@@ -105,8 +105,8 @@ do_sbom_cve_check[sstate-inputdirs] = "${SBOM_CVE_CHECK_DEPLOYDIR}"
do_sbom_cve_check[sstate-outputdirs] = "${DEPLOY_DIR_IMAGE}"
do_sbom_cve_check[depends] += " \
python3-sbom-cve-check-native:do_populate_sysroot \
- sbom-cve-check-update-cvelist-native:do_unpack \
- sbom-cve-check-update-nvd-native:do_unpack \
+ sbom-cve-check-update-cvelist-native:do_patch \
+ sbom-cve-check-update-nvd-native:do_patch \
"
python do_sbom_cve_check_setscene() {
@@ -9,7 +9,6 @@ require sbom-cve-check-config.inc
SBOM_CVE_CHECK_DB_NAME[doc] = "Database name, which is the Git repository directory name. \
The git repository will be stored in ${SBOM_CVE_CHECK_DEPLOY_DB_DIR)/"
-deltask do_patch
deltask do_configure
deltask do_compile
deltask do_install
The `do_populate_lic` task was failing because it runs after `do_patch`, but the indirect dependency on `do_unpack` was lost when the `do_patch` task was deleted. It is safe, and even preferable, to retain the `do_patch` task, as this allows users to apply patches to their CVE databases. Follow-up to commit 8ef22ad9e302f86b2da4fa81541a464e95b9ef3c ("sbom-cve-check: Add class for post-build CVE analysis"). Signed-off-by: Benjamin Robin <benjamin.robin@bootlin.com> --- meta/classes-recipe/sbom-cve-check.bbclass | 4 ++-- meta/recipes-devtools/sbom-cve-check/sbom-cve-check-update-db.inc | 1 - 2 files changed, 2 insertions(+), 3 deletions(-) --- base-commit: c56990178b31b893fbf695eaf6b67de501e9d2e9 change-id: 20260401-fix-lic-sbom-cve-check-69d64ad949b4 Best regards, -- Benjamin Robin <benjamin.robin@bootlin.com>