DemaConsulting.SpdxTool 2.1.1

Prefix Reserved
dotnet tool install --global DemaConsulting.SpdxTool --version 2.1.1                
This package contains a .NET tool you can call from the shell/command line.
dotnet new tool-manifest # if you are setting up this repo
dotnet tool install --local DemaConsulting.SpdxTool --version 2.1.1                
This package contains a .NET tool you can call from the shell/command line.
#tool dotnet:?package=DemaConsulting.SpdxTool&version=2.1.1                
nuke :add-package DemaConsulting.SpdxTool --version 2.1.1                

SPDX Tool

GitHub forks GitHub Repo stars GitHub contributors GitHub Build Quality Gate Status Security Rating

Dotnet tool for manipulating SPDX SBOM files

Installation

The following will add SpdxTool to a Dotnet tool manifest file:

dotnet new tool-manifest # if you are setting up this repo
dotnet tool install --local DemaConsulting.SpdxTool

The tool can then be executed by:

dotnet spdx-tool <arguments>

Usage

The following shows the command-line usage of SpdxTool:

Usage: spdx-tool [options] <command> [arguments]

Options:
  -h, --help                               Show this help message and exit
  -v, --version                            Show version information and exit

Commands:
  help <command>                           Display extended help about a command
  add-package                              Add package to SPDX document (workflow only).
  add-relationship <spdx.json> <args>      Add relationship between elements.
  copy-package <spdx.json> <args>          Copy package between SPDX documents (workflow only).
  diagram <spdx.json> <mermaid.txt>        Generate mermaid diagram.
  find-package <spdx.json> <criteria>      Find package ID in SPDX document
  get-version <spdx.json> <criteria>       Get the version of an SPDX package.
  hash <operation> <algorithm> <file>      Generate or verify hashes of files
  print <text>                             Print text to the console
  query <pattern> <program> [args]         Query program output for value
  rename-id <arguments>                    Rename an element ID in an SPDX document.
  run-workflow <workflow.yaml>             Runs the workflow file/url
  set-variable                             Set workflow variable (workflow only).
  to-markdown <spdx.json> <out.md> [args]  Create Markdown summary for SPDX document
  update-package                           Update package in SPDX document (workflow only).
  validate <spdx.json> [ntia]              Validate SPDX document for issues

A more detailed description of the usage can be found here

Workflow YAML Files

The SpdxTool can be driven using workflow yaml files of the following format:

# Workflow parameters
parameters:
  parameter-name: value

# Workflow steps
steps:
- command: <command-name>
  inputs:
    <arguments mapping>

- command: <command-name>
  inputs:
    input1: value
    input2: ${{ parameter-name }}

A more detailed description of workflow YAML files can be found here

Additional Information

Additional information can be found at:

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

This package has no dependencies.

Version Downloads Last updated
2.1.1 121 10/9/2024
2.1.0 90 10/3/2024
2.0.0 147 9/13/2024
1.4.1 120 9/13/2024
1.4.0 123 7/29/2024
1.3.2 71 7/24/2024
1.3.1 117 7/22/2024
1.3.0 140 7/15/2024
1.2.0 171 7/10/2024
1.1.0 166 6/30/2024
1.0.0 130 6/24/2024
0.1.0-beta.1 53 6/24/2024
0.1.0-alpha.10 99 6/6/2024
0.1.0-alpha.9 61 6/6/2024
0.1.0-alpha.8 107 6/5/2024
0.1.0-alpha.7 60 6/3/2024
0.1.0-alpha.6 102 5/29/2024
0.1.0-alpha.5 97 5/27/2024
0.1.0-alpha.4 58 5/27/2024
0.1.0-alpha.3 67 5/25/2024
0.1.0-alpha.2 68 5/20/2024
0.1.0-alpha.1 66 5/19/2024