Versions Compared

Old Version 22

changes.mady.by.user Tom Shapira

Saved on

compared with

New Version Current

changes.mady.by.user Tom Shapira

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

...

Field NameDescriptionRequired
artifactId

Filename or Maven artifactId of the dependency

Yes
filenameFilename of the fileNo, it's recommended to use both artifactId and filename
versionVersion of the dependencyNo, this is only necessary for a build tool dependency (for example, Maven dependency) and not a simple file
groupIdgroupId of the dependencyNo, this is only necessary for a build tool dependency (for example, Maven dependency) and not a simple file
sha1SHA-1 checksum of the fileNo, in case where there is no SHA-1, for example NPM package that is found within a package.json file
systemPathPath of the file on your local machineNo
typeType of the dependency (only relevant for Maven)No
scopeScope of the dependency (only relevant for Maven)No
classifierClassifier of the dependency (only relevant for Maven if applicable)No
dependencyType

representing the type of the dependency, see DependencyType

The dependencyType field is used to improve identification of certain dependencies, can be one of:

  • MAVEN

  • GRADLE

  • NPM

  • BOWER

  • GRUNT

  • PYTHON

  • RUBY

  • NUGET

  • RPM

  • DEBIAN

No, but recommended when sending dependencies identified in a non-standard way.

For example in a package.json file (NPM) or scanned as an installed RPM package via querying the package manager

checksums

A map of checksumType and the actual checksum values, see ChecksumType

The checksums map will be used in future versions to hold all calculated checksums in a single object instead of in separate fields, the checksumType can be one of:

  • SHA1 - sha1 of a file without any manipulations
  • SHA1_OTHER_PLATFORM - sha1 of a file after replacing all new line characters with those an alternate operating system (for example, if in Windows all \r\n (CRLF) will be replaced with \n and vice versa)
  • SHA1_SUPER_HASH - sha1 of a file after removing all whitespaces and new lines
  • SHA1_SUPER_HASH_MSB - sha1 of the top portion of a file after removing all whitespaces and new lines
  • SHA1_SUPER_HASH_LSB - sha1 of the top portion of a file after removing all whitespaces and new lines
  • SHA1_NO_HEADER - sha1 of a file after removing all header comments
  • SHA1_NO_HEADER_SUPER_HASH - sha1 of the top portion of a file after removing all header comants, whitespaces and new lines
  • SHA1_NO_COMMENTS - sha1 of a file after removing all comments (only for JavaScript)
  • SHA1_NO_COMMENTS_SUPER_HASH - sha1 of a file after removing all comments, whitespaces and new lines (only for JavaScript)
  • SHA1_UTF8 - sha1 of a file after encoding in UTF-8 charset
  • MD5 - md5 of a file without any manipukations

Yes, in case you plan on sending more than the standard sha1 checksum

In the future we plan on deprecating the 'sha1' field, so please make sure to populate both 'sha1' field and the SHA1 checksumType in the checksums map

childrenAn array of DependencyInfo objects which are considered transitive dependenciesNo

...