efc4f5f761
- Added `PolicyFindings` property to `SbomCompositionRequest` to include policy findings in SBOM. - Implemented `NormalizePolicyFindings` method to process and validate policy findings. - Updated `SbomCompositionRequest.Create` method to accept policy findings as an argument. - Upgraded CycloneDX.Core package from version 5.1.0 to 10.0.1. - Marked several tasks as DONE in TASKS.md, reflecting completion of SBOM-related features. - Introduced telemetry metrics for Go analyzer to track heuristic fallbacks. - Added performance benchmarks for .NET and Go analyzers. - Created new test fixtures for .NET applications, including dependencies and runtime configurations. - Added licenses and nuspec files for logging and toolkit packages used in tests. - Implemented `SbomPolicyFinding` record to encapsulate policy finding details and normalization logic.
313 B
313 B
| 1 | scenario | iterations | sample_count | mean_ms | p95_ms | max_ms |
|---|---|---|---|---|---|---|
| 2 | node_monorepo_walk | 5 | 4 | 9.4303 | 36.1354 | 45.0012 |
| 3 | java_demo_archive | 5 | 1 | 20.6964 | 81.5592 | 101.7846 |
| 4 | go_buildinfo_fixture | 5 | 2 | 35.0345 | 136.5466 | 170.1612 |
| 5 | dotnet_multirid_fixture | 5 | 2 | 29.1862 | 106.6249 | 132.3018 |
| 6 | python_site_packages_walk | 5 | 3 | 12.0024 | 45.0165 | 56.0003 |