You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
NOTE: SLE dotnet images are only available for the `amd64` architecture. See this [discussion](https://github.com/SUSE/bci/discussions/41). Use `--platform=linux/amd64` as shown when using the SLE images. We highly recommend the debian images for dotnet.
@@ -156,7 +156,7 @@ Then, run cdxgen cli with the `--deep` argument.
156
156
Use the custom image `ghcr.io/cyclonedx/cdxgen-debian-swift:v11`.
157
157
158
158
```shell
159
-
docker run --rm -e CDXGEN_DEBUG_MODE=debug -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/cyclonedx/cdxgen-debian-swift:v11 -r /app -o /app/bom.json -t swift
159
+
docker run --rm -e CDXGEN_DEBUG_MODE=verbose -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/cyclonedx/cdxgen-debian-swift:v11 -r /app -o /app/bom.json -t swift
160
160
```
161
161
162
162
### Python applications
@@ -168,33 +168,33 @@ Example invocation:
168
168
Python 3.6 (Direct dependencies only without dependency tree)
Working with Ruby 1.8 applications? We have a Ruby 1.8 image that uses `debian:jessie` as the base image. Unfortunately, we couldn't find a way to install nodejs >= 20 in jessie, so we need a split workflow:
Copy file name to clipboardexpand all lines: contrib/cdxgenGPT/rate-my-xbom.md
+4-1
Original file line number
Diff line number
Diff line change
@@ -54,8 +54,10 @@ Review the file carefully as it details the CLI's thought process, including:
54
54
- Success conditions and build errors encountered before generating the SBOM.
55
55
- Successful component identifications (lines starting with "I found <count> <type> packages").
56
56
- Recommendations to improve SBOM precision and address build errors (lines including "I recommend").
57
+
- cdxgen's thought process, confusion, and fallback decisions are typically represented by phrases such as "wondering," "thinking," and the 🤔 emoji.
58
+
- Lines beginning with "Wait, " indicate that cdxgen is being careful in constructing the correct build arguments and in parsing and analyzing all required sub-projects, modules, and code paths.
57
59
58
-
Use this document to assess the SBOM's precision and completeness. If the file is not attached, consider suggesting that the user set `CDXGEN_THOUGHT_LOG` to generate it.
60
+
Use the information in the thinking log file to assess the SBOM's precision and completeness. If the file is not attached, consider suggesting that the user set `CDXGEN_THOUGHT_LOG`or `CDXGEN_DEBUG_MODE=verbose`to generate it. Do not attempt to guess or invent information.
59
61
60
62
## Presenting Your Review
61
63
- Use only the details in this document to outline and classify possible areas of enhancement.
@@ -69,6 +71,7 @@ Use this document to assess the SBOM's precision and completeness. If the file i
69
71
- Do not advise on attestations.
70
72
- For small BOMs with fewer than 5 components, invite the user to supply a bigger BOM for more thorough feedback.
71
73
- If no improvements are needed, congratulate the user and thank them for requesting this review.
74
+
- Do not invent any arguments for cdxgen CLI.
72
75
73
76
## Soliciting Feedback
74
77
- If the user concludes the review with compliments (e.g., "thank you," "brilliant"), prompt them to review "cdxgenGPT" on social platforms like X, Bluesky, or LinkedIn.
0 commit comments