audit, advisories and doctors/setup work

2026-01-13 18:53:39 +02:00
parent 9ca7cb183e
commit d7be6ba34b
811 changed files with 54242 additions and 4056 deletions
--- a/samples/cdx-1.6.json
+++ b/samples/cdx-1.6.json
@@ -0,0 +1,30 @@
+{
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.6",
+  "serialNumber": "urn:uuid:00000000-0000-0000-0000-000000000001",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2026-01-13T00:00:00Z",
+    "tools": [
+      {
+        "vendor": "StellaOps",
+        "name": "sbom-sample",
+        "version": "1.0.0"
+      }
+    ],
+    "component": {
+      "type": "application",
+      "name": "stellaops-sample-app",
+      "version": "1.0.0",
+      "purl": "pkg:generic/stellaops-sample-app@1.0.0"
+    }
+  },
+  "components": [
+    {
+      "type": "library",
+      "name": "sample-lib",
+      "version": "0.1.0",
+      "purl": "pkg:generic/sample-lib@0.1.0"
+    }
+  ]
+}
--- a/samples/spdx-3.0.1.json
+++ b/samples/spdx-3.0.1.json
@@ -0,0 +1,31 @@
+{
+  "@context": "https://spdx.org/rdf/3.0.1/spdx-context.jsonld",
+  "spdxVersion": "SPDX-3.0.1",
+  "creationInfo": {
+    "@type": "CreationInfo",
+    "specVersion": "3.0.1",
+    "created": "2026-01-13T00:00:00Z",
+    "createdBy": [
+      "Tool: stellaops-sbom-sample-1.0.0"
+    ],
+    "dataLicense": "CC0-1.0"
+  },
+  "@graph": [
+    {
+      "@type": "SpdxDocument",
+      "@id": "https://example.invalid/spdxdoc/0001",
+      "spdxId": "SPDXRef-DOCUMENT",
+      "name": "StellaOps Sample SPDX 3.0.1"
+    },
+    {
+      "@type": "SoftwareArtifact",
+      "@id": "https://example.invalid/spdxdoc/0001#artifact-1",
+      "spdxId": "SPDXRef-Artifact-1",
+      "name": "stellaops-sample-app",
+      "description": "Sample application component"
+    }
+  ],
+  "rootElement": [
+    "SPDXRef-DOCUMENT"
+  ]
+}