CycloneDX
diff --git a/‎cyclonedx-bom/src/errors.rs‎
Lines changed: 3 additions & 0 deletions b/‎cyclonedx-bom/src/errors.rs‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎cyclonedx-bom/src/models/bom.rs‎
Lines changed: 15 additions & 4 deletions b/‎cyclonedx-bom/src/models/bom.rs‎
Lines changed: 15 additions & 4 deletions
diff --git a/‎cyclonedx-bom/src/models/component.rs‎
Lines changed: 15 additions & 0 deletions b/‎cyclonedx-bom/src/models/component.rs‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎cyclonedx-bom/src/models/composition.rs‎
Lines changed: 13 additions & 0 deletions b/‎cyclonedx-bom/src/models/composition.rs‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎cyclonedx-bom/src/models/metadata.rs‎
Lines changed: 2 additions & 0 deletions b/‎cyclonedx-bom/src/models/metadata.rs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎cyclonedx-bom/src/models/mod.rs‎
Lines changed: 1 addition & 0 deletions b/‎cyclonedx-bom/src/models/mod.rs‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎cyclonedx-bom/src/models/service.rs‎
Lines changed: 15 additions & 0 deletions b/‎cyclonedx-bom/src/models/service.rs‎
Lines changed: 15 additions & 0 deletions
@@ -98,6 +98,9 @@ pub enum XmlReadError {
         element: String,
     },
 
+    #[error("Invalid enum value '{value}' given in {element}")]
+    InvalidEnumVariant { value: String, element: String },
+
     #[error("Could not parse {value} as {data_type} on {element}")]
     InvalidParseError {
         value: String,
 
@@ -35,6 +35,7 @@ use crate::models::external_reference::ExternalReferences;
 use crate::models::metadata::Metadata;
 use crate::models::property::Properties;
 use crate::models::service::{Service, Services};
+use crate::models::signature::Signature;
 use crate::models::vulnerability::Vulnerabilities;
 use crate::validation::{
     FailureReason, Validate, ValidationContext, ValidationError, ValidationPathComponent,
@@ -85,7 +86,10 @@ pub struct Bom {
     pub dependencies: Option<Dependencies>,
     pub compositions: Option<Compositions>,
     pub properties: Option<Properties>,
+    /// Added in version 1.4
     pub vulnerabilities: Option<Vulnerabilities>,
+    /// Added in version 1.4
+    pub signature: Option<Signature>,
 }
 
 impl Bom {
@@ -105,10 +109,7 @@ impl Bom {
                 SpecVersion::V1_4 => Ok(crate::specs::v1_4::bom::Bom::deserialize(json)?.into()),
             }
         } else {
-            return Err(BomError::UnsupportedSpecVersion(
-                "No field 'specVersion' found".to_string(),
-            )
-            .into());
+            Err(BomError::UnsupportedSpecVersion("No field 'specVersion' found".to_string()).into())
         }
     }
 
@@ -214,6 +215,7 @@ impl Default for Bom {
             compositions: None,
             properties: None,
             vulnerabilities: None,
+            signature: None,
         }
     }
 }
@@ -617,6 +619,7 @@ mod test {
             compositions: None,
             properties: None,
             vulnerabilities: None,
+            signature: None,
         };
 
         let actual = bom
@@ -642,6 +645,7 @@ mod test {
             compositions: None,
             properties: None,
             vulnerabilities: None,
+            signature: None,
         };
 
         let actual = bom.validate().expect("Failed to validate bom");
@@ -698,9 +702,11 @@ mod test {
                 aggregate: AggregateType::Complete,
                 assemblies: Some(vec![BomReference("assembly".to_string())]),
                 dependencies: Some(vec![BomReference("dependencies".to_string())]),
+                signature: None,
             }])),
             properties: None,
             vulnerabilities: None,
+            signature: None,
         };
 
         let actual = bom.validate().expect("Failed to validate bom");
@@ -783,6 +789,7 @@ mod test {
                 properties: None,
                 components: None,
                 evidence: None,
+                signature: None,
             }])),
             services: Some(Services(vec![Service {
                 bom_ref: None,
@@ -799,6 +806,7 @@ mod test {
                 external_references: None,
                 properties: None,
                 services: None,
+                signature: None,
             }])),
             external_references: Some(ExternalReferences(vec![ExternalReference {
                 external_reference_type: ExternalReferenceType::UnknownExternalReferenceType(
@@ -816,6 +824,7 @@ mod test {
                 aggregate: AggregateType::UnknownAggregateType("unknown".to_string()),
                 assemblies: None,
                 dependencies: None,
+                signature: None,
             }])),
             properties: Some(Properties(vec![Property {
                 name: "name".to_string(),
@@ -841,6 +850,7 @@ mod test {
                 vulnerability_targets: None,
                 properties: None,
             }])),
+            signature: None,
         };
 
         let actual = bom
@@ -1001,6 +1011,7 @@ mod test {
             compositions: None,
             properties: None,
             vulnerabilities: None,
+            signature: None,
         }
         .validate_with_context(ValidationContext::default())
         .expect("Error while validating");
 
@@ -36,6 +36,8 @@ use crate::{
     validation::{Validate, ValidationContext, ValidationError, ValidationResult},
 };
 
