according to the CDX spec multiple components can be nested inside a component - see https://cyclonedx.org/docs/1.4/json/#components_items_components
this nested component thing can be utilized to render the internals of node's bundleDependencies package feature (see CycloneDX/cyclonedx-node-npm#13)
feature request:
functional requirement
non-functional
according to the CDX spec multiple
componentscan be nested inside acomponent- see https://cyclonedx.org/docs/1.4/json/#components_items_componentsthis nested component thing can be utilized to render the internals of node's
bundleDependenciespackage feature (see CycloneDX/cyclonedx-node-npm#13)feature request:
componentdata model aware of nested componentswas done via add support for sub-components (
Models.Component.components) #136functional requirement
thebuilders.fromPackageJsonare aware ofbundleDependenciesand generate apropriate data modelsthis is not the right place to traverse directories and generate nestings.
component.components.component.dependenciesare used in rendered/serialized/normalizeddependenciesgraphwas done via add support for sub-components (
Models.Component.components) #136non-functional
libs/*are transformed to local sub-packages that are properly bundled ion release.see [IDEA] have libs as bundled packages #64