From: Niko Mauno <niko.mauno@vaisala.com>
Date: Thu, 28 May 2026 16:55:57 +0000 (+0300)
Subject: sbom-cve-check: Fix breakage with empty IMAGE_LINK_NAME
X-Git-Url: http://git.ipfire.org/gitweb/index.cgi?a=commitdiff_plain;h=2a80840a4fe0d38254ed3e9f96c893f6e04db8d8;p=thirdparty%2Fopenembedded%2Fopenembedded-core.git

sbom-cve-check: Fix breakage with empty IMAGE_LINK_NAME

Avoid following build breakage:

  sbom-cve-check: error: [Errno 2] No such file or directory: '/build/layers/openembedded-core/build/tmp/deploy/images/qemuarm/.spdx.json'

when IMAGE_LINK_NAME is set as empty string, by changing the reference
to IMAGE_NAME instead.

Signed-off-by: Niko Mauno <niko.mauno@vaisala.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/classes-recipe/sbom-cve-check.bbclass b/meta/classes-recipe/sbom-cve-check.bbclass
index fe145a2212..451595f1d7 100644
--- a/meta/classes-recipe/sbom-cve-check.bbclass
+++ b/meta/classes-recipe/sbom-cve-check.bbclass
@@ -14,7 +14,7 @@ python do_sbom_cve_check() {
     """
     Task: Run sbom-cve-check analysis on SBOM.
     """
-    sbom_path = d.expand("${DEPLOY_DIR_IMAGE}/${IMAGE_LINK_NAME}.spdx.json")
+    sbom_path = d.expand("${DEPLOY_DIR_IMAGE}/${IMAGE_NAME}.spdx.json")
     image_name = d.getVar("IMAGE_NAME")
     link_name = d.getVar("IMAGE_LINK_NAME")
     run_sbom_cve_check(d, sbom_path, image_name, link_name)