Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / CycloneDX/cyclonedx-node-module issues and pull requests
#365 - announce yarn plugin
Pull Request -
State: closed - Opened by jkowalleck about 1 month ago
Labels: enhancement
#364 - chore(deps): Bump pnpm/action-setup from 3.0.0 to 4.0.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies
#363 - docs: add rollup-plugin-sbom to out of scope section
Pull Request -
State: closed - Opened by janbiasi about 2 months ago
- 1 comment
#362 - Temporary workaround for Node.js v22 on Windows
Pull Request -
State: closed - Opened by cclauss 2 months ago
- 2 comments
#361 - chore(ci): fix macos runner
Pull Request -
State: closed - Opened by jkowalleck 2 months ago
Labels: CI, chore
#360 - chore: use node22 in CI/CT
Pull Request -
State: closed - Opened by jkowalleck 2 months ago
Labels: QA, CI, chore
#359 - docs: add yarn, esbuild, Rspack/Rsbuild, Svelte
Pull Request -
State: closed - Opened by jkowalleck 3 months ago
Labels: documentation
#358 - Bump softprops/action-gh-release from 1 to 2
Pull Request -
State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies
#357 - Bump pnpm/action-setup from 2.4.0 to 3.0.0
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies
#356 - Bump actions/setup-node from 3 to 4
Pull Request -
State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies
#355 - Bump actions/checkout from 3 to 4
Pull Request -
State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies
#354 - Bump pnpm/action-setup from 2.2.4 to 2.4.0
Pull Request -
State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies
#353 - yarn 3.6.1 lockfile issue
Issue -
State: closed - Opened by chrisbgithub 11 months ago
- 1 comment
#352 - SBOM can contain invalid URLs in externalReferences
Issue -
State: closed - Opened by mmarseu almost 1 year ago
- 7 comments
#351 - chore: ci scheduled for Sundays
Pull Request -
State: closed - Opened by jkowalleck about 1 year ago
Labels: CI, chore
#350 - chore: ci uses node20
Pull Request -
State: closed - Opened by jkowalleck about 1 year ago
Labels: QA, CI, chore
#349 - ✏️ fix readme type: suites -> suits
Pull Request -
State: closed - Opened by ctcpip about 1 year ago
#348 - chore: release process allow previews
Pull Request -
State: closed - Opened by jkowalleck over 1 year ago
Labels: chore
#347 - ci: run node18
Pull Request -
State: closed - Opened by jkowalleck over 1 year ago
Labels: CI
#346 - docs: fix shields
Pull Request -
State: closed - Opened by jkowalleck over 1 year ago
Labels: documentation
#344 - "cyclonedx-bom: command not found" when installing [email protected]
Issue -
State: closed - Opened by EvgeniaPatsoni over 1 year ago
- 3 comments
Labels: question
#343 - Missing feature in Version 4 / cyclonedx-npm to inlcuse License text
Issue -
State: closed - Opened by vanthome over 1 year ago
- 3 comments
Labels: question
#342 - docs: describe scope
Pull Request -
State: closed - Opened by jkowalleck over 1 year ago
Labels: documentation
#340 - Bump pnpm/action-setup from 2.2.2 to 2.2.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies
#339 - Bump ssri from 8.0.1 to 10.0.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, javascript
#338 - Bump jest from 27.5.1 to 29.2.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, javascript
#337 - [PSA] ALTERNATIVES :exclamation: :mega:
Issue -
State: closed - Opened by jkowalleck over 1 year ago
- 1 comment
Labels: PSA
#336 - There are no components in the bom
Issue -
State: closed - Opened by Stidgit over 1 year ago
- 6 comments
#334 - Is the last element in property "dependencies" meaning "direct dependencies"?
