@cyclonedx/cdxgen 9.9.1 → 9.9.3

package/index.js

@@ -1063,12 +1063,14 @@ export const createJarBom = async (path, options) => {
   } else {
     jarFiles = getAllFiles(
       path,
-      (options.multiProject ? "**/" : "") + "*.[jw]ar"
+      (options.multiProject ? "**/" : "") + "*.[jw]ar",
+      options
     );
     // Jenkins plugins
     const hpiFiles = getAllFiles(
       path,
-      (options.multiProject ? "**/" : "") + "*.hpi"
+      (options.multiProject ? "**/" : "") + "*.hpi",
+      options
     );
     if (hpiFiles.length) {
       jarFiles = jarFiles.concat(hpiFiles);
@@ -1143,7 +1145,8 @@ export const createJavaBom = async (path, options) => {
     // maven - pom.xml
     const pomFiles = getAllFiles(
       path,
-      (options.multiProject ? "**/" : "") + "pom.xml"
+      (options.multiProject ? "**/" : "") + "pom.xml",
+      options
     );
     let bomJsonFiles = [];
     if (
@@ -1153,7 +1156,7 @@ export const createJavaBom = async (path, options) => {
     ) {
       const cdxMavenPlugin =
         process.env.CDX_MAVEN_PLUGIN ||
-        "org.cyclonedx:cyclonedx-maven-plugin:2.7.9";
+        "org.cyclonedx:cyclonedx-maven-plugin:2.7.10";
       const cdxMavenGoal = process.env.CDX_MAVEN_GOAL || "makeAggregateBom";
       let mvnArgs = [`${cdxMavenPlugin}:${cdxMavenGoal}`, "-DoutputName=bom"];
       if (includeMavenTestScope) {
@@ -1179,15 +1182,15 @@ export const createJavaBom = async (path, options) => {
         const mavenCmd = getMavenCommand(basePath, path);
         // Should we attempt to resolve class names
         if (options.resolveClass || options.deep) {
-          console.log(
-            "Creating class names list based on available jars. This might take a few mins ..."
-          );
-          jarNSMapping = collectMvnDependencies(
+          const tmpjarNSMapping = collectMvnDependencies(
             mavenCmd,
             basePath,
             true,
             false
           );
+          if (tmpjarNSMapping && Object.keys(tmpjarNSMapping).length) {
+            jarNSMapping = { ...jarNSMapping, ...tmpjarNSMapping };
+          }
         }
         console.log(
           `Executing '${mavenCmd} ${mvnArgs.join(" ")}' in`,
@@ -1202,10 +1205,10 @@ export const createJavaBom = async (path, options) => {
         });
         // Check if the cyclonedx plugin created the required bom.xml file
         // Sometimes the plugin fails silently for complex maven projects
-        bomJsonFiles = getAllFiles(path, "**/target/*.json");
+        bomJsonFiles = getAllFiles(path, "**/target/*.json", options);
         // Check if the bom json files got created in a directory other than target
         if (!bomJsonFiles.length) {
-          bomJsonFiles = getAllFiles(path, "**/bom*.json");
+          bomJsonFiles = getAllFiles(path, "**/bom*.json", options);
         }
         const bomGenerated = bomJsonFiles.length;
         if (!bomGenerated || result.status !== 0 || result.error) {
@@ -1296,7 +1299,7 @@ export const createJavaBom = async (path, options) => {
           }
         }
       } // for
-      const bomFiles = getAllFiles(path, "**/target/bom.xml");
+      const bomFiles = getAllFiles(path, "**/target/bom.xml", options);
       for (const abjson of bomJsonFiles) {
         let bomJsonObj = undefined;
         try {
@@ -1359,7 +1362,8 @@ export const createJavaBom = async (path, options) => {
     // gradle
     const gradleFiles = getAllFiles(
       path,
-      (options.multiProject ? "**/" : "") + "build.gradle*"
+      (options.multiProject ? "**/" : "") + "build.gradle*",
+      options
     );
     const allProjects = [];
     const allProjectsAddedPurls = [];
@@ -1541,9 +1545,6 @@ export const createJavaBom = async (path, options) => {
       }
       // Should we attempt to resolve class names
       if (options.resolveClass || options.deep) {
-        console.log(
-          "Creating class names list based on available jars. This might take a few mins ..."
