From c60feb174231405e4fc984e413d28385fc3cae8c Mon Sep 17 00:00:00 2001
From: Jan Kowalleck <jan.kowalleck@gmail.com>
Date: Mon, 13 Jan 2025 13:13:53 +0100
Subject: [PATCH] feat: add tool cyclonedx-php-composer

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
---
 README.md               |  1 +
 resources/composer.json | 15 +++++++++++++++
 2 files changed, 16 insertions(+)

diff --git a/README.md b/README.md
index dd53cdd..c91ba4f 100644
--- a/README.md
+++ b/README.md
@@ -27,6 +27,7 @@ It has been extracted as a separate project to make maintenance easier and enabl
 | composer-require-checker | [Verify that no unknown symbols are used in the sources of a package.](https://github.com/maglnet/ComposerRequireChecker) | &#x274C; | &#x2705; | &#x2705; | &#x2705; |
 | composer-require-checker-3 | [Verify that no unknown symbols are used in the sources of a package.](https://github.com/maglnet/ComposerRequireChecker) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
 | composer-unused | [Show unused packages by scanning your code](https://github.com/icanhazstring/composer-unused) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
+| cyclonedx-php-composer | [Composer plugin to create Software-Bill-of-Materials (SBOM) in CycloneDX format](https://github.com/CycloneDX/cyclonedx-php-composer) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
 | dephpend | [Detect flaws in your architecture](https://dephpend.com/) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
 | deprecation-detector | [Finds usages of deprecated code](https://github.com/sensiolabs-de/deprecation-detector) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
 | deptrac | [Enforces dependency rules between software layers](https://github.com/qossmic/deptrac) | &#x2705; | &#x2705; | &#x2705; | &#x2705; |
diff --git a/resources/composer.json b/resources/composer.json
index 46a0cec..24b1923 100644
--- a/resources/composer.json
+++ b/resources/composer.json
@@ -56,6 +56,21 @@
             },
             "test": "composer-require-checker-3 -V",
             "tags": ["composer"]
+        },
+        {
+            "name": "cyclonedx-php-composer",
+            "summary": "Composer plugin to create Software-Bill-of-Materials (SBOM) in CycloneDX format",
+            "website": "https://github.com/CycloneDX/cyclonedx-php-composer",
+            "command": {
+                "sh": {
+                    "command": "composer global config --no-plugins allow-plugins.cyclonedx/cyclonedx-php-composer true"
+                },
+                "composer-global-install": {
+                    "package": "cyclonedx/cyclonedx-php-composer"
+                }
+            },
+            "test": "composer global show cyclonedx/cyclonedx-php-composer",
+            "tags": ["composer"]
         }
     ]
 }