Parsing SPDX 3.0 packages and validating with NTIA by pragnya17 · Pull Request #963 · microsoft/sbom-tool (original) (raw)

Skip to content

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sign up

Appearance settings

Conversation

@pragnya17

There was a small bug in the parsing and NTIA validation of SPDX 3.0 packages, causing validation to fail for SBOMs with packages when using a complianceStandard of NTIA. This PR fixes that bug and unit tests the package parsing and validation with NTIA.

@pragnya17

DaveTryon

DaveTryon

DaveTryon

ppandrate and others added 2 commits

March 7, 2025 16:23

@pragnya17

@pragnya17

@pragnya17 pragnya17 deleted the ppandrate_validatingWithNTIABug branch

March 11, 2025 17:07

pragnya17 added a commit that referenced this pull request

Mar 12, 2025

@pragnya17

Co-authored-by: ppandrate ppandrate@microsoft.com

This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters

[ Show hidden characters]({{ revealButtonHref }})

2 participants

@pragnya17 @DaveTryon