-        );
         jarNSMapping = collectJarNS(GRADLE_CACHE_DIR);
       }
       pkgList = await getMvnMetadata(pkgList, jarNSMapping);
@@ -1558,7 +1559,7 @@ export const createJavaBom = async (path, options) => {
 
     // Bazel
     // Look for the BUILD file only in the root directory
-    const bazelFiles = getAllFiles(path, "BUILD");
+    const bazelFiles = getAllFiles(path, "BUILD", options);
     if (
       bazelFiles &&
       bazelFiles.length &&
@@ -1665,7 +1666,8 @@ export const createJavaBom = async (path, options) => {
     let sbtProjectFiles = getAllFiles(
       path,
       (options.multiProject ? "**/" : "") +
-        "project/{build.properties,*.sbt,*.scala}"
+        "project/{build.properties,*.sbt,*.scala}",
+      options
     );
 
     let sbtProjects = [];
@@ -1680,7 +1682,8 @@ export const createJavaBom = async (path, options) => {
     if (!sbtProjects.length) {
       sbtProjectFiles = getAllFiles(
         path,
-        (options.multiProject ? "**/" : "") + "*.sbt"
+        (options.multiProject ? "**/" : "") + "*.sbt",
+        options
       );
       for (const i in sbtProjectFiles) {
         const baseDir = dirname(sbtProjectFiles[i]);
@@ -1693,7 +1696,8 @@ export const createJavaBom = async (path, options) => {
     );
     const sbtLockFiles = getAllFiles(
       path,
-      (options.multiProject ? "**/" : "") + "build.sbt.lock"
+      (options.multiProject ? "**/" : "") + "build.sbt.lock",
+      options
     );
 
     if (sbtProjects && sbtProjects.length) {
@@ -1827,9 +1831,6 @@ export const createJavaBom = async (path, options) => {
       }
       // Should we attempt to resolve class names
       if (options.resolveClass || options.deep) {
-        console.log(
-          "Creating class names list based on available jars. This might take a few mins ..."
-        );
         jarNSMapping = collectJarNS(SBT_CACHE_DIR);
       }
       pkgList = await getMvnMetadata(pkgList, jarNSMapping);
@@ -1859,7 +1860,7 @@ export const createNodejsBom = async (path, options) => {
   let ppurl = "";
   // Docker mode requires special handling
   if (["docker", "oci", "os"].includes(options.projectType)) {
-    const pkgJsonFiles = getAllFiles(path, "**/package.json");
+    const pkgJsonFiles = getAllFiles(path, "**/package.json", options);
     // Are there any package.json files in the container?
     if (pkgJsonFiles.length) {
       for (const pj of pkgJsonFiles) {
@@ -1890,30 +1891,36 @@ export const createNodejsBom = async (path, options) => {
   }
   const yarnLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "yarn.lock"
+    (options.multiProject ? "**/" : "") + "yarn.lock",
+    options
   );
   const shrinkwrapFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "npm-shrinkwrap.json"
+    (options.multiProject ? "**/" : "") + "npm-shrinkwrap.json",
+    options
   );
   let pkgLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "package-lock.json"
+    (options.multiProject ? "**/" : "") + "package-lock.json",
+    options
   );
   if (shrinkwrapFiles.length) {
     pkgLockFiles = pkgLockFiles.concat(shrinkwrapFiles);
   }
   const pnpmLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pnpm-lock.yaml"
+    (options.multiProject ? "**/" : "") + "pnpm-lock.yaml",
+    options
   );
   const minJsFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*min.js"
+    (options.multiProject ? "**/" : "") + "*min.js",
+    options
   );
   const bowerFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "bower.json"
+    (options.multiProject ? "**/" : "") + "bower.json",
+    options
   );
   // Parse min js files
   if (minJsFiles && minJsFiles.length) {
@@ -2179,7 +2186,8 @@ export const createNodejsBom = async (path, options) => {
   if (!pkgList.length && existsSync(join(path, "node_modules"))) {
     const pkgJsonFiles = getAllFiles(
       join(path, "node_modules"),
-      "**/package.json"
+      "**/package.json",
+      options
     );
     manifestFiles = manifestFiles.concat(pkgJsonFiles);
     for (const pkgjf of pkgJsonFiles) {
@@ -2241,37 +2249,44 @@ export const createPythonBom = async (path, options) => {
   const pipenvMode = existsSync(join(path, "Pipfile"));
   let poetryFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "poetry.lock"
+    (options.multiProject ? "**/" : "") + "poetry.lock",
+    options
   );
   const pdmLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pdm.lock"
+    (options.multiProject ? "**/" : "") + "pdm.lock",
+    options
   );
   if (pdmLockFiles && pdmLockFiles.length) {
     poetryFiles = poetryFiles.concat(pdmLockFiles);
   }
   let reqFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*requirements*.txt"
+    (options.multiProject ? "**/" : "") + "*requirements*.txt",
+    options
   );
   reqFiles = reqFiles.filter(
     (f) => !f.includes(join("mercurial", "helptext", "internals"))
   );
   const reqDirFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "requirements/*.txt"
+    (options.multiProject ? "**/" : "") + "requirements/*.txt",
+    options
   );
   const metadataFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/site-packages/**/" : "") + "METADATA"
+    (options.multiProject ? "**/site-packages/**/" : "") + "METADATA",
+    options
   );
   const whlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.whl"
+    (options.multiProject ? "**/" : "") + "*.whl",
+    options
   );
   const eggInfoFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.egg-info"
+    (options.multiProject ? "**/" : "") + "*.egg-info",
+    options
   );
   const setupPy = join(path, "setup.py");
   const pyProjectFile = join(path, "pyproject.toml");
@@ -2609,7 +2624,8 @@ export const createGoBom = async (path, options) => {
   // Read in go.sum and merge all go.sum files.
   const gosumFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "go.sum"
+    (options.multiProject ? "**/" : "") + "go.sum",
+    options
   );
 
   // If USE_GOSUM is true|1, generate BOM components only using go.sum.
@@ -2723,13 +2739,15 @@ export const createGoBom = async (path, options) => {
   // Read in data from Gopkg.lock files if they exist
   const gopkgLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gopkg.lock"
+    (options.multiProject ? "**/" : "") + "Gopkg.lock",
+    options
   );
 
   // Read in go.mod files and parse BOM components with checksums from gosumData
   const gomodFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "go.mod"
+    (options.multiProject ? "**/" : "") + "go.mod",
+    options
   );
   if (gomodFiles.length) {
     let shouldManuallyParse = false;
@@ -2925,11 +2943,13 @@ export const createRustBom = async (path, options) => {
   }
   let cargoLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Cargo.lock"
+    (options.multiProject ? "**/" : "") + "Cargo.lock",
+    options
   );
   const cargoFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Cargo.toml"
+    (options.multiProject ? "**/" : "") + "Cargo.toml",
+    options
   );
   const cargoMode = cargoFiles.length;
   const cargoLockMode = cargoLockFiles.length;
@@ -2952,7 +2972,8 @@ export const createRustBom = async (path, options) => {
   // Get the new lock files
   cargoLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Cargo.lock"
+    (options.multiProject ? "**/" : "") + "Cargo.lock",
+    options
   );
   if (cargoLockFiles.length) {
     for (const f of cargoLockFiles) {
@@ -2982,11 +3003,13 @@ export const createRustBom = async (path, options) => {
 export const createDartBom = async (path, options) => {
   const pubFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pubspec.lock"
+    (options.multiProject ? "**/" : "") + "pubspec.lock",
+    options
   );
   const pubSpecYamlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pubspec.yaml"
+    (options.multiProject ? "**/" : "") + "pubspec.yaml",
+    options
   );
   let pkgList = [];
   if (pubFiles.length) {
@@ -3032,29 +3055,38 @@ export const createDartBom = async (path, options) => {
  */
 export const createCppBom = (path, options) => {
   let parentComponent = undefined;
+  let dependencies = [];
   const addedParentComponentsMap = {};
   const conanLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "conan.lock"
+    (options.multiProject ? "**/" : "") + "conan.lock",
+    options
   );
   const conanFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "conanfile.txt"
+    (options.multiProject ? "**/" : "") + "conanfile.txt",
+    options
   );
   let cmakeLikeFiles = [];
   const mesonBuildFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "meson.build"
+    (options.multiProject ? "**/" : "") + "meson.build",
+    options
   );
   if (mesonBuildFiles && mesonBuildFiles.length) {
     cmakeLikeFiles = cmakeLikeFiles.concat(mesonBuildFiles);
   }
   cmakeLikeFiles = cmakeLikeFiles.concat(
-    getAllFiles(path, (options.multiProject ? "**/" : "") + "CMakeLists.txt")
+    getAllFiles(
+      path,
+      (options.multiProject ? "**/" : "") + "CMakeLists.txt",
+      options
+    )
   );
   const cmakeFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.cmake"
+    (options.multiProject ? "**/" : "") + "*.cmake",
+    options
   );
   if (cmakeFiles && cmakeFiles.length) {
     cmakeLikeFiles = cmakeLikeFiles.concat(cmakeFiles);
@@ -3082,16 +3114,19 @@ export const createCppBom = (path, options) => {
         pkgList = pkgList.concat(dlist);
       }
     }
-  } else if (cmakeLikeFiles.length) {
+  }
+  if (cmakeLikeFiles.length) {
     for (const f of cmakeLikeFiles) {
       if (DEBUG_MODE) {
         console.log(`Parsing ${f}`);
       }
-      const retMap = parseCmakeLikeFile(f, "conan");
+      const basePath = dirname(f);
+      const retMap = parseCmakeLikeFile(f, "generic");
       if (retMap.pkgList && retMap.pkgList.length) {
         pkgList = pkgList.concat(retMap.pkgList);
       }
       if (
+        basePath === path &&
         retMap.parentComponent &&
         Object.keys(retMap.parentComponent).length
       ) {
@@ -3104,6 +3139,13 @@ export const createCppBom = (path, options) => {
             addedParentComponentsMap[retMap.parentComponent.name] = true;
           }
         }
+      } else if (
+        retMap.parentComponent &&
+        Object.keys(retMap.parentComponent).length &&
+        !addedParentComponentsMap[retMap.parentComponent.name]
+      ) {
+        retMap.parentComponent.type = "library";
+        pkgList.push(retMap.parentComponent);
       }
     }
   }
@@ -3135,20 +3177,41 @@ export const createCppBom = (path, options) => {
     // Now we check with atom and attempt to detect all external modules via usages
     // We pass the current list of packages so that we enhance the current list and replace
     // components inadvertently. For example, we might resolved a name, version and url information already via cmake
-    const dlist = getCppModules(path, options, osPkgsList, pkgList);
-    if (dlist && dlist.length) {
-      pkgList = pkgList.concat(dlist);
+    const retMap = getCppModules(path, options, osPkgsList, pkgList);
+    if (retMap.pkgList && retMap.pkgList.length) {
+      pkgList = pkgList.concat(retMap.pkgList);
+    }
+    if (retMap.dependenciesList) {
+      if (dependencies.length) {
