[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openembedded-core
Subject:    [OE-core][RFC v2 00/12] SPDX3 Proof-of-Concept
From:       "Louis Rannou" <louis.rannou () syslinbit ! com>
Date:       2023-10-31 22:47:21
Message-ID: 20231031224733.367227-1-louis.rannou () syslinbit ! com
[Download RAW message or body]

Content-Transfer-Encoding: quoted-printable

This patch-set adds a proof-of-concept implementation of the upcoming
SPDX3 standard to the SBOM generation of the Yocto Project/OpenEmbedded.

The current code delivers an equivalent of what is produced for SPDX2.2.
The standard has not been released yet, and there is some specification
work in progress still. Our questions and open points are available
in the README.SPDX3 file.

Louis Rannou (7):
  create-spdx-3.0: copy 2.2 class
  oe/spdx: extend spdx.py objects
  oe/sbom: change the write_doc to prepare for spdx3
  create-spdx-3.0: SPDX3 objects as classes
  oe/sbom: search into json
  create-spdx-3.0: draft: remove low value stuff
  oeqa/selftest/cases/spdx: change test for spdx3

Marta Rybczynska (1):
  README.SPDX3: add file

Samantha Jalabert (4):
  create-spdx-3.0: support for recipe spdx creation
  create-spdx-3.0: support for spdx image
  create-spdx-3.0: Use FQDN spdx ids
  create-spdx-3.0: support for License profile

Louis Rannou (7):
  create-spdx-3.0: copy 2.2 class
  oe/spdx: extend spdx.py objects
  oe/sbom: change the write_doc to prepare for spdx3
  create-spdx-3.0: SPDX3 objects as classes
  oe/sbom: search into json
  create-spdx-3.0: draft: remove low value stuff
  oeqa/selftest/cases/spdx: change test for spdx3

Marta Rybczynska (1):
  README.SPDX3: add file

Samantha Jalabert (4):
  create-spdx-3.0: support for recipe spdx creation
  create-spdx-3.0: support for spdx image
  create-spdx-3.0: Use FQDN spdx ids
  create-spdx-3.0: support for License profile

 README.SPDX3                         |   45 +
 meta/classes/create-spdx-2.2.bbclass |    1 -
 meta/classes/create-spdx-3.0.bbclass | 1223 ++++++++++++++++++++++++++
 meta/classes/create-spdx.bbclass     |    2 +-
 meta/lib/oe/sbom.py                  |   38 +-
 meta/lib/oe/spdx.py                  |   30 +-
 meta/lib/oe/spdx3.py                 |  384 ++++++++
 meta/lib/oeqa/selftest/cases/spdx.py |   16 +-
 8 files changed, 1723 insertions(+), 16 deletions(-)
 create mode 100644 README.SPDX3
 create mode 100644 meta/classes/create-spdx-3.0.bbclass
 create mode 100644 meta/lib/oe/spdx3.py

--=20
2.42.0



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#189876): https://lists.openembedded.org/g/openembedded-core/message/189876
Mute This Topic: https://lists.openembedded.org/mt/102308602/4454766
Group Owner: openembedded-core+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [openembedded-core@marc.info]
-=-=-=-=-=-=-=-=-=-=-=-



[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic