Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / CycloneDX/cdxgen issues and pull requests

#520 - Allow to customize the Maven prefix for Bazel

Issue - State: closed - Opened by sebastianvoss about 1 year ago

#519 - feat: allow to customize the Maven prefix for Bazel

Pull Request - State: closed - Opened by sebastianvoss about 1 year ago - 3 comments

#518 - fix: increase buffer for bazel output to avoid incomplete SBOM

Pull Request - State: closed - Opened by sebastianvoss about 1 year ago

#517 - Incomplete SBOM for Bazel

Issue - State: closed - Opened by sebastianvoss about 1 year ago - 3 comments

#516 - Reports package not found on PyPI erroneously

Issue - State: closed - Opened by cerrussell about 1 year ago - 2 comments

#515 - Version numbers appended to package name, version marked latest

Issue - State: open - Opened by cerrussell about 1 year ago - 3 comments

#514 - Few adhoc bug fixes. 9.7.0 prep

Pull Request - State: closed - Opened by prabhu about 1 year ago - 1 comment
Labels: help wanted, Ready for QA

#513 - feat: allow Maven Central URL overwrite

Pull Request - State: closed - Opened by sebastianvoss about 1 year ago

#512 - SBoM generating from docker image running cdxgen like docker container

Issue - State: closed - Opened by almaz045 about 1 year ago - 2 comments

#510 - Try harder to catalog maven cache

Pull Request - State: closed - Opened by prabhu about 1 year ago - 8 comments
Labels: help wanted, Ready for QA

#508 - swid tag_id

Pull Request - State: closed - Opened by prabhu about 1 year ago

#507 - Fix/issue 506 windows name

Pull Request - State: closed - Opened by cerrussell about 1 year ago

#504 - Maven-cache analysis is missing some Jar files from .m2/repository

Issue - State: closed - Opened by theold190 about 1 year ago - 8 comments
Labels: bug

#503 - ppc64 support

Pull Request - State: closed - Opened by prabhu about 1 year ago
Labels: enhancement, help wanted

#502 - Dependency tree for cargo

Issue - State: open - Opened by prabhu about 1 year ago
Labels: lang:rust

#501 - Dependency tree for dotnet

Issue - State: closed - Opened by prabhu about 1 year ago

#500 - Test against top 100 docker images

Issue - State: open - Opened by prabhu about 1 year ago
Labels: good first issue, help wanted

#499 - Do not override spec-version for new dependency-track users

Issue - State: open - Opened by prabhu about 1 year ago
Labels: enhancement, good first issue

#498 - Dependency tree for os packages

Pull Request - State: closed - Opened by prabhu about 1 year ago

#497 - sbom generation for ubuntu possibly broken

Issue - State: closed - Opened by prabhu about 1 year ago

#496 - Enable default sorting of generated documents

Issue - State: open - Opened by prabhu about 1 year ago

#495 - Experiment with cbor

Issue - State: open - Opened by prabhu about 1 year ago

#493 - Discrepancy in cdxgen behavior on ppc64le Platform

Issue - State: closed - Opened by pooja0805 about 1 year ago - 5 comments
Labels: enhancement, help wanted

#492 - Java package miss detector

Issue - State: open - Opened by prabhu about 1 year ago
Labels: help wanted, Consider Funding, lang:java

#491 - Print mode -p is quite slow for large sboms

Issue - State: closed - Opened by prabhu about 1 year ago
Labels: good first issue

#490 - Fix #488 Support dart image url for license

Pull Request - State: closed - Opened by anoreg about 1 year ago - 2 comments

#489 - Not able to generate Dependency Graph on Dependency Tracker with sbom generated with cdxgen

Issue - State: open - Opened by abhinavsaxena-webengage about 1 year ago - 5 comments
Labels: enhancement

#488 - Support dart image url for license

Issue - State: closed - Opened by PAX-HZ about 1 year ago - 2 comments

#487 - Granular signing. sae builds from verify

Pull Request - State: closed - Opened by prabhu about 1 year ago
Labels: Ready for QA

#486 - [npm] Support for install strategy

Issue - State: open - Opened by prabhu about 1 year ago - 7 comments

#485 - Getting "must NOT have additional properties" while generating sbom

Issue - State: closed - Opened by mikamp116 about 1 year ago - 11 comments

#484 - Test with wrongsecrets

Issue - State: open - Opened by prabhu about 1 year ago - 2 comments
Labels: good first issue, help wanted