+        dependencies = mergeDependencies(
+          dependencies,
+          retMap.dependenciesList,
+          parentComponent
+        );
+      } else {
+        dependencies = retMap.dependenciesList;
+      }
+    }
+    if (!parentComponent) {
+      parentComponent = retMap.parentComponent;
+    } else {
+      parentComponent.components = parentComponent.components || [];
+      if (!addedParentComponentsMap[retMap.parentComponent.name]) {
+        parentComponent.components.push(retMap.parentComponent);
+        addedParentComponentsMap[retMap.parentComponent.name] = true;
+      }
     }
   }
   if (!options.createMultiXBom) {
     if (!parentComponent) {
-      parentComponent = createDefaultParentComponent(path, "conan", options);
+      parentComponent = createDefaultParentComponent(path, "generic", options);
     }
     options.parentComponent = parentComponent;
   }
-  return buildBomNSData(options, pkgList, "conan", {
+  return buildBomNSData(options, pkgList, "generic", {
     src: path,
-    parentComponent
+    parentComponent,
+    dependencies
   });
 };
 
@@ -3161,11 +3224,13 @@ export const createCppBom = (path, options) => {
 export const createClojureBom = (path, options) => {
   const ednFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "deps.edn"
+    (options.multiProject ? "**/" : "") + "deps.edn",
+    options
   );
   const leinFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "project.clj"
+    (options.multiProject ? "**/" : "") + "project.clj",
+    options
   );
   let pkgList = [];
   if (leinFiles.length) {
@@ -3281,7 +3346,8 @@ export const createClojureBom = (path, options) => {
 export const createHaskellBom = (path, options) => {
   const cabalFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "cabal.project.freeze"
+    (options.multiProject ? "**/" : "") + "cabal.project.freeze",
+    options
   );
   let pkgList = [];
   if (cabalFiles.length) {
@@ -3312,7 +3378,8 @@ export const createHaskellBom = (path, options) => {
 export const createElixirBom = (path, options) => {
   const mixFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "mix.lock"
+    (options.multiProject ? "**/" : "") + "mix.lock",
+    options
   );
   let pkgList = [];
   if (mixFiles.length) {
@@ -3341,7 +3408,11 @@ export const createElixirBom = (path, options) => {
  * @param options Parse options from the cli
  */
 export const createGitHubBom = (path, options) => {
-  const ghactionFiles = getAllFiles(path, ".github/workflows/" + "*.yml");
+  const ghactionFiles = getAllFiles(
+    path,
+    ".github/workflows/" + "*.yml",
+    options
+  );
   let pkgList = [];
   if (ghactionFiles.length) {
     for (const f of ghactionFiles) {
@@ -3369,7 +3440,7 @@ export const createGitHubBom = (path, options) => {
  * @param options Parse options from the cli
  */
 export const createCloudBuildBom = (path, options) => {
-  const cbFiles = getAllFiles(path, "cloudbuild.yml");
+  const cbFiles = getAllFiles(path, "cloudbuild.yml", options);
   let pkgList = [];
   if (cbFiles.length) {
     for (const f of cbFiles) {
@@ -3460,7 +3531,8 @@ export const createJenkinsBom = async (path, options) => {
   let pkgList = [];
   const hpiFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.hpi"
+    (options.multiProject ? "**/" : "") + "*.hpi",
+    options
   );
   const tempDir = mkdtempSync(join(tmpdir(), "hpi-deps-"));
   if (hpiFiles.length) {
@@ -3474,7 +3546,7 @@ export const createJenkinsBom = async (path, options) => {
       }
     }
   }
-  const jsFiles = getAllFiles(tempDir, "**/*.js");
+  const jsFiles = getAllFiles(tempDir, "**/*.js", options);
   if (jsFiles.length) {
     for (const f of jsFiles) {
       if (DEBUG_MODE) {
@@ -3508,7 +3580,8 @@ export const createHelmBom = (path, options) => {
   let pkgList = [];
   const yamlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.yaml"
+    (options.multiProject ? "**/" : "") + "*.yaml",
+    options
   );
   if (yamlFiles.length) {
     for (const f of yamlFiles) {
@@ -3538,11 +3611,13 @@ export const createHelmBom = (path, options) => {
 export const createSwiftBom = (path, options) => {
   const swiftFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Package*.swift"
+    (options.multiProject ? "**/" : "") + "Package*.swift",
+    options
   );
   const pkgResolvedFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Package.resolved"
+    (options.multiProject ? "**/" : "") + "Package.resolved",
+    options
   );
   let pkgList = [];
   let dependencies = [];
@@ -3635,19 +3710,23 @@ export const createContainerSpecLikeBom = async (path, options) => {
   const origProjectType = options.projectType;
   let dcFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.yml"
+    (options.multiProject ? "**/" : "") + "*.yml",
+    options
   );
   const yamlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.yaml"
+    (options.multiProject ? "**/" : "") + "*.yaml",
+    options
   );
   let oapiFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "open*.json"
+    (options.multiProject ? "**/" : "") + "open*.json",
+    options
   );
   const oapiYamlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "open*.yaml"
+    (options.multiProject ? "**/" : "") + "open*.yaml",
+    options
   );
   if (oapiYamlFiles && oapiYamlFiles.length) {
     oapiFiles = oapiFiles.concat(oapiYamlFiles);
@@ -3656,7 +3735,7 @@ export const createContainerSpecLikeBom = async (path, options) => {
     dcFiles = dcFiles.concat(yamlFiles);
   }
   // Privado.ai json files
-  const privadoFiles = getAllFiles(path, ".privado/" + "*.json");
+  const privadoFiles = getAllFiles(path, ".privado/" + "*.json", options);
   // parse yaml manifest files
   if (dcFiles.length) {
     for (const f of dcFiles) {
@@ -3910,11 +3989,13 @@ export const createContainerSpecLikeBom = async (path, options) => {
 export const createPHPBom = (path, options) => {
   const composerJsonFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "composer.json"
+    (options.multiProject ? "**/" : "") + "composer.json",
+    options
   );
   let composerLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "composer.lock"
+    (options.multiProject ? "**/" : "") + "composer.lock",
+    options
   );
   let pkgList = [];
   const composerJsonMode = composerJsonFiles.length;
@@ -3970,7 +4051,8 @@ export const createPHPBom = (path, options) => {
   }
   composerLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "composer.lock"
+    (options.multiProject ? "**/" : "") + "composer.lock",
+    options
   );
   if (composerLockFiles.length) {
     for (const f of composerLockFiles) {
@@ -3999,11 +4081,13 @@ export const createPHPBom = (path, options) => {
 export const createRubyBom = async (path, options) => {
   const gemFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gemfile"
+    (options.multiProject ? "**/" : "") + "Gemfile",
+    options
   );
   let gemLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gemfile.lock"
+    (options.multiProject ? "**/" : "") + "Gemfile.lock",
+    options
   );
   let pkgList = [];
   const gemFileMode = gemFiles.length;
@@ -4027,7 +4111,8 @@ export const createRubyBom = async (path, options) => {
   }
   gemLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gemfile.lock"
+    (options.multiProject ? "**/" : "") + "Gemfile.lock",
+    options
   );
   if (gemLockFiles.length) {
     for (const f of gemLockFiles) {
@@ -4064,27 +4149,33 @@ export const createCsharpBom = async (
   let dependencies = [];
   const csProjFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.csproj"
+    (options.multiProject ? "**/" : "") + "*.csproj",
+    options
   );
   const pkgConfigFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "packages.config"
+    (options.multiProject ? "**/" : "") + "packages.config",
+    options
   );
   const projAssetsFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "project.assets.json"
+    (options.multiProject ? "**/" : "") + "project.assets.json",
+    options
   );
   const pkgLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "packages.lock.json"
+    (options.multiProject ? "**/" : "") + "packages.lock.json",
+    options
   );
   const paketLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "paket.lock"
+    (options.multiProject ? "**/" : "") + "paket.lock",
+    options
   );
   const nupkgFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.nupkg"
+    (options.multiProject ? "**/" : "") + "*.nupkg",
+    options
   );
   let pkgList = [];
   if (nupkgFiles.length && projAssetsFiles.length === 0) {
@@ -4859,17 +4950,20 @@ export const createXBom = async (path, options) => {
   // maven - pom.xml
   const pomFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pom.xml"
+    (options.multiProject ? "**/" : "") + "pom.xml",
+    options
   );
   // gradle
   const gradleFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "build.gradle*"
+    (options.multiProject ? "**/" : "") + "build.gradle*",
+    options
   );
   // scala sbt
   const sbtFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "{build.sbt,Build.scala}*"
+    (options.multiProject ? "**/" : "") + "{build.sbt,Build.scala}*",
+    options
   );
   if (pomFiles.length || gradleFiles.length || sbtFiles.length) {
     return await createJavaBom(path, options);
@@ -4884,17 +4978,20 @@ export const createXBom = async (path, options) => {
   }
   const reqFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*requirements*.txt"
+    (options.multiProject ? "**/" : "") + "*requirements*.txt",
+    options
   );
   const reqDirFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "requirements/*.txt"
+    (options.multiProject ? "**/" : "") + "requirements/*.txt",
+    options
   );
   const requirementsMode =
     (reqFiles && reqFiles.length) || (reqDirFiles && reqDirFiles.length);
   const whlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.whl"
+    (options.multiProject ? "**/" : "") + "*.whl",
+    options
   );
   if (requirementsMode || whlFiles.length) {
     return await createPythonBom(path, options);
@@ -4902,15 +4999,18 @@ export const createXBom = async (path, options) => {
   // go
   const gosumFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "go.sum"
+    (options.multiProject ? "**/" : "") + "go.sum",
+    options
   );
   const gomodFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "go.mod"
+    (options.multiProject ? "**/" : "") + "go.mod",
+    options
   );
   const gopkgLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gopkg.lock"
+    (options.multiProject ? "**/" : "") + "Gopkg.lock",
+    options
   );
   if (gomodFiles.length || gosumFiles.length || gopkgLockFiles.length) {
     return await createGoBom(path, options);
@@ -4919,11 +5019,13 @@ export const createXBom = async (path, options) => {
   // rust
   const cargoLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Cargo.lock"
+    (options.multiProject ? "**/" : "") + "Cargo.lock",
+    options
   );
   const cargoFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Cargo.toml"
+    (options.multiProject ? "**/" : "") + "Cargo.toml",
+    options
   );
   if (cargoLockFiles.length || cargoFiles.length) {
     return await createRustBom(path, options);
@@ -4932,11 +5034,13 @@ export const createXBom = async (path, options) => {
   // php
   const composerJsonFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "composer.json"
+    (options.multiProject ? "**/" : "") + "composer.json",
+    options
   );
   const composerLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "composer.lock"
+    (options.multiProject ? "**/" : "") + "composer.lock",
+    options
   );
   if (composerJsonFiles.length || composerLockFiles.length) {
     return createPHPBom(path, options);
@@ -4945,11 +5049,13 @@ export const createXBom = async (path, options) => {
   // Ruby
   const gemFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gemfile"
+    (options.multiProject ? "**/" : "") + "Gemfile",
+    options
   );
   const gemLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Gemfile.lock"
+    (options.multiProject ? "**/" : "") + "Gemfile.lock",
+    options
   );
   if (gemFiles.length || gemLockFiles.length) {
     return await createRubyBom(path, options);
@@ -4958,7 +5064,8 @@ export const createXBom = async (path, options) => {
   // .Net
   const csProjFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.csproj"
+    (options.multiProject ? "**/" : "") + "*.csproj",
+    options
   );
   if (csProjFiles.length) {
     return await createCsharpBom(path, options);
@@ -4967,11 +5074,13 @@ export const createXBom = async (path, options) => {
   // Dart
   const pubFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pubspec.lock"
+    (options.multiProject ? "**/" : "") + "pubspec.lock",
+    options
   );
   const pubSpecFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "pubspec.yaml"
+    (options.multiProject ? "**/" : "") + "pubspec.yaml",
+    options
   );
   if (pubFiles.length || pubSpecFiles.length) {
     return await createDartBom(path, options);
@@ -4980,7 +5089,8 @@ export const createXBom = async (path, options) => {
   // Haskell
   const hackageFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "cabal.project.freeze"
+    (options.multiProject ? "**/" : "") + "cabal.project.freeze",