Issue -
State: closed - Opened by SandZn over 1 year ago
#333 - Bump @xmldom/xmldom from 0.8.2 to 0.8.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, javascript
#332 - Bump jest from 27.5.1 to 29.1.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#331 - Bump commander from 8.3.0 to 9.4.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#330 - Bump @babel/eslint-parser from 7.17.0 to 7.19.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#329 - Bump jest from 27.5.1 to 29.0.3
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#328 - Conflicts between cyclonedx-node-module and cyclonedx-python commands
Issue -
State: closed - Opened by rvsoni almost 2 years ago
- 2 comments
#327 - Bump jest from 27.5.1 to 29.0.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#326 - Ensure license text persists linting
Pull Request -
State: closed - Opened by bmodotdev almost 2 years ago
- 2 comments
Labels: chore
#325 - Bump jest from 27.5.1 to 29.0.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#324 - chore: fix release workflow
Pull Request -
State: closed - Opened by jkowalleck almost 2 years ago
Labels: bug, CI
#323 - chore: enable proper prereleases
Pull Request -
State: closed - Opened by jkowalleck almost 2 years ago
Labels: CI, chore
#322 - Fix for https://github.com/AppThreat/cdxgen/issues/148
Pull Request -
State: closed - Opened by bobflannigon almost 2 years ago
- 5 comments
Labels: breaking change
#321 - v4.0
Pull Request -
State: closed - Opened by jkowalleck almost 2 years ago
- 5 comments
Labels: enhancement, dependencies, github_actions, QA, CI, breaking change, chore, documentation, style, tests
#320 - Bump @babel/eslint-parser from 7.17.0 to 7.18.9
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#319 - Bump commander from 8.3.0 to 9.4.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#318 - Bump jest from 27.5.1 to 28.1.3
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, javascript
#317 - CI: fix SBOM gathering for the bundled application in the docker image
Pull Request -
State: closed - Opened by jkowalleck almost 2 years ago
#316 - simplify docker image
Pull Request -
State: closed - Opened by jkowalleck almost 2 years ago
#314 - Bump jest from 27.5.1 to 28.1.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#313 - Fix comparison of component without version info
Pull Request -
State: closed - Opened by peschuster about 2 years ago
- 2 comments
#312 - Consider optional element "comment" when serializing ExternalReference
Pull Request -
State: closed - Opened by peschuster about 2 years ago
- 3 comments
Labels: enhancement
#309 - Bump jest from 27.5.1 to 28.1.1
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#308 - Exception if #purl is not available
Issue -
State: closed - Opened by peschuster about 2 years ago
- 5 comments
Labels: bug
#307 - [Yarn] First-use experience has some issues
Issue -
State: closed - Opened by oliversalzburg about 2 years ago
- 6 comments
#306 - split code in library and application part
Issue -
State: closed - Opened by jkowalleck about 2 years ago
- 2 comments
#305 - chore: have check for license-text file-header
Issue -
State: closed - Opened by jkowalleck about 2 years ago
Labels: chore
#304 - Bump @babel/eslint-parser from 7.17.0 to 7.18.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#303 - Bump commander from 8.3.0 to 9.3.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#302 - Bump ssri from 8.0.1 to 9.0.1
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#301 - Question: Does it suffice to run npm install instead of ng build in order to generate the BOM for an Angular project?
Issue -
State: closed - Opened by mrtnbm about 2 years ago
- 2 comments
Labels: question
#300 - node18 support
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
#299 - Bump jest from 27.5.1 to 28.1.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#298 - use CDX-JS lib for data models, serialization and everythig.
Issue -
State: closed - Opened by jkowalleck about 2 years ago
- 2 comments
Labels: enhancement, breaking change
#297 - Added missing handling of `Dependency` when environment variable `BOM_REPRODUCIBLE` is present.
