Skip to content

3.1.0
Compare
Choose a tag to compare
@github-actions github-actions released this 13 Jul 17:39
v3.1.0
596bed9
This commit was signed with the committer’s verified signature.
jkowalleck Jan Kowalleck
GPG key ID: 4099D653FB71069F
Verified
Learn about vigilant mode.

Feature release

Added

  • CLI via composer make-bom
    • Per default the command will validate the resulting SBoM before writing it to file/stdOut.
    • Added a switch --no-validate to disable result validation.
    • When the verbosity is at "debug" level, then detailed debug info will be put out.
      This should help to find validation issues.
  • Validation classes/methods to test SBoM
    in XML and JSON format
    for spec 1.1, 1.2, 1.3
Assets 2
Loading