pulumi-google-native-kotlin/com.pulumi.googlenative.containeranalysis.v1alpha1.kotlin.outputs/PackageInfoNoteResponse

PackageInfoNoteResponse

data class PackageInfoNoteResponse(val analyzed: Boolean, val attribution: String, val checksum: String, val copyright: String, val detailedDescription: String, val downloadLocation: String, val externalRefs: List<ExternalRefResponse>, val filesLicenseInfo: List<String>, val homePage: String, val licenseDeclared: LicenseResponse, val originator: String, val packageType: String, val summaryDescription: String, val supplier: String, val title: String, val verificationCode: String, val version: String)

PackageInfoNote represents an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/

Constructors

fun PackageInfoNoteResponse(analyzed: Boolean, attribution: String, checksum: String, copyright: String, detailedDescription: String, downloadLocation: String, externalRefs: List<ExternalRefResponse>, filesLicenseInfo: List<String>, homePage: String, licenseDeclared: LicenseResponse, originator: String, packageType: String, summaryDescription: String, supplier: String, title: String, verificationCode: String, version: String)

Types

Companion

object Companion

Properties

analyzed

val analyzed: Boolean

Indicates whether the file content of this package has been available for or subjected to analysis when creating the SPDX document

attribution

val attribution: String

A place for the SPDX data creator to record, at the package level, acknowledgements that may be needed to be communicated in some contexts

checksum

val checksum: String

Provide an independently reproducible mechanism that permits unique identification of a specific package that correlates to the data in this SPDX file

val copyright: String

Identify the copyright holders of the package, as well as any dates present

detailedDescription

val detailedDescription: String

A more detailed description of the package

downloadLocation

val downloadLocation: String

This section identifies the download Universal Resource Locator (URL), or a specific location within a version control system (VCS) for the package at the time that the SPDX file was created

externalRefs

val externalRefs: List<ExternalRefResponse>

ExternalRef

filesLicenseInfo

val filesLicenseInfo: List<String>

Contain the license the SPDX file creator has concluded as governing the This field is to contain a list of all licenses found in the package. The relationship between licenses (i.e., conjunctive, disjunctive) is not specified in this field – it is simply a listing of all licenses found

homePage

val homePage: String

Provide a place for the SPDX file creator to record a web site that serves as the package's home page

licenseDeclared

val licenseDeclared: LicenseResponse

List the licenses that have been declared by the authors of the package

originator

val originator: String

If the package identified in the SPDX file originated from a different person or organization than identified as Package Supplier, this field identifies from where or whom the package originally came

packageType

val packageType: String

The type of package: OS, MAVEN, GO, GO_STDLIB, etc.

summaryDescription

val summaryDescription: String

A short description of the package

supplier

val supplier: String

Identify the actual distribution source for the package/directory identified in the SPDX file

title

val title: String

Identify the full name of the package as given by the Package Originator

verificationCode

val verificationCode: String

This field provides an independently reproducible mechanism identifying specific contents of a package based on the actual files (except the SPDX file itself, if it is included in the package) that make up each package and that correlates to the data in this SPDX file

version

val version: String

Identify the version of the package