github.com/nextlinux/gosbom@v0.81.1-0.20230627115839-1ff50c281391/gosbom/formats/spdxjson/test-fixtures/snapshot/TestSPDXJSONImageEncoder.golden

github.com/nextlinux/gosbom@v0.81.1-0.20230627115839-1ff50c281391/gosbom/formats/spdxjson/test-fixtures/snapshot/TestSPDXJSONImageEncoder.golden (about)

     1  {
     2   "spdxVersion": "SPDX-2.3",
     3   "dataLicense": "CC0-1.0",
     4   "SPDXID": "SPDXRef-DOCUMENT",
     5   "name": "user-image-input",
     6   "documentNamespace": "https://anchore.com/gosbom/image/user-image-input-5b9aac79-334c-4d6a-b2e6-95a819c1d45a",
     7   "creationInfo": {
     8    "licenseListVersion": "3.20",
     9    "creators": [
    10     "Organization: Nextlinux, Inc",
    11     "Tool: gosbom-v0.42.0-bogus"
    12    ],
    13    "created": "2023-06-05T18:49:14Z"
    14   },
    15   "packages": [
    16    {
    17     "name": "package-1",
    18     "SPDXID": "SPDXRef-Package-python-package-1-125840abc1c66dd7",
    19     "versionInfo": "1.0.1",
    20     "downloadLocation": "NOASSERTION",
    21     "filesAnalyzed": false,
    22     "sourceInfo": "acquired package info from installed python package manifest file: /somefile-1.txt",
    23     "licenseConcluded": "NOASSERTION",
    24     "licenseDeclared": "MIT",
    25     "copyrightText": "NOASSERTION",
    26     "externalRefs": [
    27      {
    28       "referenceCategory": "SECURITY",
    29       "referenceType": "cpe23Type",
    30       "referenceLocator": "cpe:2.3:*:some:package:1:*:*:*:*:*:*:*"
    31      },
    32      {
    33       "referenceCategory": "PACKAGE-MANAGER",
    34       "referenceType": "purl",
    35       "referenceLocator": "a-purl-1"
    36      }
    37     ]
    38    },
    39    {
    40     "name": "package-2",
    41     "SPDXID": "SPDXRef-Package-deb-package-2-958443e2d9304af4",
    42     "versionInfo": "2.0.1",
    43     "downloadLocation": "NOASSERTION",
    44     "filesAnalyzed": false,
    45     "sourceInfo": "acquired package info from DPKG DB: /somefile-2.txt",
    46     "licenseConcluded": "NOASSERTION",
    47     "licenseDeclared": "NOASSERTION",
    48     "copyrightText": "NOASSERTION",
    49     "externalRefs": [
    50      {
    51       "referenceCategory": "SECURITY",
    52       "referenceType": "cpe23Type",
    53       "referenceLocator": "cpe:2.3:*:some:package:2:*:*:*:*:*:*:*"
    54      },
    55      {
    56       "referenceCategory": "PACKAGE-MANAGER",
    57       "referenceType": "purl",
    58       "referenceLocator": "pkg:deb/debian/package-2@2.0.1"
    59      }
    60     ]
    61    }
    62   ],
    63   "relationships": [
    64    {
    65     "spdxElementId": "SPDXRef-DOCUMENT",
    66     "relatedSpdxElement": "SPDXRef-DOCUMENT",
    67     "relationshipType": "DESCRIBES"
    68    }
    69   ]
    70  }