Skip to content

feat: include component.evidence.identity in the SBOM #829

New issue
New issue
Open
Open
feat: include component.evidence.identity in the SBOM#829
Labels
enhancementNew feature or requesthelp wantedExtra attention is needed
@VinodAnandan

Description

@VinodAnandan
VinodAnandan
opened on Nov 10, 2024

Is your feature request related to a problem? Please describe.

Establishing accurate component identity is important in an SBOM, as it enables users to clearly understand how each component's identity was determined and the methods applied in this process.

Describe the solution you'd like

By including Component's .evidence.identity within the SBOM, we provide transparency on the techniques and data sources used to verify component identity, enhancing both the reliability and trustworthiness of the SBOM.

https://cyclonedx.org/docs/1.6/json/#components_items_evidence_identity

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or requesthelp wantedExtra attention is needed

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions