Skip to content

Fix missing type definitions for ComponentData subelements in XML #601

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 22, 2025
Merged

Fix missing type definitions for ComponentData subelements in XML #601

merged 1 commit into from
Feb 22, 2025

Conversation

@andreas-hilti
Copy link
Contributor

@andreas-hilti andreas-hilti commented Feb 21, 2025
edited by jkowalleck
Loading

Fix missing type definitions for ComponentData subelements

Fixes #600

@andreas-hilti andreas-hilti requested a review from a team as a code owner February 21, 2025 22:19
@jkowalleck jkowalleck changed the title Fix missing type definitions for ComponentData subelements Fix missing type definitions for ComponentData subelements in XML Feb 22, 2025
jkowalleck
jkowalleck approved these changes Feb 22, 2025
View reviewed changes
schema/bom-1.7.xsd
</xs:annotation>
</xs:element>
<xs:element name="sensitiveData" minOccurs="0" maxOccurs="unbounded">
<xs:element name="sensitiveData" type="xs:string" minOccurs="0" maxOccurs="unbounded">
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

in JSON its an array of strings.
in protobug it is repeated string.

conclusion: was intended to be unbound string in XML, too

schema/bom-1.7.xsd
</xs:annotation>
<xs:sequence>
<xs:element name="description" minOccurs="0" maxOccurs="1">
<xs:element name="description" type="xs:string" minOccurs="0" maxOccurs="1">
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

in JSON its a strings.
in protobug it is string.

conclusion: was intended to be string in XML, too

@jkowalleck jkowalleck merged commit a0a6f8f into CycloneDX:1.7-dev Feb 22, 2025
9 checks passed
@jkowalleck jkowalleck added this to the 1.7 milestone Feb 22, 2025
@jkowalleck jkowalleck mentioned this pull request Feb 22, 2025
Merged
stevespringett added a commit that referenced this pull request Oct 21, 2025
@stevespringett
v1.7 (#511)
11c0e00 
## Fixed

* XML schema: add type for `ComponentData` sub-elements ([#600] via
[#601])
* JSON schema: added the correct `deprecated` mark for already
deprecated structures (via [a973a6b])

## Deprecated

* Deprecated various fields and structures related to _cryptographic
transparency_ - _CBOM_ . (via [#657])
Use the newly added structures and fields for detailing the information
instead.

## Changed

* Extended the scope of _formulations_. (via [#647])
From now on, _formulations_ may be used to describe how any referencable
object within the BOM came together, including components, services,
metadata, declarations, or the BOM itself.
  Before, it was restricted to components and services.

## Added

* Support for _external components_ with _version-ranges_ ([#321] via
[#586])
* Support for _multiple_ SPDX License Expressions alongside with other
licenses ([#454] via [#582])
* Support for _Streebog hashing algorithm_ ([#485] via [#525])
* Support for license expression _details and properties_ ([#549],
[#554] via [#599])
* Support for expressing BOM distribution constraints with the _Traffic
Light Protocol_ (TLP) in metadata ([#595] via [#604], [#653])
* Support for representing _patent information_ ([#596] via [#597])
* Support for _properties_ on external-references ([#608] via [#610])
* Support for _citations_ ([#630] via [#629])
* Support for detailing _cryptographic transparency_ information -
_CBOM_ ([#569] via [#657])

## Documentation

* Elaborated component classification "platform", explicitly expressed
that it includes just-in-time compilers and interpreters ([#233] via
[#647])
* Removed the term "optional" from the schema where the definition was
already unambiguous ([#616], [#649] via [#680])

## Test data

* Add test data for CycloneDX 1.7 implementations in XML, JSON, Protobuf


[#233]: #233
[#321]: #321
[#454]: #454
[#485]: #485
[#525]: #525
[#549]: #549
[#554]: #554
[#569]: #569
[#582]: #582
[#586]: #586
[#595]: #595
[#596]: #596
[#597]: #597
[#599]: #599
[#600]: #600
[#601]: #601
[#604]: #604
[#608]: #608
[#610]: #610
[#616]: #616
[#629]: #629
[#630]: #630
[#647]: #647
[#649]: #649
[#653]: #653
[#657]: #657
[#680]: #680
[a973a6b]:
a973a6b

----

- fixes #233
- fixes #321
- fixes #454
- fixes #485
- fixes #549
- fixes #554
- fixes #595
- fixes #596
- fixes #600
- fixes #608
- fixes #629
- fixes #616 
- fixes #649
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jkowalleck jkowalleck jkowalleck approved these changes

Assignees

No one assigned

Labels

defect format: XML

Projects

None yet

Milestone

1.7

Development

Successfully merging this pull request may close these issues.

2 participants

@andreas-hilti @jkowalleck