From d00675446965fd246c957186daac78ff89d47d70 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 31 May 2025 02:02:33 +0000 Subject: [PATCH 1/2] chore(deps): Bump python-semantic-release/publish-action from 9 to 10 Bumps [python-semantic-release/publish-action](https://github.com/python-semantic-release/publish-action) from 9 to 10. - [Release notes](https://github.com/python-semantic-release/publish-action/releases) - [Changelog](https://github.com/python-semantic-release/publish-action/blob/main/releaserc.toml) - [Commits](https://github.com/python-semantic-release/publish-action/compare/v9...v10) --- updated-dependencies: - dependency-name: python-semantic-release/publish-action dependency-version: '10' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9f75599b..1d6d73e0 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -132,7 +132,7 @@ jobs: !failure() && !cancelled() && steps.release.outputs.released == 'true' # see https://python-semantic-release.readthedocs.io/en/latest/automatic-releases/github-actions.html#python-semantic-release-publish-action - uses: python-semantic-release/publish-action@v9 + uses: python-semantic-release/publish-action@v10 with: github_token: ${{ secrets.GITHUB_TOKEN }} tag: ${{ steps.release.outputs.tag }} From cdfd6a26add197240c9cdf331de85a85db32a7dd Mon Sep 17 00:00:00 2001 From: Jan Kowalleck Date: Mon, 2 Jun 2025 09:19:28 +0200 Subject: [PATCH 2/2] docs: history Signed-off-by: Jan Kowalleck --- CHANGELOG.md | 501 +++++---------------------------------------------- 1 file changed, 41 insertions(+), 460 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 8a23e495..cb850fc0 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,6 @@ # CHANGELOG + ## v6.1.1 (2025-05-12) @@ -8,8 +9,6 @@ - Maintenance ([`e3c168b`](https://github.com/CycloneDX/cyclonedx-python/commit/e3c168b34fd33c38dd23847d2d065b7216c6c256)) -Signed-off-by: Jan Kowalleck - ## v6.1.0 (2025-05-12) @@ -18,26 +17,11 @@ Signed-off-by: Jan Kowalleck - Fix default value for `--spec-version ` ([`2f2982b`](https://github.com/CycloneDX/cyclonedx-python/commit/2f2982b35c5d4a520b75fe51b85796b8163335e0)) -Signed-off-by: Jan Kowalleck - ### Features - Rootless docker container ([#893](https://github.com/CycloneDX/cyclonedx-python/pull/893), [`a0cd44b`](https://github.com/CycloneDX/cyclonedx-python/commit/a0cd44ba2e9c49f621e10b70f5efde306c9906ac)) -As per [OWASP's Docker Security Cheat - Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html), it is - recommended to set a user instead of running the container as root. - -```bash virgo@lenovo:~$ docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES - ee568549229f cyclonedx-py:latest "/bin/bash" About a minute ago Up About a minute nifty_swirles - virgo@lenovo:~$ docker exec -it ee568549229f sh -c "id" uid=1000(cyclonedx) gid=1000(cyclonedx) - groups=1000(cyclonedx) ``` - -:arrow_up: Now the container is running as a standard user. - -Signed-off-by: virgo-o - ## v6.0.0 (2025-04-24) @@ -47,27 +31,13 @@ Signed-off-by: virgo-o ([#886](https://github.com/CycloneDX/cyclonedx-python/pull/886), [`9861a46`](https://github.com/CycloneDX/cyclonedx-python/commit/9861a46fb9a12f8b857fa31d393e1eb6656af141)) ---------- - -Signed-off-by: Michael Schlenker - -Signed-off-by: Jan Kowalleck - -Co-authored-by: Michael Schlenker - -Co-authored-by: Jan Kowalleck - - Drop support for python <3.9 ([#883](https://github.com/CycloneDX/cyclonedx-python/pull/883), [`9a5e6d8`](https://github.com/CycloneDX/cyclonedx-python/commit/9a5e6d8a985262ffa5cf97da5e687470887f4e35)) -Signed-off-by: Jan Kowalleck - - Spec-version defaults to CycloneDX 1.6 ([#885](https://github.com/CycloneDX/cyclonedx-python/pull/885), [`880dd79`](https://github.com/CycloneDX/cyclonedx-python/commit/880dd79c4ca6737c08c35288d14323c0db71b166)) -Signed-off-by: Jan Kowalleck - ## v5.5.0 (2025-04-23) @@ -77,8 +47,6 @@ Signed-off-by: Jan Kowalleck ([#882](https://github.com/CycloneDX/cyclonedx-python/pull/882), [`4fa5a35`](https://github.com/CycloneDX/cyclonedx-python/commit/4fa5a35ad8419f352c2436f86efd070b8729c5af)) -Signed-off-by: Jan Kowalleck - ## v5.4.0 (2025-04-23) @@ -87,40 +55,26 @@ Signed-off-by: Jan Kowalleck - Install instructions for `uv` ([`07d9bcc`](https://github.com/CycloneDX/cyclonedx-python/commit/07d9bccea8bd5cefa34dec0cb930da719a7dac97)) -Signed-off-by: Jan Kowalleck - - Reword common CLI switches ([#877](https://github.com/CycloneDX/cyclonedx-python/pull/877), [`3c86517`](https://github.com/CycloneDX/cyclonedx-python/commit/3c86517a9e9986270cf7d2c51a2d62957fbdb712)) -Signed-off-by: Jan Kowalleck - - Showcase usage with `uv` ([#858](https://github.com/CycloneDX/cyclonedx-python/pull/858), [`efd45b1`](https://github.com/CycloneDX/cyclonedx-python/commit/efd45b1f6f4aaebf70a9d645636626636145de26)) ---------- - -Signed-off-by: Jan Kowalleck - ### Features - Deprecate CLI switch `--outfile`; use new `--output-file` instead ([#875](https://github.com/CycloneDX/cyclonedx-python/pull/875), [`fb30ee0`](https://github.com/CycloneDX/cyclonedx-python/commit/fb30ee098f10ba805212bb6463ec7933676592c1)) -Signed-off-by: Jan Kowalleck - - Deprecate CLI switch `--schema-version`; use new `--spec-version` instead ([#871](https://github.com/CycloneDX/cyclonedx-python/pull/871), [`bbae05f`](https://github.com/CycloneDX/cyclonedx-python/commit/bbae05f3130c79c442f67f3ee544a7e4701d5a86)) -Signed-off-by: Jan Kowalleck - - Support `cyclonedx-python-lib ^10` ([#880](https://github.com/CycloneDX/cyclonedx-python/pull/880), [`545dde0`](https://github.com/CycloneDX/cyclonedx-python/commit/545dde0cfd380748f711e159ecb2a7c4fb9cf81b)) -Signed-off-by: Jan Kowalleck - ## v5.3.0 (2025-02-26) @@ -130,10 +84,6 @@ Signed-off-by: Jan Kowalleck ([#854](https://github.com/CycloneDX/cyclonedx-python/pull/854), [`45ae96e`](https://github.com/CycloneDX/cyclonedx-python/commit/45ae96eca790d68fc8262e70307110aab36c29c2)) ---------- - -Signed-off-by: Jan Kowalleck - ## v5.2.0 (2025-02-20) @@ -143,18 +93,12 @@ Signed-off-by: Jan Kowalleck ([#847](https://github.com/CycloneDX/cyclonedx-python/pull/847), [`12cc59b`](https://github.com/CycloneDX/cyclonedx-python/commit/12cc59bb0c38ae2ce72bc9e54c46762dafe399fc)) -Signed-off-by: lightningRalf - ### Features - Subcommand `environment` got aliases `env`, `venv` ([#850](https://github.com/CycloneDX/cyclonedx-python/pull/850), [`aaed12a`](https://github.com/CycloneDX/cyclonedx-python/commit/aaed12a74d68fe8d8eb2fadc7b8d226968f335cf)) -fixes #845 - -Signed-off-by: Jan Kowalleck - ## v5.1.2 (2025-01-21) @@ -164,24 +108,14 @@ Signed-off-by: Jan Kowalleck ([#842](https://github.com/CycloneDX/cyclonedx-python/pull/842), [`18c5f0e`](https://github.com/CycloneDX/cyclonedx-python/commit/18c5f0ec8e4418aeaf7d6ee2e36b40133f9d0e5a)) -fixes [#840](https://github.com/CycloneDX/cyclonedx-python/issues/840) - ---------- - -Signed-off-by: Jan Kowalleck - ### Documentation - Add console classifier ([`75f640c`](https://github.com/CycloneDX/cyclonedx-python/commit/75f640cdede42676c0d9e96a359b111582596ff9)) -Signed-off-by: Jan Kowalleck - - Fix typos in comments ([`8228cbb`](https://github.com/CycloneDX/cyclonedx-python/commit/8228cbb65070008279859579b6149e6f6e6f0404)) -Signed-off-by: Jan Kowalleck - ## v5.1.1 (2024-11-09) @@ -191,19 +125,11 @@ Signed-off-by: Jan Kowalleck ([#828](https://github.com/CycloneDX/cyclonedx-python/pull/828), [`b2595cf`](https://github.com/CycloneDX/cyclonedx-python/commit/b2595cf829f57c0712394ae5f159af395b59c43e)) -fixes #826 - ---------- - -Signed-off-by: Jan Kowalleck - ### Documentation - Fix headline structure in readme ([`74f07e1`](https://github.com/CycloneDX/cyclonedx-python/commit/74f07e16871b9ee5f9f7581edffa3af76b2b7ba6)) -Signed-off-by: Jan Kowalleck - ## v5.1.0 (2024-10-23) @@ -212,8 +138,6 @@ Signed-off-by: Jan Kowalleck - Add Python 3.13 support ([#818](https://github.com/CycloneDX/cyclonedx-python/pull/818), [`f4eb79e`](https://github.com/CycloneDX/cyclonedx-python/commit/f4eb79e50bd5a1462c47ad259d632937d951bf96)) -Signed-off-by: Jan Kowalleck - ## v5.0.0 (2024-10-15) @@ -223,8 +147,6 @@ Signed-off-by: Jan Kowalleck ([#813](https://github.com/CycloneDX/cyclonedx-python/pull/813), [`6707959`](https://github.com/CycloneDX/cyclonedx-python/commit/67079598b520fc7319f1c83ff562584f4acdd09c)) -Signed-off-by: Jan Kowalleck - ### Features - V5.0.0 ([#797](https://github.com/CycloneDX/cyclonedx-python/pull/797), @@ -247,11 +169,6 @@ The mentioned changes are considered "breaking" for processes that relied on the * Requires `cyclonedx-python-lib>=8.0.0,<9 ` now, was `>=7.3.0,<8.0.0,!=7.3.1`. ---------- - -Signed-off-by: Jan Kowalleck - - ## v4.6.1 (2024-09-30) ### Bug Fixes @@ -260,23 +177,11 @@ Signed-off-by: Jan Kowalleck ([#805](https://github.com/CycloneDX/cyclonedx-python/pull/805), [`9e8a5d7`](https://github.com/CycloneDX/cyclonedx-python/commit/9e8a5d72045b3477e5523ed891493c29a584f35f)) -fixes #804 - ---------- - -Signed-off-by: Steve (Gadget) Barnes - -Signed-off-by: Jan Kowalleck - -Co-authored-by: Jan Kowalleck - ### Documentation - Contrib and setup hint ([`2ae46ff`](https://github.com/CycloneDX/cyclonedx-python/commit/2ae46ff222067724d4f1e5e23335cd342f6775a6)) -Signed-off-by: Jan Kowalleck - ## v4.6.0 (2024-09-20) @@ -286,26 +191,12 @@ Signed-off-by: Jan Kowalleck ([#788](https://github.com/CycloneDX/cyclonedx-python/pull/788), [`a1354e5`](https://github.com/CycloneDX/cyclonedx-python/commit/a1354e5fd074036499d308488e0e621647afc3ce)) -Signed-off-by: Jan Kowalleck - ### Features - Populate properties `cdx:python:package:source:vcs:...` ([#790](https://github.com/CycloneDX/cyclonedx-python/pull/790), [`b08e1bb`](https://github.com/CycloneDX/cyclonedx-python/commit/b08e1bb46871b167fb0ca135d2f97ad8a19df313)) -populate the newly added/fixed CycloneDX properties `cdx:python:package:source:vcs:...` in - accordance with and - . - -the deprecated properties are still used, so no breaking changes exist. - -fixes #789 - ---------- - -Signed-off-by: Jan Kowalleck - ## v4.5.1 (2024-09-18) @@ -314,18 +205,11 @@ Signed-off-by: Jan Kowalleck - Assert copyright headers ([#787](https://github.com/CycloneDX/cyclonedx-python/pull/787), [`dddcb5d`](https://github.com/CycloneDX/cyclonedx-python/commit/dddcb5dc6529e60c82dcfd756a0a8b31ae76e9bf)) -utilizes flake8 plugin to assert the correct - headers - -Signed-off-by: Jan Kowalleck - ### Documentation - Fix typo ([`9f9fa9e`](https://github.com/CycloneDX/cyclonedx-python/commit/9f9fa9e795b2aea847ae7639b018fd6c32d7e38c)) -Signed-off-by: Jan Kowalleck - ## v4.5.0 (2024-06-10) @@ -334,33 +218,15 @@ Signed-off-by: Jan Kowalleck - Exclude dep bumps from changelog ([#750](https://github.com/CycloneDX/cyclonedx-python/pull/750), [`3d02d6a`](https://github.com/CycloneDX/cyclonedx-python/commit/3d02d6ab32d864a6cf9c84a12f60623c6a784c4b)) -Signed-off-by: Jan Kowalleck - - Ossf best practice badge percentage ([`5717803`](https://github.com/CycloneDX/cyclonedx-python/commit/5717803b27f71d6133cce5a5ea91cd87f130626a)) -Signed-off-by: Jan Kowalleck - ### Features - Environment - gather declared license information according to PEP639 ([#755](https://github.com/CycloneDX/cyclonedx-python/pull/755), [`e9cc805`](https://github.com/CycloneDX/cyclonedx-python/commit/e9cc8058bb299e98a6f645426a2626bcfa3f06eb)) -From python environments, gather additional declared license information according to [PEP - 639](https://peps.python.org/pep-0639) (improving license clarity with better package metadata). - -New CLI switches for `cyclonedx environment`: * `--PEP-639`: Enable license gathering according to - PEP 639 (improving license clarity with better package metadata). The behavior may change during - the draft development of the PEP. * `--gather-license-texts`: Enable license text gathering. - -In current state of implementation, `--gather-license-texts` has effect only if `--PEP-639` is also - given. - ---------- - -Signed-off-by: Jan Kowalleck - ## v4.4.3 (2024-04-26) @@ -369,12 +235,6 @@ Signed-off-by: Jan Kowalleck - Do not use `cyclonedx-lib==7.3.1` ([#729](https://github.com/CycloneDX/cyclonedx-python/pull/729), [`aa715c0`](https://github.com/CycloneDX/cyclonedx-python/commit/aa715c0e94045c35fda7b6908c3c59cb84fb5e0c)) -add regression test for #727 fixes #727 - ---------- - -Signed-off-by: Jan Kowalleck - ## v4.4.2 (2024-04-21) @@ -383,8 +243,6 @@ Signed-off-by: Jan Kowalleck - Release `lates` container image ([#726](https://github.com/CycloneDX/cyclonedx-python/pull/726), [`0155450`](https://github.com/CycloneDX/cyclonedx-python/commit/015545014d7bb0fe72438d6707db4abc89dba031)) -Signed-off-by: Jan Kowalleck - ## v4.4.1 (2024-04-21) @@ -393,8 +251,6 @@ Signed-off-by: Jan Kowalleck - Release `lates` container image ([#725](https://github.com/CycloneDX/cyclonedx-python/pull/725), [`8ba9d0b`](https://github.com/CycloneDX/cyclonedx-python/commit/8ba9d0b35f9d9593b5a3e232bf5e92d79b42fab9)) -Signed-off-by: Jan Kowalleck - ## v4.4.0 (2024-04-21) @@ -403,21 +259,6 @@ Signed-off-by: Jan Kowalleck - Publish to GHCR ([#724](https://github.com/CycloneDX/cyclonedx-python/pull/724), [`8c18484`](https://github.com/CycloneDX/cyclonedx-python/commit/8c184842af1a790692a898e9437a209a8fa65422)) -Tee container image version of the app is also available on GitHubContainerRegistry: - - ---------- - -Signed-off-by: jxdv - -Signed-off-by: Jan Kowalleck - -Signed-off-by: semantic-release - -Co-authored-by: jxdv - -Co-authored-by: semantic-release - ## v4.3.0 (2024-04-20) @@ -427,15 +268,6 @@ Co-authored-by: semantic-release ([#722](https://github.com/CycloneDX/cyclonedx-python/pull/722), [`b0ae453`](https://github.com/CycloneDX/cyclonedx-python/commit/b0ae453e7dc69356ba5e1b987a6b19a31d106909)) -- Add declared licenses from License Troves if not mapped to SPDX license ID - CycloneDX 1.6 mark - licenses as "declared" - -fixes #718 - ---------- - -Signed-off-by: Jan Kowalleck - ## v4.2.0 (2024-04-18) @@ -444,8 +276,6 @@ Signed-off-by: Jan Kowalleck - Support CycloneDX 1.6 output ([#720](https://github.com/CycloneDX/cyclonedx-python/pull/720), [`639b35a`](https://github.com/CycloneDX/cyclonedx-python/commit/639b35ad7e9aa832a4ad9b489a2391348f97fc15)) -Signed-off-by: Jan Kowalleck - ## v4.1.6 (2024-04-15) @@ -454,8 +284,6 @@ Signed-off-by: Jan Kowalleck - More resilent PEP610 parsing ([#716](https://github.com/CycloneDX/cyclonedx-python/pull/716), [`93f0184`](https://github.com/CycloneDX/cyclonedx-python/commit/93f0184dd969db1536128d1ec4861f84977f0a91)) -Signed-off-by: Jan Kowalleck - ## v4.1.5 (2024-04-11) @@ -465,8 +293,6 @@ Signed-off-by: Jan Kowalleck ([#710](https://github.com/CycloneDX/cyclonedx-python/pull/710), [`a218b40`](https://github.com/CycloneDX/cyclonedx-python/commit/a218b40ae8bc383e449b69ba3aa5280253387f19)) -Signed-off-by: Jan Kowalleck - ## v4.1.4 (2024-03-28) @@ -476,8 +302,6 @@ Signed-off-by: Jan Kowalleck ([#703](https://github.com/CycloneDX/cyclonedx-python/pull/703), [`8ade6e1`](https://github.com/CycloneDX/cyclonedx-python/commit/8ade6e18637428e86332ecd1019416dfc121e862)) -Signed-off-by: Jan Kowalleck - ## v4.1.3 (2024-03-15) @@ -487,16 +311,12 @@ Signed-off-by: Jan Kowalleck ([#694](https://github.com/CycloneDX/cyclonedx-python/pull/694), [`ec7ab3e`](https://github.com/CycloneDX/cyclonedx-python/commit/ec7ab3eb3a0aba31ce84227637aa0c91e05e76ba)) -Signed-off-by: Jan Kowalleck - ### Documentation - Imprve `environment` use cases and examples ([#690](https://github.com/CycloneDX/cyclonedx-python/pull/690), [`0d38c7b`](https://github.com/CycloneDX/cyclonedx-python/commit/0d38c7b252e8d7f868656dd4663d1aac1c10fba5)) -Signed-off-by: Jan Kowalleck - ## v4.1.2 (2024-03-01) @@ -505,8 +325,6 @@ Signed-off-by: Jan Kowalleck - Use poetry v1.8.1 ([#682](https://github.com/CycloneDX/cyclonedx-python/pull/682), [`dba63b8`](https://github.com/CycloneDX/cyclonedx-python/commit/dba63b8509336757d17d1cd21cdbe72517ecfd67)) -Signed-off-by: Jan Kowalleck - ## v4.1.1 (2024-02-03) @@ -515,21 +333,12 @@ Signed-off-by: Jan Kowalleck - Normalize package extras ([#671](https://github.com/CycloneDX/cyclonedx-python/pull/671), [`4d550ad`](https://github.com/CycloneDX/cyclonedx-python/commit/4d550ad2467bcfbf3a8705188fd4f15e0dee194e)) -ALL names of package extras are normalized, according to spec - - ---------- - -Signed-off-by: Jan Kowalleck - ### Documentation - Improve example for programmatic call of CLI ([#670](https://github.com/CycloneDX/cyclonedx-python/pull/670), [`2ac3f21`](https://github.com/CycloneDX/cyclonedx-python/commit/2ac3f218840b256bc84f25fa962febf484800860)) -Signed-off-by: Jan Kowalleck - ## v4.1.0 (2024-02-02) @@ -539,8 +348,6 @@ Signed-off-by: Jan Kowalleck ([#668](https://github.com/CycloneDX/cyclonedx-python/pull/668), [`50d2a4b`](https://github.com/CycloneDX/cyclonedx-python/commit/50d2a4bb1827fc0e7de83a7f78fc0a4d278df93e)) -Signed-off-by: Jan Kowalleck - ## v4.0.0 (2024-01-31) @@ -553,59 +360,49 @@ Signed-off-by: Jan Kowalleck See also the migration guide in the docs. -- BC: Removed support for python < 3.8 - BC: Removed deprecated shell script `cyclonedx-bom`; use - `cyclonedx-py` instead - BC: Removed conda support. However, conda's Python environments are fully - supported. See below. - BC: Removed public API. You may use the CLI instead, see chapter "usage" - in the docs. - BC: Complete redesign of the CommandLineInterface(CLI): - Uses sub-commands for - easy accessibility and divide in specific purposes and domains - Easy understandable flags, - switches and options -- in accordance with the domains - Updated help pages, added usage examples - - Dozens of new features and fixes, such as: - _environment_ analyzer supports any Python +- BC: Removed support for python < 3.8 +- BC: Removed deprecated shell script `cyclonedx-bom`; use + `cyclonedx-py` instead +- BC: Removed conda support. However, conda's Python environments are fully + supported. See below. +- BC: Removed public API. You may use the CLI instead, see chapter "usage" + in the docs. +- BC: Complete redesign of the CommandLineInterface(CLI): + - Uses sub-commands for + easy accessibility and divide in specific purposes and domains + - Easy understandable flags, + switches