SPDX

Creates software bills of materials (SBOM) in the SPDX format.

Configuration

Example

SpdxDocument:
  options:
    creationInfoComment: null
    creationInfoPerson: null
    creationInfoOrganization: null
    documentComment: null
    documentName: "Unnamed document"
    outputFileFormats: "YAML"
    fileInformationEnabled: true

Options

creationInfoComment

The comment to add to the [SpdxDocument.creationInfo].

creationInfoPerson

The person to add to the [SpdxDocument.creationInfo].

creationInfoOrganization

The organization to add to the [SpdxDocument.creationInfo].

documentComment

The comment to add to the [SpdxDocument].

documentName

![Default](https://img.shields.io/badge/Default-Unnamed document-darkgreen)

The name of the generated [SpdxDocument].

outputFileFormats

The list of file formats to generate. Supported values are "YAML" and "JSON".

fileInformationEnabled

Toggle whether the output document should contain information on file granularity about files containing findings.

Configuration​

Example​

Options​

creationInfoComment​

creationInfoPerson​

creationInfoOrganization​

documentComment​

documentName​

outputFileFormats​

fileInformationEnabled​