Hi,
We're working on a C++ based Android app that is statically linked against few open-source libraries such as OpenCV.
OpenCV is a pretty big one and our app is not using all OpenCV functions/features/image formats.
Should our SBOM include only the dependencies of OpenCV that effectively statically linked to our application runtime (since the linker drops non used symbols)?
Thank you,
David
We're working on a C++ based Android app that is statically linked against few open-source libraries such as OpenCV.
OpenCV is a pretty big one and our app is not using all OpenCV functions/features/image formats.
Should our SBOM include only the dependencies of OpenCV that effectively statically linked to our application runtime (since the linker drops non used symbols)?
Thank you,
David