+use super::signature::Signature;
+
 #[derive(Debug, PartialEq, Eq)]
 pub struct Component {
     pub component_type: Classification,
@@ -61,6 +63,8 @@ pub struct Component {
     pub properties: Option<Properties>,
     pub components: Option<Components>,
     pub evidence: Option<ComponentEvidence>,
+    /// Added in version 1.4
+    pub signature: Option<Signature>,
 }
 
 impl Component {
@@ -94,6 +98,7 @@ impl Component {
             properties: None,
             components: None,
             evidence: None,
+            signature: None,
         }
     }
 }
@@ -608,6 +613,7 @@ mod test {
             hash::{Hash, HashAlgorithm, HashValue},
             license::LicenseChoice,
             property::Property,
+            signature::Algorithm,
         },
         validation::ValidationPathComponent,
     };
@@ -692,6 +698,10 @@ mod test {
                 ))])),
                 copyright: Some(CopyrightTexts(vec![Copyright("copyright".to_string())])),
             }),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate_with_context(ValidationContext::default())
         .expect("Error while validating");
@@ -780,6 +790,10 @@ mod test {
                 ))])),
                 copyright: Some(CopyrightTexts(vec![Copyright("copyright".to_string())])),
             }),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate_with_context(ValidationContext::default())
         .expect("Error while validating");
@@ -1194,6 +1208,7 @@ mod test {
             properties: None,
             components: None,
             evidence: None,
+            signature: None,
         }
     }
 }
@@ -21,11 +21,14 @@ use crate::validation::{
     ValidationResult,
 };
 
+use super::signature::Signature;
+
 #[derive(Debug, PartialEq, Eq)]
 pub struct Composition {
     pub aggregate: AggregateType,
     pub assemblies: Option<Vec<BomReference>>,
     pub dependencies: Option<Vec<BomReference>>,
+    pub signature: Option<Signature>,
 }
 
 impl Validate for Composition {
@@ -131,6 +134,8 @@ pub struct BomReference(pub(crate) String);
 
 #[cfg(test)]
 mod test {
+    use crate::models::signature::Algorithm;
+
     use super::*;
     use pretty_assertions::assert_eq;
 
@@ -140,6 +145,10 @@ mod test {
             aggregate: AggregateType::Complete,
             assemblies: Some(vec![BomReference("reference".to_string())]),
             dependencies: Some(vec![BomReference("reference".to_string())]),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate()
         .expect("Error while validating");
@@ -153,6 +162,10 @@ mod test {
             aggregate: AggregateType::UnknownAggregateType("unknown aggregate type".to_string()),
             assemblies: Some(vec![BomReference("reference".to_string())]),
             dependencies: Some(vec![BomReference("reference".to_string())]),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate()
         .expect("Error while validating");
 
@@ -191,6 +191,7 @@ mod test {
                 properties: None,
                 components: None,
                 evidence: None,
+                signature: None,
             }),
             manufacture: Some(OrganizationalEntity {
                 name: Some(NormalizedString::new("name")),
@@ -255,6 +256,7 @@ mod test {
                 properties: None,
                 components: None,
                 evidence: None,
+                signature: None,
             }),
             manufacture: Some(OrganizationalEntity {
                 name: Some(NormalizedString("invalid\tname".to_string())),
 
@@ -30,6 +30,7 @@ pub mod metadata;
 pub mod organization;
 pub mod property;
 pub mod service;
+pub mod signature;
 pub mod tool;
 pub mod vulnerability;
 pub mod vulnerability_analysis;
 
@@ -26,6 +26,8 @@ use crate::validation::{
     ValidationResult,
 };
 
+use super::signature::Signature;
+
 /// Represents a service as described in the [CycloneDX use cases](https://cyclonedx.org/use-cases/#service-definition)
 ///
 /// Defined via the [XML schema](https://cyclonedx.org/docs/1.3/xml/#type_service)
@@ -45,6 +47,8 @@ pub struct Service {
     pub external_references: Option<ExternalReferences>,
     pub properties: Option<Properties>,
     pub services: Option<Services>,
+    /// Added in version 1.4
+    pub signature: Option<Signature>,
 }
 
 impl Service {
@@ -70,6 +74,7 @@ impl Service {
             external_references: None,
             properties: None,
             services: None,
+            signature: None,
         }
     }
 }
@@ -284,6 +289,7 @@ mod test {
             external_reference::{ExternalReference, ExternalReferenceType},
             license::LicenseChoice,
             property::Property,
+            signature::Algorithm,
         },
     };
 
@@ -324,6 +330,10 @@ mod test {
                 value: NormalizedString::new("value"),
             }])),
             services: Some(Services(vec![])),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate_with_context(ValidationContext::default())
         .expect("Error while validating");
@@ -381,7 +391,12 @@ mod test {
                 external_references: None,
                 properties: None,
                 services: None,
+                signature: None,
             }])),
+            signature: Some(Signature {
+                algorithm: Algorithm::HS512,
+                value: "abcdefgh".to_string(),
+            }),
         }])
         .validate_with_context(ValidationContext::default())
         .expect("Error while validating");