Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Docs: Update Readme to reflect supported Cyclone DX Spec #1757

Open
ashearin opened this issue Mar 19, 2024 · 1 comment
Open

Docs: Update Readme to reflect supported Cyclone DX Spec #1757

ashearin opened this issue Mar 19, 2024 · 1 comment
Labels
bug Something isn't working

Comments

@ashearin
Copy link

ashearin commented Mar 19, 2024
edited

What happened:

Docs list supported Cyclonedx Spec as 1.4

However running grype --output cyclonedx-json bom.json results in a 1.5 Spec bom

{
  "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.5",
  "serialNumber": "urn:uuid:d2c467ef-933e-4e96-a85c-4b21b23a604e",
  "version": 1,
  "metadata": {
    "timestamp": "2024-03-19T15:36:01-06:00",
    "tools": {
      "components": [
        {
          "type": "application",
          "author": "anchore",
          "name": "grype",
          "version": "0.74.7"
        }
      ]
    }
  },
...

What you expected to happen:

Docs would reflect current supported CycloneDX Specification (1.5)

Environment:

  • Output of grype version: "0.74.7"
  • OS (e.g: cat /etc/os-release or similar): MacOS
@ashearin ashearin added the bug Something isn't working label Mar 19, 2024
@tgerla
Copy link
Contributor

tgerla commented Mar 21, 2024

Thanks for the report, @ashearin! We'll get the docs updated soon.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
OSS
Status: Ready
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tgerla @ashearin