From b2c5bf4b233ad461f4e1a5c28431d1e6e9b72d7a Mon Sep 17 00:00:00 2001
From: andrew-myer <10202735+andrew-myer@users.noreply.github.com>
Date: Thu, 17 Oct 2024 15:21:27 -0700
Subject: [PATCH] expose --include-vulns flag in sbomnix

Signed-off-by: andrew-myer <10202735+andrew-myer@users.noreply.github.com>
---
 src/sbomnix/main.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/sbomnix/main.py b/src/sbomnix/main.py
index 6ca44e6..df134c3 100755
--- a/src/sbomnix/main.py
+++ b/src/sbomnix/main.py
@@ -48,6 +48,8 @@ def getargs():
     parser.add_argument("--version", action="version", version=get_py_pkg_version())
     helps = "Set the debug verbosity level between 0-3 (default: --verbose=1)"
     parser.add_argument("--verbose", help=helps, type=int, default=1)
+    helps = "Include vulnerabilities in the output of CyloneDX SBOM"
+    parser.add_argument("--include-vulns", help=helps, action="store_true")
 
     group = parser.add_argument_group("output arguments")
     helps = "Path to csv output file (default: ./sbom.csv)"
@@ -80,7 +82,7 @@ def main():
         buildtime=args.buildtime,
         depth=args.depth,
         flakeref=flakeref,
-        include_vulns=True,
+        include_vulns=args.include_vulns,
     )
     if args.cdx:
         sbomdb.to_cdx(args.cdx)