classifier is ommited in latest version of the plugin #636
Description
Describe the bug
In the latest version of the plugin, the classifier of a component is being ommited while in versions 1.X it was not.
To Reproduce
- Clone the project: https://github.com/carlosoliboniamigo/cyclonedxclassifier
- Runs ./generate-sbom.sh 1.10.0
- Runs ./generate-sbom.sh 2.3.1
- Compare the transitive dependency "pkg:maven/io.netty/[email protected]?classifier=linux-x86_64&type=jar" will contain classifier in reports generated cyclonedx-sbom-1.10.0.json and not in cyclonedx-sbom-2.3.1.json
Alternatively:
- Include dependency 'org.springframework.boot:spring-boot-starter-webflux:3.4.5' in your project
- Runs cyclonedxBom using version 1.10.0 of the plugin
- Runs cyclonedxBom using version 2.3.1 of the plugin
- Notice in the reports the transitive dependency pkg:maven/io.netty/[email protected]?classifier=linux-x86_64&type=jar will contain classifier in version 1.10.0 but not in version 2.3.1
Expected behavior
I expect the classifier information to be present in reports for version 2.3.1 the way it was in 1.10.0.
Environment (please complete the following information):
- OS: WSL (W11) running Ubuntu
- Gradle version 8.14.2
- CycloneDX Plugin version: 2.3.1
Additional context
I attached an image showing the difference in the reports.
Contribution
- I am willing to provide a fix
- I will wait until somebody else fixes it