-
-
Notifications
You must be signed in to change notification settings - Fork 86
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
externalReference: Cannot convert 'static-analysis-report' to Enum #463
Comments
2.7.11 only supports CycloneDX 1.4 |
@hboutemy, thank you for the clarification. I performed a bunch more testing and got the new functionality working, such that I now have Dependency-Track (which consumes all my SBOMS) succesfully displaying additional external references that were configured in the plugin v2.7.11 I think it would help if the documentation specifically mentioned the version limitation and that new external references are introduced with new versions of the specification... I can think of at least two new ones that will be added in CycloneDX v1.6. Now that I have succesfully tested the functionality, I confirmed that Enum Constants are required and actual type (per the specification) gives an error and breaks the build. ie, As an aside, testing the new external references functionality inspired me to log CycloneDX/guides/issues/14 |
…NAME fixes #463 Signed-off-by: Hervé Boutemy <[email protected]>
…NAME fixes #463 Signed-off-by: Hervé Boutemy <[email protected]>
plugin v2.7.11 added support for custom External References via #428.
Following the documentation I initially added the following to configuration section of pluginManagement entry for plugin:
...and got the following error:
I then noticed line at bottom of documentation:
...so I tried
STATIC_ANALYSIS_REPORT
for type, but got the same error.Aside: I do think that the value of type should match what is in the CycloneDX documentation (eg the guide) as that makes it easier to expect common behaviour across plugins from different ecosystems (gradle, etc). This could be important when a Jenkins server is providing type as a variable at build time.
The text was updated successfully, but these errors were encountered: