我安装了Micorosoft Sbom-tool,但是它检测不到任何包

问题描述 投票:0回答:0

我在 Linux 和 Windows 环境中安装并运行了 sbom-tool,但它似乎没有检测到像下面这样的单个包。 有什么我想念的吗?

[INFO] Log file: XXXX.log
[INFO] Run correlation id: XXX

[INFO] Attempting to load default detectors
[INFO] 20 detectors were found in Microsoft.ComponentDetection.Detectors

[WARN] Provided search path XXX/Plugins does not exist.


[INFO] Finding components...
[INFO] Starting enumeration of XXX
[INFO] No instructions received to scan docker images.
[INFO] Enumerated 388 files and 80 directories in 00:00:00.0409279
[WARN] SPDX file at XXX/manifest.spdx.json does not have root elements in documentDescribes section, considering SPDXRef-Document as a root element.
[INFO]
[INFO] _______________________________________________________________________________________________________________________________________
[INFO] |Component Detector Id         |Detection Time                |# Components Found            |# Explicitly Referenced                 |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |CocoaPods                     |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Go                            |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Gradle                        |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Ivy (Beta)                    |0.15 seconds                  |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Linux                         |0.047 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |MvnCli                        |0.15 seconds                  |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Npm                           |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |NpmWithRoots                  |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |NuGet                         |0.089 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |NuGetPackagesConfig (Beta)    |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |NuGetProjectCentric           |0.092 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Pip                           |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Pnpm                          |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Poetry (Beta)                 |0.089 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Ruby                          |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |RustCrateDetector             |0.088 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |SPDX22SBOM                    |0.13 seconds                  |1                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Vcpkg (Beta)                  |0.089 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Yarn                          |0.091 seconds                 |0                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO] |Total                         |0.17 seconds                  |1                             |0
                     |
[INFO] |______________________________|______________________________|______________________________|________________________________________|
[INFO]

我尝试从 sbom-tool 源代码生成一个 SBOM,如下所示

[Linux环境]

  1. 按照 readme
    2. 中的描述获得 Linux 可执行文件
  2. 获取并提取sbom-tool源代码.
  3. 执行命令
. /sbom-tool generate -b <output path> -bc <source path> -pn TestProject -pv 1.0.0 -ps MyCompany -nsb http://mycompany.com

[Windows环境].

  1. 下载适用于 windows 的可执行文件
  2. 获取并提取sbom-tool源代码
  3. 执行命令
sbom-tool-win-x64.exe generate -b <output path> -bc <source path> -pn TestProject -pv 1.0.0 -ps MyCompany -nsb http://mycompany.com
package nuget package-managers
最新问题
© www.soinside.com 2019 - 2024. All rights reserved.