A directory sbom-composer containing two files AAA.spdx and BBB.spdx.
Files are attached (suffix .txt added to be able to upload on github).
compose -c ~/git/sbom-composer/config/example_config.yaml -d test-sbom-composer -s test-sbom-composer.spdx
File test-sbom-composer.spdx is not valid SPDX.
The following warning(s) were raised: [Invalid element reference in relationship: SPDXRef-top-level-artifact-1.0 at line number 47, Invalid element reference in relationship: SPDXRef-top-level-artifact-1.0 at line number 48, Package at line 34 invalid: Missing required package files for top-level-artifact, Missing required license information from files for top-level-artifact, Missing required package files for top-level-artifact]
AAA.spdx.txt
BBB.spdx.txt
test-sbom-composer.spdx.txt
A directory
sbom-composercontaining two filesAAA.spdxandBBB.spdx.Files are attached (suffix
.txtadded to be able to upload on github).File
test-sbom-composer.spdxis not valid SPDX.The following warning(s) were raised: [Invalid element reference in relationship: SPDXRef-top-level-artifact-1.0 at line number 47, Invalid element reference in relationship: SPDXRef-top-level-artifact-1.0 at line number 48, Package at line 34 invalid: Missing required package files for top-level-artifact, Missing required license information from files for top-level-artifact, Missing required package files for top-level-artifact]
AAA.spdx.txt
BBB.spdx.txt
test-sbom-composer.spdx.txt