Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / spdx/ntia-conformance-checker issues and pull requests

#219 - Update CodeQL GitHub Actions

Pull Request - State: open - Opened by jspeed-meyers 8 days ago
Labels: security

#218 - Make permissions read-only for black linter

Pull Request - State: closed - Opened by jspeed-meyers 8 days ago
Labels: security

#217 - Make bandit Github Action read-only

Pull Request - State: closed - Opened by jspeed-meyers 13 days ago
Labels: security

#216 - Bump actions/setup-python from 3.1.4 to 5.3.0

Pull Request - State: closed - Opened by dependabot[bot] 14 days ago
Labels: dependencies, github_actions

#215 - Bump actions/upload-artifact from 3.2.1.pre.node20 to 4.4.3

Pull Request - State: closed - Opened by dependabot[bot] 14 days ago
Labels: dependencies, github_actions

#214 - Update to new edition of minimum elements (2024)

Issue - State: open - Opened by bact 14 days ago - 8 comments
Labels: enhancement, question

#213 - Update SECURITY.md supported versions

Pull Request - State: closed - Opened by jspeed-meyers 18 days ago - 2 comments
Labels: documentation

#212 - Bump ossf/scorecard-action from 2.3.1 to 2.4.0

Pull Request - State: closed - Opened by dependabot[bot] 18 days ago
Labels: dependencies, github_actions

#211 - Bump actions/checkout from 2.7.0 to 4.2.2

Pull Request - State: closed - Opened by dependabot[bot] 18 days ago - 1 comment
Labels: dependencies, github_actions

#210 - Bump pypa/gh-action-pypi-publish from 1.4.2 to 1.11.0

Pull Request - State: closed - Opened by dependabot[bot] 18 days ago - 1 comment
Labels: dependencies, github_actions

#209 - Bump tj-actions/bandit from 5.1 to 5.5

Pull Request - State: closed - Opened by dependabot[bot] 18 days ago - 1 comment
Labels: dependencies, github_actions

#208 - Bump actions/upload-artifact from 97a0fba1372883ab732affbe8f94b823f91727db to c24449f33cd45d4826c6702db7e49f7cdb9b551d

Pull Request - State: closed - Opened by dependabot[bot] 18 days ago - 1 comment
Labels: dependencies, github_actions

#207 - Add GitHub Actions updates to dependabot

Pull Request - State: closed - Opened by jspeed-meyers 20 days ago - 2 comments
Labels: security, dependencies

#206 - Pin GitHub Actions workflows

Pull Request - State: closed - Opened by jspeed-meyers 20 days ago - 4 comments
Labels: security

#205 - Bump package version to 3.0.2

Pull Request - State: closed - Opened by jspeed-meyers about 2 months ago - 1 comment
Labels: release

#204 - Bump spdx-tools version to 0.8.3 in pyproject.toml

Pull Request - State: closed - Opened by jspeed-meyers about 2 months ago
Labels: dependencies

#203 - Bump spdx-tools from 0.8.2 to 0.8.3

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies

#202 - Remove container usage instructions from README

Pull Request - State: closed - Opened by jspeed-meyers about 2 months ago
Labels: documentation

#201 - Bump version to 3.0.1

Pull Request - State: closed - Opened by jspeed-meyers 2 months ago - 1 comment
Labels: enhancement

#200 - Make get_components_without_identifiers() more concise

Pull Request - State: closed - Opened by jspeed-meyers 2 months ago - 1 comment
Labels: enhancement

#199 - Add a Chainguard Images container SBOM and associated test

Pull Request - State: closed - Opened by jspeed-meyers 3 months ago - 2 comments
Labels: enhancement

#198 - Bump version to v3.0.0

Pull Request - State: closed - Opened by jspeed-meyers 3 months ago - 1 comment

#197 - missing supplier error message typo

Pull Request - State: closed - Opened by DmPanov 3 months ago - 3 comments

#196 - pipx install ntia-conformance-checker and scan resuilts in python error

Issue - State: closed - Opened by msmeissn 4 months ago - 10 comments
Labels: bug, help wanted, question

#195 - Create SECURITY.md file

Pull Request - State: closed - Opened by jspeed-meyers 4 months ago - 3 comments
Labels: documentation, security

#194 - Online validator chokes on JSON

Issue - State: closed - Opened by dlegaultbbry 4 months ago - 9 comments
Labels: bug

#193 - Cut Version 3.0.0

Issue - State: closed - Opened by jspeed-meyers 5 months ago - 1 comment
Labels: breaking-change

#192 - Determine Sub-Scores for Scorecard Results of this Repo and Assess if Any Actions Should Be Taken

Issue - State: open - Opened by jspeed-meyers 5 months ago - 7 comments
Labels: good first issue, security

#191 - Add Scorecard Badge to README

Pull Request - State: closed - Opened by jspeed-meyers 5 months ago
Labels: documentation

#190 - Add scorecard GitHub Action YAML

Pull Request - State: closed - Opened by jspeed-meyers 5 months ago - 1 comment
Labels: security

#189 - Find the DESCRIBES relationship by looking through attached packages

Pull Request - State: closed - Opened by DanielOjalvo 5 months ago - 7 comments
Labels: bug, breaking-change

#188 - Add a OpenSSF Scorecard GitHub Badge to Repo README

Issue - State: closed - Opened by jspeed-meyers 6 months ago
Labels: documentation, good first issue, security

#187 - Add Docker Version to Installation Instructions

Pull Request - State: closed - Opened by jspeed-meyers 6 months ago - 1 comment
Labels: documentation

#186 - check_dependency_relationships test does not seem correct

Issue - State: closed - Opened by DanielOjalvo 6 months ago - 17 comments
Labels: bug, breaking-change

#185 - Cut New Release - v2.0.0

Issue - State: closed - Opened by jspeed-meyers 7 months ago - 3 comments
Labels: bug

#184 - Bump ntia-conformance-checker version to 2.0.0

Pull Request - State: closed - Opened by jspeed-meyers 7 months ago - 1 comment

#183 - Cut v2.0.0 Release

Issue - State: closed - Opened by jspeed-meyers 7 months ago
Labels: P0

#182 - Revise the implementation of check_dependency_relationships

Pull Request - State: closed - Opened by jspeed-meyers 8 months ago
Labels: bug, breaking-change

#181 - Delete .idea directory

Pull Request - State: closed - Opened by jspeed-meyers 8 months ago
Labels: documentation

#180 - Should .idea Folder and Contents Be Deleted?

Issue - State: closed - Opened by jspeed-meyers 8 months ago
Labels: documentation, question, P2

#179 - `check_dependency_relationships` Function Does Not Match SPDX Minimum Elements Definition of "Relationship" Field

Issue - State: closed - Opened by jspeed-meyers 8 months ago - 1 comment
Labels: bug, good first issue, breaking-change

#178 - [Docs] Add Documentation on Pre-Built Container Applications of `ntia-conformance-checker`

Issue - State: closed - Opened by jspeed-meyers 8 months ago - 1 comment
Labels: documentation, good first issue

#177 - What GitHub Badges (or Practices) Do You Want This Repo to Have?

Issue - State: closed - Opened by jspeed-meyers 8 months ago - 1 comment
Labels: question

#176 - Fix logic error in get_components_without_suppliers

Pull Request - State: closed - Opened by jspeed-meyers 8 months ago
Labels: bug, breaking-change

#175 - Fixed spelling

Pull Request - State: closed - Opened by thireo 9 months ago - 4 comments
Labels: bug, P0, breaking-change

#174 - Spelling: Minimum vs mininum

Issue - State: closed - Opened by thireo 9 months ago - 10 comments
Labels: bug, documentation, breaking-change

#173 - Getting confused about tri licensed package

Issue - State: closed - Opened by xnox 9 months ago - 6 comments
Labels: question

#172 - Update README.md

Pull Request - State: closed - Opened by vargenau 10 months ago

#171 - Add pylint and black formatting instructions to contributing doc

Pull Request - State: closed - Opened by jspeed-meyers 11 months ago - 1 comment
Labels: documentation

#170 - Add Black and Pylint to Contributing Doc

Issue - State: closed - Opened by jspeed-meyers 11 months ago
Labels: documentation, good first issue

#169 - Provide more information in get_components_without_* functions

Pull Request - State: closed - Opened by CsatariGergely 11 months ago - 4 comments
Labels: bug, enhancement

#168 - get_components_without_* functions shold return the SPDX ID of the component if there is one

Issue - State: closed - Opened by CsatariGergely 11 months ago - 9 comments
Labels: bug, breaking-change

#167 - DO NO MERGE - Add scorecard.yml

Pull Request - State: closed - Opened by jspeed-meyers 12 months ago
Labels: security

#166 - DO NOT MERGE: test-license-case

Pull Request - State: closed - Opened by jspeed-meyers 12 months ago - 1 comment

#165 - licenseId is not a case-sensitive as per spdx ,but this tool follows case-sensitve?

Issue - State: closed - Opened by Bollineni-nitish-kumar 12 months ago - 13 comments
Labels: bug, blocked-on-upstream-work

#164 - Bump python version to 3.9 in GH Action CI

Pull Request - State: closed - Opened by jspeed-meyers 12 months ago - 1 comment
Labels: dependencies

#163 - Cut v1.0.0 release

Pull Request - State: closed - Opened by jspeed-meyers 12 months ago

#162 - Move Python Support From 3.8 to 3.9

Issue - State: closed - Opened by jspeed-meyers about 1 year ago
Labels: good first issue, dependencies

#161 - Cut a v1.0.0 Release?

Issue - State: closed - Opened by jspeed-meyers about 1 year ago - 1 comment
Labels: question

#160 - Bump spdx-tools from 0.8.1 to 0.8.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#159 - Bump project version to v0.6.0

Pull Request - State: closed - Opened by jspeed-meyers about 1 year ago

#158 - Bump spdx-tools from 0.8.1 to 0.8.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 9 comments
Labels: bug, dependencies

#157 - Package supplier and originator fields, is having both as NOASSERTION is not EO compliant?

