Skip to content

Add a sbom_generator command-line tool. #170

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

Add a sbom_generator command-line tool. #170

wants to merge 3 commits into from

Conversation

licquia
Copy link
Collaborator

@licquia licquia commented Jun 15, 2021

This tool generates a SPDX software bill of materials (SBOM)
from a Python project. It's intended to make it easy to generate
SBOMs from Python projects with a simple dev dependency and a single
command.

Add a sbom_generator command-line tool.
1eef8e3 
This tool generates a SPDX software bill of materials (SBOM)
from a Python project.  It's intended to make it easy to generate
SBOMs from Python projects with a simple dev dependency and a single
command.

Signed-off-by: Jeff Licquia <[email protected]>
@licquia licquia mentioned this pull request Jun 15, 2021
Open
pombredanne
pombredanne requested changes Jun 15, 2021
View reviewed changes
Copy link
Member

@pombredanne pombredanne left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@licquia Thanks! that's great but IMHO:

  • this would be best in the examples directory or a separate repo especially since this is making outgoing networks calls on a whole current installation. That would need to be documented too.
  • This would benefit from some doc and tests
  • This introduces an undeclared dependency with importlib_metadata

@pombredanne
Copy link
Member

Gentle ping.

@licquia
Copy link
Collaborator Author

licquia commented Sep 20, 2021

Yes, sorry for not following up. Since development on this and on the original tool have both moved on, I'm going to submit a new PR for this.

@licquia licquia closed this Sep 20, 2021
@licquia licquia mentioned this pull request Sep 20, 2021
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pombredanne pombredanne pombredanne requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@licquia @pombredanne