github.com/google/osv-scalibr@v0.4.1/extractor/filesystem/sbom/spdx/testdata/sbom.spdx

github.com/google/osv-scalibr@v0.4.1/extractor/filesystem/sbom/spdx/testdata/sbom.spdx (about)

     1  SPDXVersion: SPDX-2.3
     2  DataLicense: CC0-1.0
     3  DocumentNamespace: http://example.org/documents/examplesbom-1.0.1
     4  DocumentName: examplesbom
     5  SPDXID: SPDXRef-DOCUMENT
     6  
     7  ## Creation Information
     8  Creator: Person: John Doe
     9  Created: 2023-04-28T15:44:16Z
    10  LicenseListVersion: 3.18
    11  ## Relationships
    12  Relationship: SPDXRef-DOCUMENT DESCRIBES SPDXRef-nginx
    13  Relationship: SPDXRef-DOCUMENT DESCRIBES SPDXRef-openssl
    14  
    15  ## Package Information
    16  PackageName: Nginx
    17  SPDXID: SPDXRef-nginx
    18  PackageDownloadLocation: http://example.org/nginx.rar
    19  PackageLicenseConcluded: NOASSERTION
    20  PackageLicenseDeclared: NOASSERTION
    21  PackageCopyrightText: NOASSERTION
    22  PackageSummary: <text>Nginx</text>
    23  PackageDescription: <text>Nginx 1.21.1</text>
    24  ExternalRef: SECURITY cpe23Type cpe:2.3:a:nginx:nginx:1.21.1
    25  FilesAnalyzed: false
    26  
    27  ## Package Information
    28  PackageName: openssl
    29  SPDXID: SPDXRef-openssl
    30  PackageDownloadLocation: http://example.org/nginx.rar
    31  PackageLicenseConcluded: NOASSERTION
    32  PackageLicenseDeclared: NOASSERTION
    33  PackageCopyrightText: NOASSERTION
    34  PackageSummary: <text>openssl</text>
    35  PackageDescription: <text>openssl 1.1.1</text>
    36  ExternalRef: SECURITY purl pkg:generic/openssl@1.1.1l
    37  FilesAnalyzed: false