Skip to content

Issues: microsoft/sbom-tool

Beta
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
45 Open 210 Closed
45 Open 210 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

External SPDX files appear in the files section needs triage Default status upon issue submission
#1090 opened May 28, 2025 by DaveTryon
Can we handle case-variant names in the same folder? needs triage Default status upon issue submission
#1089 opened May 26, 2025 by DaveTryon
[Microsoft.Sbom.Targets] GenerateSbomTarget should not run when IsPackable is not true needs investigation Our team will investigate and determine next actions .NET Pull requests that update .net code
#1074 opened May 21, 2025 by bording
1
1
Bug: Build badge icon not displaying accepted We are working on this and hope to release it into the product
#1057 opened May 17, 2025 by codewithdhruba01
1
Sbom-tool generates cargo purl strings with extra "/" char accepted We are working on this and hope to release it into the product
#1050 opened May 13, 2025 by henrylyons
1
Consider changing RootPathFilter to accept pattern matching accepted We are working on this and hope to release it into the product
#1040 opened May 8, 2025 by jlperkins
1
Bug - Total files validated DNE failures + successes accepted We are working on this and hope to release it into the product
#1039 opened May 8, 2025 by jlperkins
Consider adding .exe to nupkg accepted We are working on this and hope to release it into the product
#1038 opened May 8, 2025 by jlperkins
1
Investigate root cause of SBOMs from the Dark Ages accepted We are working on this and hope to release it into the product
#989 opened Mar 24, 2025 by alisonlomaka
6
Allow Microsoft.ManifestTool -bl option to read files from any directory needs investigation Our team will investigate and determine next actions
#988 opened Mar 20, 2025 by matteo-prosperi
@THEJRRR
[Microsoft.Sbom.Targets] Add target for publish .NET Pull requests that update .net code tabled We like this idea, but we are not going to action on it in the moment
#983 opened Mar 19, 2025 by DelphinRP
5
SBOM generation skips SPDX 3.0 documents when looking for external document references accepted We are working on this and hope to release it into the product
#981 opened Mar 18, 2025 by pragnya17
@pragnya17
1
Microsoft.Sbom.Adapters missing an adapter for new component detection component 'dotnet' accepted We are working on this and hope to release it into the product
#972 opened Mar 12, 2025 by pgunasekara
9
Package SBOMs are included in SBOM files section accepted We are working on this and hope to release it into the product
#956 opened Mar 3, 2025 by sfoslund
@pragnya17
Generating SBOM with NuGet (Microsoft.Sbom.Targets) on MacoSX results in intermittent hangs needs investigation Our team will investigate and determine next actions
#946 opened Feb 23, 2025 by moljac
@sfoslund
3
License information may not be fully recorded needs triage Default status upon issue submission
#944 opened Feb 21, 2025 by schuhbsi
4
[Microsoft.Sbom.Targets] Generates the wrong .nupkg file name and cannot find it. await community interest Looking for further community engagement on this topic before further action tabled We like this idea, but we are not going to action on it in the moment
#920 opened Feb 4, 2025 by philipp-naused
10
Provide better documentation around usage/integration into various pipelines needs investigation Our team will investigate and determine next actions
#909 opened Jan 29, 2025 by michael-hawker
@THEJRRR
2
Feature request: Allow caching when running SBOM multiple times on the same commit needs investigation Our team will investigate and determine next actions
#907 opened Jan 28, 2025 by DaveTryon
@THEJRRR
1
SBOM tool always includes package entry when .nuspec file is found needs investigation Our team will investigate and determine next actions
#866 opened Jan 14, 2025 by jalkire
@jalkire
Conflict when a package is both direct and transitive accepted We are working on this and hope to release it into the product
#833 opened Dec 13, 2024 by kennylam91
@JoseRenan
The Maven dependencies graph is different from other package managers accepted We are working on this and hope to release it into the product
#827 opened Dec 6, 2024 by kennylam91
@JoseRenan
6
Lack of a "proper" Github Action prevents pinning to specific versions as hardening advice recomments. tabled We like this idea, but we are not going to action on it in the moment
#820 opened Dec 3, 2024 by blowdart
2
Support Ubuntu Chisel manifests as an sbom input needs investigation Our team will investigate and determine next actions
#811 opened Nov 21, 2024 by richlander
@THEJRRR
2
PIP Comp Detect Adapter - No License or Supplier information tabled We like this idea, but we are not going to action on it in the moment
#802 opened Nov 15, 2024 by samuelc7
@THEJRRR
1
ProTip! Exclude everything labeled bug with -label:bug.