SPDX

Creates software bills of materials (SBOM) in the SPDX format.

Configuration

Example

Use the following syntax to configure this plugin globally as part of config.yml:

ort:
  reporter:
    reporters:
      SpdxDocument:
        options:
          creationInfoComment: null
          creationInfoPerson: null
          creationInfoOrganization: null
          documentComment: null
          documentName: "Unnamed document"
          outputFileFormats: "YAML"
          fileInformationEnabled: true

Options

creationInfoComment

The comment to add to the [SpdxDocument.creationInfo].

creationInfoPerson

The person to add to the [SpdxDocument.creationInfo].

creationInfoOrganization

The organization to add to the [SpdxDocument.creationInfo].

documentComment

The comment to add to the [SpdxDocument].

documentName

![Default](https://img.shields.io/badge/Default-Unnamed document-darkgreen)

The name of the generated [SpdxDocument].

outputFileFormats

The list of file formats to generate. Supported values are "YAML" and "JSON".

fileInformationEnabled

Toggle whether the output document should contain information on file granularity about files containing findings.

Configuration​

Example​

Options​

creationInfoComment​

creationInfoPerson​

creationInfoOrganization​

documentComment​

documentName​

outputFileFormats​

fileInformationEnabled​