#483 - Scala SBT dependency tree

Pull Request - State: closed - Opened by prabhu about 1 year ago - 9 comments
Labels: question, Ready for QA

#482 - Issue in Clojure dependency fetch

Issue - State: open - Opened by agrawalarpit01 about 1 year ago - 8 comments

#481 - Retain parent group and component across sub-projects. Fixes #474 again

Pull Request - State: closed - Opened by prabhu about 1 year ago - 5 comments
Labels: Ready for QA

#480 - Infinite loop when analyzing tree with multiple symbolic links

Issue - State: closed - Opened by marob about 1 year ago - 5 comments
Labels: help wanted, Consider Funding

#478 - swift tests are broken

Issue - State: closed - Opened by prabhu about 1 year ago

#477 - Evinse for js - part 2 - callstack, vue and svelte

Pull Request - State: closed - Opened by prabhu about 1 year ago - 5 comments
Labels: Ready for QA

#476 - Evinse for js

Pull Request - State: closed - Opened by prabhu about 1 year ago

#475 - Try multiple encoding to parse nuspec data. Fixes #469

Pull Request - State: closed - Opened by prabhu about 1 year ago

#474 - fineract gradle sbom has validation errors

Issue - State: closed - Opened by prabhu about 1 year ago - 7 comments

#473 - Support for ivy xml

Issue - State: open - Opened by prabhu about 1 year ago
Labels: good first issue

#472 - Evinse support for java with gradle project - part 2

Pull Request - State: closed - Opened by prabhu about 1 year ago - 3 comments

#470 - Handle Gradle sub-projects correctly

Pull Request - State: closed - Opened by malice00 about 1 year ago - 9 comments

#469 - Validation errors for csharp with license

Issue - State: closed - Opened by prabhu about 1 year ago
Labels: good first issue

#468 - Adds cdx-verify a simple command to verify signature

Pull Request - State: closed - Opened by prabhu about 1 year ago - 5 comments
Labels: Ready for QA

#467 - Fixes #464: Updated the regex to support 'relocation' of a complete component

Pull Request - State: closed - Opened by malice00 about 1 year ago - 3 comments

#466 - required-only means no dependencies?

Issue - State: open - Opened by prabhu about 1 year ago - 15 comments

#465 - Evinse tool preview - part 1

Pull Request - State: closed - Opened by prabhu about 1 year ago
Labels: Ready for QA

#464 - [Gradle] cdxgen doesn't support 'jetify'

Issue - State: closed - Opened by malice00 about 1 year ago - 1 comment

#463 - Fixes #462 issue with "latest" version tag in python projects

Pull Request - State: closed - Opened by cerrussell about 1 year ago

#462 - Fallback option for pip freeze version

Issue - State: open - Opened by cerrussell about 1 year ago

#458 - cdxgen interactive repl

Pull Request - State: closed - Opened by prabhu about 1 year ago

#457 - Fix/issue 447

Pull Request - State: closed - Opened by prabhu about 1 year ago - 2 comments
Labels: Ready for QA

#456 - Update packages and bump version

Pull Request - State: closed - Opened by prabhu about 1 year ago
Labels: Ready for QA

#455 - Deals with cyclic dependency by tracking the number of times a depend…

Pull Request - State: closed - Opened by prabhu about 1 year ago

#454 - [Python] piptree is hanging for scipy repo

Issue - State: closed - Opened by prabhu about 1 year ago

#453 - Adds jws verification example to the readme.

Pull Request - State: closed - Opened by prabhu about 1 year ago - 2 comments

#452 - Fix/issue 429 poetry

Pull Request - State: closed - Opened by prabhu about 1 year ago - 7 comments

#451 - Do not ignore root project named app.

Pull Request - State: closed - Opened by prabhu about 1 year ago - 5 comments

#450 - Fixes #443 using quick option 1

Pull Request - State: closed - Opened by prabhu about 1 year ago

#449 - Fixes #417. Adds support for nested sub-projects

Pull Request - State: closed - Opened by prabhu about 1 year ago

#448 - cdxgen ignores android application modules

Issue - State: closed - Opened by ptrkaz about 1 year ago - 3 comments

#447 - bom-ref missing when passing project name and version via cli args

Issue - State: closed - Opened by setchy about 1 year ago - 1 comment
Labels: enhancement

#446 - cyclonedx-bom: command not found

Issue - State: open - Opened by Ranjithkumar-Arumugam-agilysys about 1 year ago - 8 comments

#445 - [Gradle] Add Support for init.gradle Configuration

Issue - State: open - Opened by Moujuruo about 1 year ago - 2 comments
Labels: enhancement, wontfix

#444 - Any plans for cocoapods ?

