You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I thought we had the configure args in the main SBoM now - I guess not 😢
Ideally we'd just pull the SBoM from the API but since we need the metadata file as well I guess it makes sense to have the two lines look similar.
We typically don't want to encourage people going directly to our backend location on github.
We should ensure that all information required for reproducibility is in the main SBoM file so the metadata file (Primarily for use by the adoptium API) is not required for reproducibility verification.
The goal here should be to ensure that out documentating like this for Linux/x64 does not include curl -L -O https://github.com/adoptium/temurin21-binaries/releases/download/jdk-21.0.4%2B7/OpenJDK21U-sbom_x64_linux_hotspot_21.0.4_7-metadata.json because all of the information has been added to the SBoM file.
The text was updated successfully, but these errors were encountered:
I thought we had the configure args in the main SBoM now - I guess not 😢
Ideally we'd just pull the SBoM from the API but since we need the metadata file as well I guess it makes sense to have the two lines look similar.
We typically don't want to encourage people going directly to our backend location on github.
Originally posted by @sxa in adoptium/adoptium.net#2949 (comment)
We should ensure that all information required for reproducibility is in the main SBoM file so the metadata file (Primarily for use by the adoptium API) is not required for reproducibility verification.
The goal here should be to ensure that out documentating like this for Linux/x64 does not include
curl -L -O https://github.com/adoptium/temurin21-binaries/releases/download/jdk-21.0.4%2B7/OpenJDK21U-sbom_x64_linux_hotspot_21.0.4_7-metadata.jsonbecause all of the information has been added to the SBoM file.The text was updated successfully, but these errors were encountered: