SBOM-CycloneDX
view release on metacpan or search on metacpan
lib/SBOM/CycloneDX/Composition.pm view on Meta::CPAN
Properties:
=over
=item * C<aggregate>, Specifies an aggregate type that describes how complete a
relationship is.
=item * C<assemblies>, The bom-ref identifiers of the components or services being
described. Assemblies refer to nested relationships whereby a constituent part
may include other constituent parts. References do not cascade to child parts.
References are explicit for the specified constituent part only.
=item * C<bom_ref>, An identifier which can be used to reference the composition
elsewhere in the BOM. Every C<bom-ref> must be unique within the BOM.
Value SHOULD not start with the BOM-Link intro 'urn:cdx:' to avoid conflicts with BOM-Links.
=item * C<dependencies>, The bom-ref identifiers of the components or services
being described. Dependencies refer to a relationship whereby an independent
constituent part requires another independent constituent part. References do
not cascade to transitive dependencies. References are explicit for the specified
dependency only.
=item * C<signature>, Enveloped signature in JSON Signature Format
(JSF) (L<https://cyberphone.github.io/doc/security/jsf.html>).
=item * C<vulnerabilities>, The bom-ref identifiers of the vulnerabilities being
described.
=back
lib/SBOM/CycloneDX/schema/bom-1.3-strict.schema.json view on Meta::CPAN
"title": "Aggregate",
"description": "Specifies an aggregate type that describe how complete a relationship is."
},
"assemblies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
}
}
},
"aggregateType": {
"type": "string",
"default": "not_specified",
"enum": [
"complete",
"incomplete",
"incomplete_first_party_only",
lib/SBOM/CycloneDX/schema/bom-1.3.schema.json view on Meta::CPAN
"title": "Aggregate",
"description": "Specifies an aggregate type that describe how complete a relationship is."
},
"assemblies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
}
}
},
"aggregateType": {
"type": "string",
"default": "not_specified",
"enum": [
"complete",
"incomplete",
"incomplete_first_party_only",
lib/SBOM/CycloneDX/schema/bom-1.4.schema.json view on Meta::CPAN
"title": "Aggregate",
"description": "Specifies an aggregate type that describe how complete a relationship is."
},
"assemblies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
},
"signature": {
"$ref": "#/definitions/signature",
"title": "Signature",
"description": "Enveloped signature in [JSON Signature Format (JSF)](https://cyberphone.github.io/doc/security/jsf.html)."
}
}
},
"aggregateType": {
"type": "string",
lib/SBOM/CycloneDX/schema/bom-1.5.schema.json view on Meta::CPAN
"title": "Ref",
"$ref": "#/definitions/refLinkType"
},
{
"title": "BOM-Link Element",
"$ref": "#/definitions/bomLinkElementType"
}
]
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
},
"vulnerabilities": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the vulnerabilities being described."
},
lib/SBOM/CycloneDX/schema/bom-1.6.schema.json view on Meta::CPAN
"title": "Ref",
"$ref": "#/definitions/refLinkType"
},
{
"title": "BOM-Link Element",
"$ref": "#/definitions/bomLinkElementType"
}
]
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
},
"vulnerabilities": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the vulnerabilities being described."
},
lib/SBOM/CycloneDX/schema/bom-1.7.schema.json view on Meta::CPAN
"title": "Ref",
"$ref": "#/definitions/refLinkType"
},
{
"title": "BOM-Link Element",
"$ref": "#/definitions/bomLinkElementType"
}
]
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Assemblies refer to nested relationships whereby a constituent part may include other constituent parts. References do not cascade to child parts. Refere...
},
"dependencies": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the components or services being described. Dependencies refer to a relationship whereby an independent constituent part requires another independent constituent part. References do not cascade to ...
},
"vulnerabilities": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string"
},
"title": "BOM references",
"description": "The bom-ref identifiers of the vulnerabilities being described."
},
( run in 0.634 second using v1.01-cache-2.11-cpan-ceb78f64989 )