cyclonedx-node-module icon indicating copy to clipboard operation
cyclonedx-node-module copied to clipboard
verified publisher icon CycloneDX

Implement 'Include extraneous dependencies' option

Open farisv opened this issue 4 years ago • 1 comments

Proposed workaround for #182 so user can include all extraneous dependencies in the bom.

Note that, this will not fix the core issue. Just a workaround for anyone who want to include the missing dependencies detected by this tool due to incorrect extraneous attribute by read-installed. It will include true positive extraneous dependency, but at least it's not missing the false positive extraneous dependency.

farisv avatar Oct 13 '21 19:10 farisv

Thanks for the PR. Lets hold off on this as replacing read-installed is currently a work in progress. (#215)

stevespringett avatar Dec 07 '21 14:12 stevespringett

please see if https://github.com/CycloneDX/cyclonedx-node-npm solves your needs. it actually has the capability to flag extraneous dependencies

jkowalleck avatar Oct 16 '22 07:10 jkowalleck