return an error if signature is attempted with json boms

Lachstec · Lachstec · commit 83dc2cba35c3 · 2025-10-14T19:05:30.000+02:00
Signed-off-by: Leon &lt;leon@1ux.dev&gt;
diff --git a/CycloneDX/ExitCode.cs b/CycloneDX/ExitCode.cs
@@ -25,6 +25,7 @@ enum ExitCode
         LocalPackageCacheError,
         DotnetRestoreFailed,
         GitHubLicenseResolutionFailed,
-        UnableToLocateDependencyBomRef
+        UnableToLocateDependencyBomRef,
+        UnsupportedSignatureFormat
     }
 }
diff --git a/CycloneDX/Runner.cs b/CycloneDX/Runner.cs
@@ -445,8 +445,16 @@ public async Task<int> HandleCommandAsync(RunOptions options)
 
             if (!string.IsNullOrEmpty(signingKeyPath))
             {
-                IBomSigner signer = new XmlBomSigner();
-                bomContents = await signer.SignAsync(signingKeyPath, bomContents);
+                if (format == OutputFileFormat.Xml)
+                {
+                    IBomSigner signer = new XmlBomSigner();
+                    bomContents = await signer.SignAsync(signingKeyPath, bomContents);
+                }
+                else
+                {
+                    Console.WriteLine("Signing the BOM is only supported with XML BOMs at the moment.");
+                    return (int)ExitCode.UnsupportedSignatureFormat;
+                }
             }
 
 

Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,7 @@ enum ExitCode`
`25`	`25`	`LocalPackageCacheError,`
`26`	`26`	`DotnetRestoreFailed,`
`27`	`27`	`GitHubLicenseResolutionFailed,`
`28`		`- UnableToLocateDependencyBomRef`
	`28`	`+ UnableToLocateDependencyBomRef,`
	`29`	`+ UnsupportedSignatureFormat`
`29`	`30`	`}`
`30`	`31`	`}`