Skip to content

Add evidence for dotnet components #536

New issue
New issue
Open
Open
Add evidence for dotnet components#536
Labels
good first issueGood for newcomers
@prabhu

Description

@prabhu
prabhu
opened on Sep 9, 2023

The code here reads the file contents and calls the utils method.

https://github.com/CycloneDX/cdxgen/blob/master/index.js#L3992

Instead, we rename parseCsProjAssetsData to parseCsProjAssetsFile and get the filename as the input. This could be later on set as evidence for the created packages.

Eg: https://github.com/CycloneDX/cdxgen/blob/master/utils.js#L390

evidence: {
  identity: {
    field: "purl",
    confidence: 1,
    methods: [
      {
        technique: "manifest-analysis",
        confidence: 1,
        value: pkgLockFile
      }
    ]
  }
}

Finally, fix the tests. Bonus points: Sort the components and dependencies list.

We're actively seeking new contributors.

Metadata

Metadata

Assignees

No one assigned

    Labels

    good first issueGood for newcomers

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions