Open
Description
Today, we have a single, flat list of products with this hierarchy:
- Product
- Component (optional)
- Package
- Package
- Component (optional)
And each product has versions.
But products have often much richer structures, including product lines, product teams, release trains, and so on. As an open source example, the Eclipse Foundation project provides a good template of a large and rich Product/Project hierarchy, with many packages.
This can be useful to manage compliance and vulnerability at scale to have richer tagging, categorization, navigation and reporting following a product teams, product lines, and related hierarchies.