Tried with a CycloneDX 1.5 SBOM. SBOM validated using the CycloneDX Validator tool but it fails to process. No idea why! Could error messages be added to the output to explain why the SBOM doesn't validate?

DevOps Kung Fu Mafia
https://github.com/devops-kung-fu/trustier

* Reading SBOM from file...
* Loaded SBOM from input...
* Provided input is not a valid SBOM

The (sensitive) SBOM contains over 700 components, the majority are files but there are 13 components identified as library.