Xray scans Conan packages the same way it scans other package types. Xray data will only be displayed for the
conanmanifest.txt file. An optional vendor field can be added in the Conan recipe file to prevent false positives.
Conan artifacts and dependencies can be provided as part of the BuildInfo using the conan_build_info command.
In order for Xray to identify the build's C++ components manually create a BuildInfo and publish it to Artifactory. For more information, see the Build Upload REST API .
In the BuildInfo, do the following:
- Specify a cpp module, and set
cppas the modules type.
- In the dependencies section, list all of the cpp components of your build. Each cpp component must contain:
- ID: Consists of the component's vendor, name and version, in the form: "
[vendor]:name:version". Please note that the 'vendor' field is optional.