Skip to content

Issues: microsoft/sbom-tool

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort

Issues list

SBOM generation for SPDX 3.0 is missing files needs triage Default status upon issue submission
#962 opened Mar 7, 2025 by pragnya17
SBOM Generation is running both 2.2 and 3.0 generators accepted We are working on this and hope to release it into the product
#958 opened Mar 4, 2025 by DaveTryon
Package SBOMs are included in SBOM files section accepted We are working on this and hope to release it into the product
#956 opened Mar 3, 2025 by sfoslund
SBOM API project is tightly coupled with parsers, breaking encapsulation needs investigation Our team will investigate and determine next actions
#949 opened Feb 26, 2025 by pragnya17
We need a way to run CodeQL during CI builds accepted We are working on this and hope to release it into the product
#948 opened Feb 25, 2025 by DaveTryon
License information may not be fully recorded needs customer input Awaiting input from user before proceeding
#944 opened Feb 21, 2025 by schuhbsi
build(deps): bump Microsoft.Extensions.Hosting and Microsoft.NETFramework.ReferenceAssemblies .NET Pull requests that update .net code z-dependencies (Deprecated label) Pull requests that update a dependency file
#943 opened Feb 21, 2025 by dependabot bot Review required
build(deps): bump Microsoft.Extensions.Http and Microsoft.NETFramework.ReferenceAssemblies .NET Pull requests that update .net code z-dependencies (Deprecated label) Pull requests that update a dependency file
#942 opened Feb 21, 2025 by dependabot bot Review required
Fix NugetPackagesPath .NET Pull requests that update .net code
#936 opened Feb 18, 2025 by hsebs Review required
Use MSBuild Logging APIs for Task output instead of StdOut .NET Pull requests that update .net code
#933 opened Feb 16, 2025 by baronfel Review required
Problems running unit tests locally needs investigation Our team will investigate and determine next actions
#930 opened Feb 12, 2025 by DaveTryon
build(deps): bump Microsoft.Build.Framework from 17.11.4 to 17.13.9 .NET Pull requests that update .net code z-dependencies (Deprecated label) Pull requests that update a dependency file
#926 opened Feb 12, 2025 by dependabot bot Review required
[Microsoft.Sbom.Targets] Generates the wrong .nupkg file name and cannot find it. await community interest Looking for further community engagement on this topic before further action tabled We like this idea, but we are not going to action on it in the moment
#920 opened Feb 4, 2025 by philipp-naused
Provide better documentation around usage/integration into various pipelines needs investigation Our team will investigate and determine next actions
#909 opened Jan 29, 2025 by michael-hawker
Feature request: Allow caching when running SBOM multiple times on the same commit needs investigation Our team will investigate and determine next actions
#907 opened Jan 28, 2025 by DaveTryon
build(deps): bump Microsoft.Extensions.DependencyInjection.Abstractions from 8.0.2 to 9.0.1 .NET Pull requests that update .net code z-dependencies (Deprecated label) Pull requests that update a dependency file
#893 opened Jan 22, 2025 by dependabot bot Review required
build(deps): bump System.Text.Json and System.Threading.Tasks.Extensions .NET Pull requests that update .net code z-dependencies (Deprecated label) Pull requests that update a dependency file
#873 opened Jan 15, 2025 by dependabot bot Review required
SBOM tool always includes package entry when .nuspec file is found needs investigation Our team will investigate and determine next actions
#866 opened Jan 14, 2025 by jalkire
Conflict when a package is both direct and transitive accepted We are working on this and hope to release it into the product
#833 opened Dec 13, 2024 by kennylam91
ProTip! Exclude everything labeled bug with -label:bug.