Morten
Good to see that you are producing SBOMs. Do you produce them in both SPDX
and Cyc;oneDX formats?
Are the SBOMs generated at an individual package level or at a distribution
level? Where are they stored/how are they made available to users?
Regards
Anthony
On Mon, 27 Feb 2023 at 12:36,
Bernhard
This is good to hear. I can see that you have some Perl modules generating
SBOMs (that is pretty unique from what I see in the SBOM creation world!)
but where are the generated SBOMs stored as I can't find them in the github
repo?
Regards
Anthony
On Fri, 3 Mar 2023 at 10:26, Bernhard
On 25/02/2023 16.56, Anthony Harrison wrote:
More tools are in the pipeline, including one to generate an SBOM from
an installed platform distribution or package (currently works for
Debian systems, work in progress for RPM based systems) and an audit
tool. I hope to publish these in the
