[Defect]: Missing type in XML schema for ComponentData subelements

[andreas-hilti]

Describe the defect

In the XML schema, "sensitiveData" is not specified as a particular type. I believe it should be specified as "xs:string", to be consistent with the JSON and protobuf schemas.
The same applies also to "description" of "graphics".

More in details:
sensitiveData is defined as:

specification/schema/bom-1.6.xsd

Line 3932 in d570ffb

<xs:element name="sensitiveData" minOccurs="0" maxOccurs="unbounded">

According to https://www.w3.org/TR/xmlschema-0/#anyType:

The content of the element declared in this way is unconstrained, so the element value may be 423.46, but it may be any other sequence of characters as well, or indeed a mixture of characters and elements. In fact, anyType is the default type when none is specified, [...]

if no type is specified, it is anyType and not string.

This is the JSON equivalent:

specification/schema/bom-1.6.schema.json

Lines 362 to 369 in d570ffb

	"sensitiveData": {
	"type": "array",
	"title": "Sensitive Data",
	"description": "A description of any sensitive data included.",
	"items": {
	"type": "string"
	}
	},

Similar issue is here:

specification/schema/bom-1.6.xsd

Line 4021 in d570ffb

<xs:element name="description" minOccurs="0" maxOccurs="1">

Additional context

n/a

[jkowalleck]

thank you for the report and the fix, @andreas-hilti 👍