[4/5] sbom-cve-check: add recipe

Message ID	20260224-add-sbom-cve-check-v1-4-1c76fbd7f01b@bootlin.com
State	New
Headers	show Return-Path: <benjamin.robin@bootlin.com> ip: 185.246.84.56, mailfrom: benjamin.robin@bootlin.com) From: Benjamin Robin <benjamin.robin@bootlin.com> Date: Tue, 24 Feb 2026 16:53:46 +0100 Subject: [PATCH 4/5] sbom-cve-check: add recipe MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Message-Id: <20260224-add-sbom-cve-check-v1-4-1c76fbd7f01b@bootlin.com> References: <20260224-add-sbom-cve-check-v1-0-1c76fbd7f01b@bootlin.com> In-Reply-To: <20260224-add-sbom-cve-check-v1-0-1c76fbd7f01b@bootlin.com> To: openembedded-core@lists.openembedded.org Cc: ross.burton@arm.com, peter.marko@siemens.com, jpewhacker@gmail.com, olivier.benjamin@bootlin.com, antonin.godard@bootlin.com, mathieu.dubois-briand@bootlin.com, thomas.petazzoni@bootlin.com, Benjamin Robin <benjamin.robin@bootlin.com>
Series	sbom-cve-check: add CVE analysis tool and class \| expand [0/5] sbom-cve-check: add CVE analysis tool and class [1/5] python3-shacl2code: add recipe [2/5] python3-hatch-build-scripts: add recipe [3/5] python3-spdx-python-model: add recipe [4/5] sbom-cve-check: add recipe [5/5] sbom-cve-check.bbclass: Add class for post-build CVE analysis

Message ID

20260224-add-sbom-cve-check-v1-4-1c76fbd7f01b@bootlin.com

State

New

Headers

From: Benjamin Robin <benjamin.robin@bootlin.com>
Date: Tue, 24 Feb 2026 16:53:46 +0100
Subject: [PATCH 4/5] sbom-cve-check: add recipe
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-Id: <20260224-add-sbom-cve-check-v1-4-1c76fbd7f01b@bootlin.com>
References: <20260224-add-sbom-cve-check-v1-0-1c76fbd7f01b@bootlin.com>
In-Reply-To: <20260224-add-sbom-cve-check-v1-0-1c76fbd7f01b@bootlin.com>
To: openembedded-core@lists.openembedded.org
Cc: ross.burton@arm.com, peter.marko@siemens.com, jpewhacker@gmail.com,
 olivier.benjamin@bootlin.com, antonin.godard@bootlin.com,
 mathieu.dubois-briand@bootlin.com, thomas.petazzoni@bootlin.com,
 Benjamin Robin <benjamin.robin@bootlin.com>

Series

sbom-cve-check: add CVE analysis tool and class | expand

Commit Message

Benjamin Robin Feb. 24, 2026, 3:53 p.m. UTC

Provide sbom-cve-check (native) executable.

Signed-off-by: Benjamin Robin <benjamin.robin@bootlin.com>
---
 .../python/python3-sbom-cve-check_1.1.0.bb              | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/meta/recipes-devtools/python/python3-sbom-cve-check_1.1.0.bb b/meta/recipes-devtools/python/python3-sbom-cve-check_1.1.0.bb
new file mode 100644
index 000000000000..3d1c581e9f86
--- /dev/null
+++ b/meta/recipes-devtools/python/python3-sbom-cve-check_1.1.0.bb
@@ -0,0 +1,17 @@ 
+SUMMARY = "Lightweight SBOM CVE analysis tool"
+HOMEPAGE = "https://github.com/bootlin/sbom-cve-check"
+SECTION = "devel/python"
+LICENSE = "GPL-2.0-only"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=570a9b3749dd0463a1778803b12a6dce"
+
+PYPI_PACKAGE = "sbom_cve_check"
+SRC_URI[sha256sum] = "953256ac99851ba59bc8649b8023303007ff2981edbc4ee395011bd91c118095"
+
+inherit pypi python_hatchling
+
+RDEPENDS:${PN} += " \
+    python3-spdx-python-model \
+    python3-pyyaml \
+"
+
+BBCLASSEXTEND = "native nativesdk"

[4/5] sbom-cve-check: add recipe

Commit Message

Patch