github.com/CycloneDX/sbom-utility@v0.16.0/test/cyclonedx/cdx-1-2-invalid-license-name-has-expression.json (about) 1 { 2 "bomFormat": "CycloneDX", 3 "specVersion": "1.2", 4 "serialNumber": "urn:uuid:1f860713-54b9-4253-ba5a-9554851904af", 5 "version": 1, 6 "metadata": { 7 "timestamp": "2020-08-03T03:20:53.771Z", 8 "tools": [ 9 { 10 "vendor": "CycloneDX", 11 "name": "Node.js module", 12 "version": "2.0.0" 13 } 14 ], 15 "component": { 16 "type": "library", 17 "bom-ref": "pkg:npm/juice-shop@11.1.2", 18 "name": "juice-shop", 19 "version": "11.1.2", 20 "description": "Probably the most modern and sophisticated insecure web application", 21 "licenses": [ 22 { 23 "license": { 24 "id": "MIT" 25 } 26 } 27 ], 28 "purl": "pkg:npm/juice-shop@11.1.2", 29 "externalReferences": [ 30 { 31 "type": "website", 32 "url": "https://owasp-juice.shop" 33 }, 34 { 35 "type": "issue-tracker", 36 "url": "https://github.com/bkimminich/juice-shop/issues" 37 }, 38 { 39 "type": "vcs", 40 "url": "git+https://github.com/bkimminich/juice-shop.git" 41 } 42 ] 43 } 44 }, 45 "components": [ 46 { 47 "type": "library", 48 "bom-ref": "pkg:npm/rc@1.2.8", 49 "name": "rc", 50 "version": "1.2.8", 51 "description": "hardwired configuration loader", 52 "hashes": [ 53 { 54 "alg": "SHA-1", 55 "content": "cd924bf5200a075b83c188cd6b9e211b7fc0d3ed" 56 } 57 ], 58 "licenses": [ 59 { 60 "license": { 61 "name": "(BSD-2-Clause OR MIT OR Apache-2.0)" 62 } 63 } 64 ], 65 "purl": "pkg:npm/rc@1.2.8", 66 "externalReferences": [ 67 { 68 "type": "website", 69 "url": "https://github.com/dominictarr/rc#readme" 70 }, 71 { 72 "type": "issue-tracker", 73 "url": "https://github.com/dominictarr/rc/issues" 74 }, 75 { 76 "type": "vcs", 77 "url": "git+https://github.com/dominictarr/rc.git" 78 } 79 ] 80 } 81 ] 82 }