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
#296 - add dependencies
Pull Request -
State: closed - Opened by kabo about 2 years ago
- 7 comments
Labels: enhancement
#295 - Bump jest from 27.5.1 to 28.0.3
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#294 - [YARN] support yarn2/yarn3
Issue -
State: closed - Opened by jkowalleck about 2 years ago
- 1 comment
Labels: enhancement, help wanted
#293 - support yarn2
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
- 1 comment
Labels: help wanted
#292 - cleanup tests
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
Labels: chore, tests
#291 - Bump xmldom from 0.2.1 to 0.6.0 in /tests/integration/with-yarn1-lockfile
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 2 comments
Labels: dependencies, javascript
#290 - cleanup tests
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
Labels: chore, tests
#289 - initial `.npmignore` & extended `.gitignore`
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
#288 - add option to make sbom reproducible & more privates & various fixes
Pull Request -
State: closed - Opened by jkowalleck about 2 years ago
#287 - Bump jest-junit from 13.1.0 to 13.2.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#286 - Bump standard from 16.0.4 to 17.0.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#285 - Refactor to create BOMs from text.
Pull Request -
State: closed - Opened by PaulMorel1 about 2 years ago
- 1 comment
#284 - Bump commander from 8.3.0 to 9.2.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#283 - Bump xmldom from 0.2.1 to 0.6.0 in /tests/integration/with-yarn-lockfile
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 2 comments
Labels: dependencies, javascript
#282 - [YARN] Add yarn.lock support
Pull Request -
State: closed - Opened by koconnor-dev about 2 years ago
- 6 comments
#281 - Bump jest-junit from 13.0.0 to 13.1.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, javascript
#280 - Bump ssri from 8.0.1 to 9.0.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, javascript
#279 - Bump @xmldom/xmldom from 0.7.5 to 0.8.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, javascript
#278 - Bump actions/download-artifact from 2 to 3
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions
#277 - Bump actions/upload-artifact from 2 to 3
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions
#276 - Bump packageurl-js from 0.0.5 to 0.0.6
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, javascript
#274 - Bump commander from 8.3.0 to 9.1.0
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, javascript
#273 - bump integration tests: use non-vulnerable components
Issue -
State: closed - Opened by jkowalleck over 2 years ago
- 1 comment
Labels: help wanted, QA, tests
#272 - Issue255
Pull Request -
State: closed - Opened by jkowalleck over 2 years ago
- 1 comment
#257 - Issue255
Pull Request -
State: closed - Opened by CompartMSL over 2 years ago
- 3 comments
#256 - Invalid or unexpected token in 3.4.1
Issue -
State: closed - Opened by rkg-mm over 2 years ago
- 2 comments
Labels: not-reproducible
#255 - FF in license file throws error
Issue -
State: closed - Opened by CompartMSL over 2 years ago
- 3 comments
Labels: bug, help wanted
#249 - spec 1.4: `component.version` optional
Issue -
State: closed - Opened by jkowalleck over 2 years ago
- 2 comments
#244 - Add dependency graph info to BoM
Pull Request -
State: closed - Opened by ManjunathMS35 over 2 years ago
- 8 comments
Labels: enhancement
#242 - Support patch-package for component pedigree information
Issue -
State: closed - Opened by coderpatros over 2 years ago
Labels: enhancement, help wanted
#238 - [YARN] Yarn support?
Issue -
State: closed - Opened by factoidforrest over 2 years ago
- 8 comments
Labels: help wanted, question
#233 - use private properties with `#`
Issue -
State: closed - Opened by jkowalleck over 2 years ago
Labels: style
#232 - Restructure project tree
Pull Request -
State: closed - Opened by jkowalleck over 2 years ago
#231 - [WIP] v4
Pull Request -
State: closed - Opened by jkowalleck over 2 years ago
#229 - SBOM JSON result: add `$schema`
Issue -
State: closed - Opened by jkowalleck over 2 years ago
Labels: enhancement
#226 - DRAFT: restructure project
Issue -
State: closed - Opened by jkowalleck over 2 years ago
Labels: style
#225 - [DRAFT] remove depricated file `bin/cyclonedx-bom`
Issue -
State: closed - Opened by jkowalleck over 2 years ago