+    options
   );
   if (hackageFiles.length) {
     return createHaskellBom(path, options);
@@ -4989,7 +5099,8 @@ export const createXBom = async (path, options) => {
   // Elixir
   const mixFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "mix.lock"
+    (options.multiProject ? "**/" : "") + "mix.lock",
+    options
   );
   if (mixFiles.length) {
     return createElixirBom(path, options);
@@ -4998,19 +5109,23 @@ export const createXBom = async (path, options) => {
   // cpp
   const conanLockFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "conan.lock"
+    (options.multiProject ? "**/" : "") + "conan.lock",
+    options
   );
   const conanFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "conanfile.txt"
+    (options.multiProject ? "**/" : "") + "conanfile.txt",
+    options
   );
   const cmakeListFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "CMakeLists.txt"
+    (options.multiProject ? "**/" : "") + "CMakeLists.txt",
+    options
   );
   const mesonBuildFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "meson.build"
+    (options.multiProject ? "**/" : "") + "meson.build",
+    options
   );
   if (
     conanLockFiles.length ||
@@ -5024,18 +5139,24 @@ export const createXBom = async (path, options) => {
   // clojure
   const ednFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "deps.edn"
+    (options.multiProject ? "**/" : "") + "deps.edn",
+    options
   );
   const leinFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "project.clj"
+    (options.multiProject ? "**/" : "") + "project.clj",
+    options
   );
   if (ednFiles.length || leinFiles.length) {
     return createClojureBom(path, options);
   }
 
   // GitHub actions
-  const ghactionFiles = getAllFiles(path, ".github/workflows/" + "*.yml");
+  const ghactionFiles = getAllFiles(
+    path,
+    ".github/workflows/" + "*.yml",
+    options
+  );
   if (ghactionFiles.length) {
     return createGitHubBom(path, options);
   }
@@ -5043,7 +5164,8 @@ export const createXBom = async (path, options) => {
   // Jenkins plugins
   const hpiFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "*.hpi"
+    (options.multiProject ? "**/" : "") + "*.hpi",
+    options
   );
   if (hpiFiles.length) {
     return await createJenkinsBom(path, options);
@@ -5052,11 +5174,13 @@ export const createXBom = async (path, options) => {
   // Helm charts
   const chartFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Chart.yaml"
+    (options.multiProject ? "**/" : "") + "Chart.yaml",
+    options
   );
   const yamlFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "values.yaml"
+    (options.multiProject ? "**/" : "") + "values.yaml",
+    options
   );
   if (chartFiles.length || yamlFiles.length) {
     return createHelmBom(path, options);
@@ -5065,15 +5189,18 @@ export const createXBom = async (path, options) => {
   // Docker compose, kubernetes and skaffold
   const dcFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "docker-compose*.yml"
+    (options.multiProject ? "**/" : "") + "docker-compose*.yml",
+    options
   );
   const skFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "skaffold.yaml"
+    (options.multiProject ? "**/" : "") + "skaffold.yaml",
+    options
   );
   const deplFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "deployment.yaml"
+    (options.multiProject ? "**/" : "") + "deployment.yaml",
+    options
   );
   if (dcFiles.length || skFiles.length || deplFiles.length) {
     return await createContainerSpecLikeBom(path, options);
@@ -5082,7 +5209,8 @@ export const createXBom = async (path, options) => {
   // Google CloudBuild
   const cbFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "cloudbuild.yaml"
+    (options.multiProject ? "**/" : "") + "cloudbuild.yaml",
+    options
   );
   if (cbFiles.length) {
     return createCloudBuildBom(path, options);
@@ -5091,11 +5219,13 @@ export const createXBom = async (path, options) => {
   // Swift
   const swiftFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Package*.swift"
+    (options.multiProject ? "**/" : "") + "Package*.swift",
+    options
   );
   const pkgResolvedFiles = getAllFiles(
     path,
-    (options.multiProject ? "**/" : "") + "Package.resolved"
+    (options.multiProject ? "**/" : "") + "Package.resolved",
+    options
   );
   if (swiftFiles.length || pkgResolvedFiles.length) {
     return createSwiftBom(path, options);