Skip to content

Commit

Permalink
feat: have CycloneDX SBOM
Browse files Browse the repository at this point in the history
  • Loading branch information
@t-graf
t-graf committed Oct 28, 2024
1 parent bd488eb commit 1809cc8
Show file tree
Hide file tree
Showing 2 changed files with 151 additions and 0 deletions.
10 changes: 10 additions & 0 deletions Readme.md
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,8 @@
<!--
SPDX-FileCopyrightText: (c) 2019-2024 T. Graf
SPDX-License-Identifier: MIT
-->

# CLI Support for Python

[![License](https://img.shields.io/badge/license-MIT-blue.svg)](https://github.com/sw360/clipython/blob/master/License.md)
Expand Down Expand Up @@ -90,3 +95,8 @@ Copyright 2019-2024 Siemens

The project is licensed under the MIT license.
SPDX-License-Identifier: MIT

## SBOM

For an up-to-date CycloneDX SBOM, please have a look at the
[SBOM](https://github.com/sw360/clipython/tree/master/SBOM) folder.
141 changes: 141 additions & 0 deletions SBOM/sbom.cdx.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,141 @@
{
"dependencies": [
{
"ref": "cli_support"
}
],
"metadata": {
"component": {
"bom-ref": "cli_support",
"description": "Support component license information (CLI) files",
"externalReferences": [
{
"comment": "from poetry: repository",
"type": "vcs",
"url": "https://github.com/sw360/clipython"
},
{
"comment": "from poetry: homepage",
"type": "website",
"url": "https://github.com/sw360/clipython"
}
],
"licenses": [
{
"license": {
"id": "MIT"
}
}
],
"name": "cli_support",
"type": "library",
"version": "2.0.2"
},
"timestamp": "2024-10-28T06:28:39.548764+00:00",
"tools": {
"components": [
{
"description": "CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments",
"externalReferences": [
{
"type": "build-system",
"url": "https://github.com/CycloneDX/cyclonedx-python/actions"
},
{
"type": "distribution",
"url": "https://pypi.org/project/cyclonedx-bom/"
},
{
"type": "documentation",
"url": "https://cyclonedx-bom-tool.readthedocs.io/"
},
{
"type": "issue-tracker",
"url": "https://github.com/CycloneDX/cyclonedx-python/issues"
},
{
"type": "license",
"url": "https://github.com/CycloneDX/cyclonedx-python/blob/main/LICENSE"
},
{
"type": "release-notes",
"url": "https://github.com/CycloneDX/cyclonedx-python/blob/main/CHANGELOG.md"
},
{
"type": "vcs",
"url": "https://github.com/CycloneDX/cyclonedx-python/"
},
{
"type": "website",
"url": "https://github.com/CycloneDX/cyclonedx-python/#readme"
}
],
"group": "CycloneDX",
"licenses": [
{
"license": {
"id": "Apache-2.0"
}
}
],
"name": "cyclonedx-py",
"type": "application",
"version": "5.1.0"
},
{
"description": "Python library for CycloneDX",
"externalReferences": [
{
"type": "build-system",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/actions"
},
{
"type": "distribution",
"url": "https://pypi.org/project/cyclonedx-python-lib/"
},
{
"type": "documentation",
"url": "https://cyclonedx-python-library.readthedocs.io/"
},
{
"type": "issue-tracker",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/issues"
},
{
"type": "license",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/LICENSE"
},
{
"type": "release-notes",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md"
},
{
"type": "vcs",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib"
},
{
"type": "website",
"url": "https://github.com/CycloneDX/cyclonedx-python-lib/#readme"
}
],
"group": "CycloneDX",
"licenses": [
{
"license": {
"id": "Apache-2.0"
}
}
],
"name": "cyclonedx-python-lib",
"type": "library",
"version": "8.3.0"
}
]
}
},
"serialNumber": "urn:uuid:8512ba1b-2486-47e9-b35d-b99b0482f806",
"version": 1,
"$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
"bomFormat": "CycloneDX",
"specVersion": "1.5"
}

0 comments on commit 1809cc8

Please sign in to comment.