Issue - State: open - Opened by Hritik14 about 1 year ago - 3 comments

#443 - Getting "must NOT have additional properties" while generating sbom

Issue - State: closed - Opened by jatinsinghalsg about 1 year ago - 2 comments
Labels: bug

#442 - dependency tree incomplete

Issue - State: closed - Opened by thaarbach about 1 year ago - 3 comments

#440 - SBOM signing question

Issue - State: closed - Opened by troy256 about 1 year ago
Labels: documentation, good first issue, help wanted

#438 - Issues generating SBOM for Python environment

Issue - State: open - Opened by anthonyharrison about 1 year ago - 2 comments
Labels: enhancement

#437 - Fixes Issue 431, incorrect parsing of dependencies

Pull Request - State: closed - Opened by cerrussell about 1 year ago - 2 comments

#436 - Getting error on new version of cdxgen

Issue - State: closed - Opened by sitraj about 1 year ago - 5 comments

#435 - Run repotests on Windows

Issue - State: closed - Opened by cerrussell about 1 year ago - 1 comment

#434 - required-only with yarn3 doesn't exclude dev dependencies

Issue - State: open - Opened by qroac about 1 year ago - 10 comments

#433 - No Services are defined when generating SBOM form Bazel project

Issue - State: open - Opened by anders-brujordet about 1 year ago - 2 comments
Labels: enhancement, help wanted

#432 - Fix for Windows - Control Character breaking tests, validation, dependency tree

Pull Request - State: closed - Opened by cerrussell about 1 year ago - 1 comment

#431 - [Gradle] Dependency tree population broken on versions >= 9.3.0

Issue - State: closed - Opened by ajmalab about 1 year ago - 5 comments

#430 - Fix tests to account for ignoring dependency constraints in Gradle

Pull Request - State: closed - Opened by ajmalab about 1 year ago

#429 - [Poetry] Inaccurate dependency tree

Issue - State: closed - Opened by ajmalab about 1 year ago - 16 comments

#428 - Issue #423: Introduce separate ENVs for different gradle tasks

Pull Request - State: closed - Opened by heubeck about 1 year ago - 1 comment

#427 - Trim CI agents

Pull Request - State: closed - Opened by prabhu about 1 year ago

#426 - docker push is broken

Issue - State: closed - Opened by prabhu about 1 year ago
Labels: help wanted

#425 - Update docker packages. Java 20 etc

Pull Request - State: closed - Opened by prabhu about 1 year ago

#424 - Fixed editable dependency issue

Pull Request - State: closed - Opened by cerrussell about 1 year ago

#423 - GRADLE_ARGS partially ignored in recursive mode

Issue - State: closed - Opened by heubeck about 1 year ago - 10 comments

#422 - Fix/issue 421

Pull Request - State: closed - Opened by ajmalab about 1 year ago - 5 comments

#421 - [Gradle] Inaccurate dependencies section in projects with `gradle.lockfile`

Issue - State: closed - Opened by ajmalab about 1 year ago - 1 comment

#420 - Poetry dependency tree support

Pull Request - State: closed - Opened by prabhu about 1 year ago - 9 comments

#419 - pdm.lock support

Issue - State: open - Opened by prabhu about 1 year ago
Labels: good first issue, help wanted

#418 - [NPM] Dependencies section is inaccurate in projects using package-lock <= v2

Issue - State: closed - Opened by ajmalab about 1 year ago - 8 comments

#417 - [Gradle] Nested sub-project information not captured accurately

Issue - State: closed - Opened by ajmalab about 1 year ago - 10 comments
Labels: help wanted

#416 - [Gradle] Flaky dependency version detection for sub-projects

Issue - State: open - Opened by ajmalab about 1 year ago - 5 comments
Labels: help wanted, lang:java

#415 - Makes pnpm work without breaking docker and repotests. 1 Breaking change

Pull Request - State: closed - Opened by prabhu about 1 year ago - 2 comments

#414 - BugFix 403

Pull Request - State: closed - Opened by visagansanthanam-unisys about 1 year ago - 1 comment

#413 - Add some aliases to pypi-pkg-aliases.json

Pull Request - State: closed - Opened by DDuarte about 1 year ago - 1 comment