reporter tool

Comments

@tsteenbe
Copy link
Member

tsteenbe commented Jul 5, 2022

GitHub's Dependency submission API allows you to submit dependencies for projects, such as the dependencies resolved when a project is built or compiled, see https://docs.github.com/en/rest/dependency-graph/dependency-submission

As ORT generally detects dependencies better than GitHub I propose we add a feature to ORT to allow users to upload found dependencies to GitHub's Dependency submission API. We could then use this feature in ORT for GitHub Action developed in #3512
@tsteenbe tsteenbe added the enhancement Issues that are considered to be enhancements label Jul 5, 2022
@mnonnenmacher
Copy link
Member

The notifier module would probably be a good place to implement this.

@sschuberth
Copy link
Member

sschuberth commented Jul 5, 2022
edited
Loading

Hmm, I would have rather thought of a reporter that pushes results to the remote API rather than writing to a local file.

@tsteenbe
Copy link
Member Author

tsteenbe commented Jul 6, 2022

For consistency I recommend we do the same as we did for SW360 as both are about uploading dependency info ... or if we decide to do things differently for Dependency submission API to update our SW360 support

@sschuberth sschuberth mentioned this issue Apr 27, 2023
Closed
@sschuberth
Copy link
Member

We could probably just re-use the model classes from here.

@sschuberth sschuberth added the help wanted An issue where third-party help is wanted on label Jul 1, 2024
@sschuberth sschuberth added reporter About the reporter tool new feature Issues that are considered to be new features and removed help wanted An issue where third-party help is wanted on enhancement Issues that are considered to be enhancements labels Aug 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
new feature Issues that are considered to be new features reporter About the reporter tool
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sschuberth @tsteenbe @mnonnenmacher