`repack` command

Repacks the downloaded files into a uniform source archive, merging the referenced source packages into a single archive and optionally applying patches. The layout of the source archive is controlled by the ‘format’ argument. If an input SBOM is provided and data is passed via stdin, only the packages passed via stdin are resolved and updated in the final SBOM.

Note: The files have to be downloaded first and need to be in the directory specified by ‘dldir’.

usage: debsbom repack [-h] [-t {cdx,spdx}] [--dldir DLDIR] [--outdir OUTDIR]
                      [--format {standard-bom}]
                      [--compress {no,bzip2,gzip,xz,zstd,lz4}]
                      [--apply-patches] [--copy] [--validate]
                      bomin bomout

Positional Arguments

bomin: sbom file to process. Use ‘-’ to read SBOM from stdin
bomout: sbom output file. Use ‘-’ to write to stdout

Named Arguments

-t, --sbom-type

Possible choices: cdx, spdx

SBOM type to process (default: auto-detect)

--dldir

download directory from ‘download’

Default: 'downloads'

--outdir

directory to repack into’

Default: 'packed'

--format

Possible choices: standard-bom

Default: 'standard-bom'

--compress

Possible choices: no, bzip2, gzip, xz, zstd, lz4

compress merged tarballs (default: gzip)

Default: 'gzip'

--apply-patches

apply debian patches

Default: False

--copy

copy artifacts into deploy tree instead of symlinking

Default: False

--validate

validate generated SBOM (only for SPDX)

Default: False

repack command

Positional Arguments

Named Arguments

`repack` command