You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Please adapt your tool to set the dsc file and NOT the orig.tar.gz here.
Generally speaking, cross testing should be done between tools to ensure they set the same data.
See with Gernot for Debian specific topic, i.e. for Debian packages.
The text was updated successfully, but these errors were encountered:
For Debian packages, the tool seems to set the .orig.tar.gz file into the 'Source Code Download URL' field of SW360.
It should be the 'dsc' file.
Let's take an example (Siemens internal):
https://sw360.siemens.com/group/guest/components/-/component/release/detailRelease/1fa4ed40b7e94fd2a5ffbd778499ca99#/tab-Summary
refers to the libssh2 package. According to the author of that release, your tool was used in their workflow to create or upload the component on sw360.
You see the orig.tar.gz set at 'Source Code Download URL'
The proper source file for that package is the corresponding dsc
Setting the dsc is what Gernot's tool is doing.
Please adapt your tool to set the dsc file and NOT the orig.tar.gz here.
Generally speaking, cross testing should be done between tools to ensure they set the same data.
See with Gernot for Debian specific topic, i.e. for Debian packages.
The text was updated successfully, but these errors were encountered: