[3.X][feature-request] SBOM/SPDX support for images
Bug #2060105 reported by
Talha Can Havadar
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu Image |
Confirmed
|
Medium
|
Paul Mars |
Bug Description
Hello,
SPDX is a widely accepted standard to provide SBOM for a particular image. It would be nice to have it integrated into ubuntu-image tool.
Reference: https:/
description: | updated |
Changed in ubuntu-image: | |
status: | New → Confirmed |
importance: | Undecided → Medium |
assignee: | nobody → Paul Mars (upils) |
To post a comment you must log in.
Hello Talha.
Producing a SBOM is on our radar. We need to discuss with the security team to understand what is currently the favored format and if some tools/libraries /methods are already vetted to produce SBOMs.