kc3-lang/brotli/sbom.cdx.json

Branch - branch -mastergithub/HEADgithub/custom-dictionarygithub/mastergithub/recompressiongithub/test_774593500github/test_803421474github/v1.0github/v1.1upstream/HEADupstream/custom-dictionaryupstream/masterupstream/recompressionupstream/test_774593500upstream/test_803421474upstream/v1.0upstream/v1.1- tag -v1.2.0rc2v1.2.0rc1v1.1.0rcv1.1.0v1.0.9v1.0.8v1.0.7v1.0.6v1.0.5v1.0.4v1.0.3v1.0.2v1.0.1v1.0.0v0.6.0v0.4.0v0.3.0v0.2.0v0.1.0go/cbrotli/v1.1.1-rc0go/cbrotli/v1.1.0.bcr.1go/cbrotli/v1.1.0.bcr.0go/cbrotli/v1.1.0go/brotli/v1.1.1-rc0dev/null

• Show log

  Commit

• Hash : e9668c8c
  Author :
  Date : 2025-05-27T08:50:34
  

  Add a SBOM template in CycloneDX format (#1224)
  
  Improve supply chain security by including a SBOM file with substituted values.
  
  This will be used to construct a composite platform SBOM.
  
  Signed-off-by: Richard Hughes <rhughes@redhat.com>
  Co-authored-by: Eugene Kliuchnikov <eustas.ru@gmail.com>

Download

• sbom.cdx.json

• {
    "_comment": "See https://cyclonedx.org/ for more details",
    "bomFormat": "CycloneDX",
    "specVersion": "1.6",
    "version": 1,
    "metadata": {
      "authors": [
        {
          "name": "@VCS_SBOM_AUTHORS@"
        }
      ]
    },
    "components": [
      {
        "type": "library",
        "bom-ref": "pkg:github/google/brotli@@VCS_TAG@",
        "cpe": "cpe:2.3:a:google:brotli:@VCS_TAG@:*:*:*:*:*:*:*",
        "name": "Brotli",
        "version": "@VCS_VERSION@",
        "description": "A generic-purpose lossless compression algorithm",
        "authors": [
          {
            "name": "@VCS_AUTHORS@"
          }
        ],
        "supplier": {
          "name": "Brotli developers"
        },
        "licenses": [
          {
            "license": {
              "id": "MIT"
            }
          }
        ],
        "externalReferences": [
          {
            "type": "vcs",
            "url": "https://github.com/google/brotli"
          }
        ]
      }
    ]
  }
  

Download