My generation tool is an R script now available in GitHub buildDocxAndXmi.R
It needs only be executed.
I run it with R version 3.6.0 from within Rstudio (either Rstudio desktop on Windows and Mac OS X, either Rstudio Server on a Centos 7 linux server).
The model JSON files are the ones I shared a while ago in GitHub https://github.com/cdfoundation/sig-security-sbom/tree/master/modeling/model_configuration and in Google drive https://drive.google.com/open?id=1lt178cCqyL9_QjmJNOWUstHWqO0IAWAE .
The tool can handle multiple locations to try multiple model files. Currently, it expects files in ./model/plb/ subdirectory.
From: Kay Williams Sent: Thursday, January 09, 2020 10:59 PM
To: Gary O'Neall; Philippe-Emmanuel Douziech; Subject: RE: Analysis of SPDX compatibility with current SBOM proposal
Philippe-Emmanuel, would it be possible to make the tools for generating the model and documentation public? Specifically, can we put tooling and instructions on GitHub? This would allow any of us to make local changes, experiment, and push local changes for acceptance to the master branch.
Is there a better way?
Good question on tools improving collaboration.
I like the work that Philippe has done with the spreadsheet and I think that using the Github issues will be quite helpful.
There are two areas I find challenging in collaborating on the model.
One is tools. I would like to re-use the work Phillippe, William and others have done to offer improvements to the model, but I haven’t found a way to import the XMI documents. I have tried using GenMyModel, but the imported XMI document just shows up blank. This is likely my inexperience with the tool, but it is a challenge.
Another area is understanding the changes changes to the model. For example, the model diverged from SPDX with some recent changes, but I wasn’t able to find out why the changes were made. This will be partially helped by tracking issues in Github. Another way this could be improved is adding commit history with granular changes and summary comments. If the tools allowed for it, we could even open it up to Github pull requests where anyone could submit the changes in addition to submitting the issues.