Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Policy: Add support for BOM in policy conditions #773

Open
stevespringett opened this issue Sep 8, 2020 · 2 comments
Open

Policy: Add support for BOM in policy conditions #773

stevespringett opened this issue Sep 8, 2020 · 2 comments
Labels
enhancement New feature or request needs milestone Issues or PRs that are pending a milestone assignment on hold p2 Non-critical bugs, and features that help organizations to identify and reduce risk

Comments

@stevespringett
Copy link
Member

Extend functionality implemented in #83 to support BOM (CycloneDX, SPDX, spec versions, signed/unsigned, etc) in policy conditions.
@stevespringett stevespringett added the enhancement New feature or request label Sep 8, 2020
@stevespringett stevespringett added this to the 4.3 milestone Sep 9, 2020
@stevespringett stevespringett added the p2 Non-critical bugs, and features that help organizations to identify and reduce risk label Sep 9, 2020
@stevespringett
Copy link
Member Author

May require CycloneDX/cyclonedx-core-java#68

@stevespringett stevespringett modified the milestones: 4.3, 4.4 Feb 10, 2021
@stevespringett stevespringett modified the milestones: 4.4, 4.10 Sep 21, 2021
@nscuro nscuro mentioned this issue Jun 28, 2023
Open
@msymons msymons modified the milestones: 4.10, 4.11 Oct 23, 2023
@msymons
Copy link
Member

msymons commented Oct 23, 2023

In order to make this useful we will need to first implement project-level policies per #2130.

Implementing signature verification would also require additional work to be carried our within DT.

@msymons msymons modified the milestones: 4.11, 4.10 Oct 25, 2023
@nscuro nscuro removed this from the 4.11 milestone Mar 3, 2024
@nscuro nscuro added the needs milestone Issues or PRs that are pending a milestone assignment label Mar 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request needs milestone Issues or PRs that are pending a milestone assignment on hold p2 Non-critical bugs, and features that help organizations to identify and reduce risk
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@stevespringett @msymons @nscuro