Issue - State: closed - Opened by edonadei about 1 year ago - 10 comments
Labels: bug, P0, breaking-change

#156 - support for -v shorthand for --verbose

Pull Request - State: closed - Opened by devbysn about 1 year ago - 5 comments
Labels: bug, documentation

#155 - Syntax of the short arguments

Issue - State: closed - Opened by vargenau about 1 year ago - 3 comments
Labels: bug, documentation, good first issue

#154 - Fix file argument

Pull Request - State: closed - Opened by mwkm00 about 1 year ago - 8 comments
Labels: bug

#153 - Bug: test the presence of the --file argument if another argument is present

Issue - State: closed - Opened by jspeed-meyers about 1 year ago - 1 comment
Labels: bug, good first issue

#152 - Create release.md

Pull Request - State: closed - Opened by jspeed-meyers about 1 year ago - 1 comment
Labels: documentation

#151 - Make --file argument optional

Pull Request - State: closed - Opened by jspeed-meyers about 1 year ago
Labels: bug

#150 - ntia-checker --version does not give the version

Issue - State: closed - Opened by vargenau about 1 year ago - 4 comments
Labels: bug

#149 - Bump spdx-tools from 0.8.0 to 0.8.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#148 - ntia-checker fails for files under fileName must not be an absolute path

Issue - State: closed - Opened by m-dhana about 1 year ago - 5 comments
Labels: bug, question, P2

#147 - Bump version to 0.5.1

Pull Request - State: closed - Opened by jspeed-meyers about 1 year ago
Labels: enhancement

#146 - Bump spdx-tools from 0.8.0 to 0.8.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#145 - Docs: Create a Release How-To

Issue - State: closed - Opened by jspeed-meyers over 1 year ago
Labels: documentation, P2

#144 - Bump version in pyproject.toml

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago - 1 comment
Labels: enhancement

#143 - Remove coverage bot

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago
Labels: bug

#142 - implement --skip-validation flag

Pull Request - State: closed - Opened by lumjjb over 1 year ago - 3 comments
Labels: enhancement

#141 - fix json serialization for validation msgs

Pull Request - State: closed - Opened by lumjjb over 1 year ago - 1 comment
Labels: bug

#140 - make --file argument required

Pull Request - State: closed - Opened by lumjjb over 1 year ago - 1 comment
Labels: bug

#139 - Running ntia-checker without arguments fails with non-useful error

Issue - State: closed - Opened by lumjjb over 1 year ago
Labels: bug

#138 - Validation messages when outputting JSON fails

Issue - State: closed - Opened by lumjjb over 1 year ago - 1 comment
Labels: bug, good first issue, help wanted

#137 - Add password back to python publish CI job

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago - 1 comment
Labels: bug

#136 - Release pipeline to PyPI broken

Issue - State: closed - Opened by jspeed-meyers over 1 year ago
Labels: bug

#135 - Fix or Remove Python Coverage App in PRs

Issue - State: closed - Opened by jspeed-meyers over 1 year ago - 2 comments
Labels: bug

#134 - Cut New Release of ntia-conformance-checker

Issue - State: closed - Opened by jspeed-meyers over 1 year ago - 2 comments
Labels: enhancement

#133 - Upgrade spdx-tools to 8.0.0 - hooray

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago - 1 comment
Labels: dependencies

#132 - v0.3.1 is now broken with spdx/tools-python v0.8.0

Issue - State: closed - Opened by kaustriaf5 over 1 year ago - 8 comments
Labels: bug

#131 - Bump spdx-tools from 0.8.0rc2 to 0.8.0rc3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#130 - Bump spdx-tools from 0.8.0a3 to 0.8.0rc2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#129 - Bump spdx-tools from 0.8.0a3 to 0.8.0rc1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 4 comments
Labels: dependencies

#128 - Bump spdx-tools from 0.8.0a2 to 0.8.0a3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#127 - Added Pylint Badge

Pull Request - State: closed - Opened by Prayag-09 over 1 year ago
Labels: documentation

#126 - Remove NOASSERTION clause from supplier validation function

Pull Request - State: closed - Opened by myartym03 over 1 year ago - 2 comments

#125 - Allow 'NOASSERTION' as Supplier and Originator per SPDX 2.3 standard

Issue - State: closed - Opened by myartym03 over 1 year ago - 31 comments
Labels: question

#124 - Perform black formatting sbom_checker.py

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago

#123 - Update pipfile with 0.8.0a2 spdx-tools bump

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago

#122 - Migrate2spdx tools 0.8.0a1

Pull Request - State: closed - Opened by meretp over 1 year ago
Labels: enhancement

#121 - Set allow prereleases to false

Pull Request - State: closed - Opened by jspeed-meyers over 1 year ago - 1 comment
Labels: bug, P0

#120 - Build is Broken

Issue - State: closed - Opened by jspeed-meyers over 1 year ago
Labels: bug, P0