@cyclonedx/cdxgen 12.1.2 → 12.1.3

package/README.md

@@ -1,3 +1,4 @@
+[![SBOM](https://img.shields.io/badge/SBOM-with_%E2%9D%A4%EF%B8%8F_by_cdxgen-FF753D)](https://github.com/cdxgen/cdxgen)
 [![JSR][badge-jsr]][jsr-cdxgen]
 [![NPM][badge-npm]][npmjs-cdxgen]
 [![GitHub Releases][badge-github-releases]][github-releases]
@@ -50,13 +51,6 @@ Sections include:
 
 ## Usage
 
-## For Contributors / Developers
-
-```shell
-pnpm install
-pnpm dlx cdxgen
-```
-
 ## Installing
 
 ```shell
@@ -78,7 +72,7 @@ $ brew install cdxgen
 If you are a [Winget][winget-homepage] user on windows, you can also install cdxgen via:
 
 ```shell
-$ winget install cdxgen
+winget install cdxgen
 ```
 
 Deno and bun runtime can be used with limited support.
@@ -604,6 +598,14 @@ cdxgen is an OWASP Foundation production project.
 
 [<img src="https://owasp.org/assets/images/logo.png" width="20%" />](https://owasp.org)
 
+## cdxgen badge
+
+Copy the below block to your markdown files to show your ❤️ for cdxgen.
+
+```markdown
+[![SBOM](https://img.shields.io/badge/SBOM-with_%E2%9D%A4%EF%B8%8F_by_cdxgen-FF753D)](https://github.com/cdxgen/cdxgen)
+```
+
 <!-- LINK LABELS -->
 <!-- Badges -->
 

package/bin/cdxgen.js

@@ -1114,7 +1114,7 @@ const needsBomSigning = ({ generateKeyAndSign }) =>
     protobomModule.writeBinary(bomNSData.bomJson, options.protoBinFile);
     thoughtLog("BOM file is also available in .proto format!");
   }
-  if (options.print && bomNSData.bomJson && bomNSData.bomJson.components) {
+  if (options.print && bomNSData.bomJson?.components) {
     printSummary(bomNSData.bomJson);
     if (options.includeFormulation) {
       printFormulation(bomNSData.bomJson);

package/lib/cli/index.js

@@ -3957,7 +3957,7 @@ export async function createPythonBom(path, options) {
       metadataFilename = reqDirFiles.join(", ");
     } else if (reqFiles?.length) {
       for (const f of reqFiles) {
-        const dlist = await parseReqFile(f, true);
+        const dlist = await parseReqFile(f, false);
         if (dlist?.length) {
           pkgList = pkgList.concat(dlist);
         }
@@ -7061,7 +7061,7 @@ export async function createCsharpBom(path, options) {
     }
   }
   // Parent dependency tree
-  if (parentDependsOn.size && parentComponent && parentComponent["bom-ref"]) {
+  if (parentDependsOn.size && parentComponent?.["bom-ref"]) {
     dependencies.splice(0, 0, {
       ref: parentComponent["bom-ref"],
       dependsOn: Array.from(parentDependsOn).sort(),

package/lib/evinser/evinser.js

@@ -1248,8 +1248,7 @@ export function detectServicesFromUsages(language, slice, servicesMap = {}) {
 export function detectServicesFromUDT(language, userDefinedTypes, servicesMap) {
   if (
     ["python", "py", "c", "cpp", "c++", "php", "ruby"].includes(language) &&
-    userDefinedTypes &&
-    userDefinedTypes.length
+    userDefinedTypes?.length
   ) {
     for (const audt of userDefinedTypes) {
       if (
@@ -1270,12 +1269,7 @@ export function detectServicesFromUDT(language, userDefinedTypes, servicesMap) {
         audt.name.toLowerCase().includes("connect")
       ) {
         const fields = audt.fields || [];
-        if (
-          fields.length &&
-          fields[0] &&
-          fields[0].name &&
-          fields[0].name.length > 1
-        ) {
+        if (fields.length && fields[0]?.name && fields[0].name.length > 1) {
           const endpoints = extractEndpoints(language, fields[0].name);
           let serviceName = "service";
           if (audt.fileName) {

package/lib/helpers/display.js

@@ -14,7 +14,7 @@ const SYMBOLS_ANSI = {
 
 const MAX_TREE_DEPTH = 6;
 const highlightStr = (s, highlight) => {
-  if (highlight && s && s.includes(highlight)) {
+  if (highlight && s?.includes(highlight)) {
     s = s.replaceAll(highlight, `\x1b[1;33m${highlight}\x1b[0m`);
   }
   return s;

package/lib/helpers/envcontext.js

@@ -200,9 +200,17 @@ export function collectDotnetInfo(dir) {
  * @returns Object containing python details
  */
 export function collectPythonInfo(dir) {
-  const versionDesc = getCommandOutput(getPythonCommand(), dir, ["--version"]);
+  const versionDesc = getCommandOutput(getPythonCommand(), dir, [
+    "-S",
+    "--version",
+  ]);
   const moduleDesc =
-    getCommandOutput(getPythonCommand(), dir, ["-m", "pip", "--version"]) || "";
+    getCommandOutput(getPythonCommand(), dir, [
+      "-S",
+      "-m",
+      "pip",
+      "--version",
+    ]) || "";
   if (versionDesc) {
     return {
       type: "platform",