Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add order-agnostic SBOM comparison utility #280

Open
shaynakapadia opened this issue Nov 5, 2024 · 0 comments
Open

Add order-agnostic SBOM comparison utility #280

shaynakapadia opened this issue Nov 5, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@shaynakapadia
Copy link
Collaborator

When creating unittests or working with SBOM's in general, it can be helpful to compare SBOMs to see if they are the same or not. We would like to do this in a way that order-agnostic for dictionaries and lists within an SBOM.

Functionality should be added to the SBOM class (maybe an overrideing of the eq function) that allows a user to accurately compare all the lists (hardware, software, systems, relationships, etc) to check if two sboms are the same in a meaningful way.

As of now, the cli unit tests contains a basic implementation of this that sorts each list by UUID and compares after sorting. Some thought should be put into if this is the best way, and then the functionality can be moved to a more universal location.

It could also be useful to show the difference in two SBOMs, but the basic functionality that should exist is checking if two SBOMs are equivalent or not.
@shaynakapadia shaynakapadia added the enhancement New feature or request label Nov 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@shaynakapadia