SPDX Document Reporter

Creates software bills of materials (SBOM) in the SPDX format.

Configuration

Example

{
  "SpdxDocument": {
    "options": {
      "creationInfoComment": null,
      "creationInfoPerson": null,
      "creationInfoOrganization": null,
      "documentComment": null,
      "documentName": "Unnamed document",
      "outputFileFormats": "YAML",
      "fileInformationEnabled": true
    }
  }
}

Options

creationInfoComment

The comment to add to the [SpdxDocument.creationInfo].

creationInfoPerson

The person to add to the [SpdxDocument.creationInfo].

creationInfoOrganization

The organization to add to the [SpdxDocument.creationInfo].

documentComment

The comment to add to the [SpdxDocument].

documentName

![Default](https://img.shields.io/badge/Default-Unnamed document-darkgreen)

The name of the generated [SpdxDocument].

outputFileFormats

The list of file formats to generate. Supported values are "YAML" and "JSON".

fileInformationEnabled

Toggle whether the output document should contain information on file granularity about files containing findings.

Configuration​

Example​

Options​

creationInfoComment​

creationInfoPerson​

creationInfoOrganization​

documentComment​

documentName​

outputFileFormats​

fileInformationEnabled​