Update spdx-tools

This commit replaces the failing dependabot PR #95 and fixes the test. According to the SPDX specification tag-value values are case-sensitive, this was not true for the test file, failed the validation and is fixed now. Signed-off-by: Meret Behrens <[email protected]>
opossum-tool · Oct 12, 2023 · a2fd42c · a2fd42c
1 parent 2f129df
commit a2fd42c
Show file tree

Hide file tree

Showing 4 changed files with 12 additions and 12 deletions.
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -25,7 +25,7 @@ spdx2opossum = 'opossum_lib.cli:spdx2opossum'
 
 [tool.poetry.dependencies]
 python = "^3.8.1"
-spdx-tools = "^0.8.1"
+spdx-tools = "^0.8.2"
 networkx = "^3.0"
 click = "^8.1.7"
 pre-commit = "^3.4.0"

diff --git a/tests/data/SPDX.spdx b/tests/data/SPDX.spdx
@@ -13,7 +13,7 @@ Created: 2023-03-14T08:49:00Z
 PackageName: Package A
 SPDXID: SPDXRef-Package-A
 PackageDownloadLocation: https://download.com
-FilesAnalyzed: True
+FilesAnalyzed: true
 
 ## File Information
 FileName: File-A
@@ -29,13 +29,13 @@ FileChecksum: SHA1: d6a770ba38583ed4bb4525bd96e50461655d2759
 PackageName: Package B
 SPDXID: SPDXRef-Package-B
 PackageDownloadLocation: https://download.com
-FilesAnalyzed: True
+FilesAnalyzed: true
 
 ## Package Information
 PackageName: Package C
 SPDXID: SPDXRef-Package-C
 PackageDownloadLocation: https://download.com
-FilesAnalyzed: True
+FilesAnalyzed: true
 
 ## File Information
 FileName: File-B

diff --git a/tests/data/expected_opossum.json b/tests/data/expected_opossum.json
@@ -40,7 +40,7 @@
         "name":"SPDX-Package",
         "documentConfidence":0
       },
-      "comment":"## Package Information\nPackageName: Package A\nSPDXID: SPDXRef-Package-A\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: True\n",
+      "comment":"## Package Information\nPackageName: Package A\nSPDXID: SPDXRef-Package-A\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: true\n",
       "packageName":"Package A",
       "copyright":"None",
       "licenseName":"None",
@@ -51,7 +51,7 @@
         "name":"SPDX-Package",
         "documentConfidence":0
       },
-      "comment":"## Package Information\nPackageName: Package B\nSPDXID: SPDXRef-Package-B\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: True\n",
+      "comment":"## Package Information\nPackageName: Package B\nSPDXID: SPDXRef-Package-B\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: true\n",
       "packageName":"Package B",
       "copyright":"None",
       "licenseName":"None",
@@ -82,7 +82,7 @@
         "name":"SPDX-Package",
         "documentConfidence":0
       },
-      "comment":"## Package Information\nPackageName: Package C\nSPDXID: SPDXRef-Package-C\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: True\n",
+      "comment":"## Package Information\nPackageName: Package C\nSPDXID: SPDXRef-Package-C\nPackageDownloadLocation: https://download.com\nFilesAnalyzed: true\n",
       "packageName":"Package C",
       "copyright":"None",
       "licenseName":"None",