Greetings. Per prior discussion, I have created a very concise dummy project that contains some typical BOM edge cases. Here it is:
https://github.com/yevster/App-BOM-ination Some features: * A project-level declared license * An inline proprietary license in InsufficientKarmaException.java. This file also contains its own copyright. * A build file (build.gradle) that must be recognized as such, and introduces static link relationships. * The said build file has its own compound license declared via SPDXLicenseIdentifier * The Main.java file has "borrowed" code from Apache Commons Math, which we would expect to be defined as an external package with a Maven external reference, and the borrowed lines should be identified by a snippet. * The readme file should be identified as of type DOCUMENTATION. Its Copyright should be indicated in the respective field. * logo.png should be identified as file type IMAGE. This is a very tiny project, but its cross-platformness and use of a POM-oriented build system should make it a decent test case for 2.0 and 2.1 features. I'll be happy to accept pull requests (unless the SPDX account cares to have its own official fork). [cid:[email protected]] Yev Bronshteyn Senior Software Engineer E: [email protected]<mailto:[email protected]> blackducksoftware.com<https://www.blackducksoftware.com/>
_______________________________________________ Spdx-tech mailing list [email protected] https://lists.spdx.org/mailman/listinfo/spdx-tech