and options -- in accordance with the domains + - Updated help pages, added usage examples + - Dozens of new features and fixes, such as: + - _environment_ analyzer supports any Python (virtual) environment -- including support for, but not limited to: _conda_, _Hatch_, _PDM_, - _Pipenv_, _Poetry_, _venv_, _virtualenv_ - _Poetry_ analyzer support groups, filtering, and such - - _Pipenv_ analyzer support categories, filtering, and such - _requirements_ analyzer is feature - complete and fixed - More details in the SBOM results (based on method) - PackageURLs may have - more qualifiers (enabled per default, disable via `--short-PURLs`) - component properties + _Pipenv_, _Poetry_, _venv_, _virtualenv_ + - _Poetry_ analyzer support groups, filtering, and such + - _Pipenv_ analyzer support categories, filtering, and such + - _requirements_ analyzer is feature + complete and fixed - More details in the SBOM results (based on method) + - PackageURLs may have + more qualifiers (enabled per default, disable via `--short-PURLs`) + - component properties according to [official taxonomy](https://github.com/CycloneDX/cyclonedx-property-taxonomy/blob/main/cdx/) - SBOM results - may be validated (enabled per default, disable via `--no-validate`) - SBOM results may have + may be validated (enabled per default, disable via `--no-validate`) + - SBOM results may have dependency graph populated (if supported by method - applies to _environment_ and _Poetry_) - SBOM - results may have root-component populated (if `pyproject` provided) - SBOM results are more - `diff`-friendly and not just one long line of text - Fixed possible issues with input data - encoding - May omit dev-dependencies or domain-specific groups/categories (if supported by method - and issued by CLI switches) - Strip authentication secrets from (private) download/index URLs - - Support CycloneDX 1.5 - which is the default now - Upgraded documentation, examples, ... - - Complete rewrite from scratch - Dependencies were bumped, dropped, added, ... - QA and test suites + results may have root-component populated (if `pyproject` provided) + - SBOM results are more + `diff`-friendly and not just one long line of text + - Fixed possible issues with input data + encoding + - May omit dev-dependencies or domain-specific groups/categories (if supported by method + and issued by CLI switches) + - Strip authentication secrets from (private) download/index URLs + - Support CycloneDX 1.5 + - which is the default now - Upgraded documentation, examples, ... + - Complete rewrite from scratch - Dependencies were bumped, dropped, added, ... + - QA and test suites were massively enhanced ---------- - -Signed-off-by: Paul Horton - -Signed-off-by: Thomas Graf - -Signed-off-by: Jan Kowalleck - -Signed-off-by: dependabot[bot] - -Signed-off-by: Andreas Fehlner - -Signed-off-by: Jan Kowalleck - -Signed-off-by: semantic-release - -Co-authored-by: Paul Horton - -Co-authored-by: Thomas Graf - -Co-authored-by: semantic-release - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> - -Co-authored-by: github-actions - -Co-authored-by: Andreas Fehlner - - ## v3.11.7 (2023-11-03) ### Bug Fixes @@ -614,8 +411,6 @@ Co-authored-by: Andreas Fehlner ([#613](https://github.com/CycloneDX/cyclonedx-python/pull/613), [`fb3d7bf`](https://github.com/CycloneDX/cyclonedx-python/commit/fb3d7bfd1216ad8b5328a1d348fea04fee31d3a4)) -Signed-off-by: Jan Kowalleck - ## v3.11.6 (2023-11-03) @@ -625,8 +420,6 @@ Signed-off-by: Jan Kowalleck ([#612](https://github.com/CycloneDX/cyclonedx-python/pull/612), [`be55902`](https://github.com/CycloneDX/cyclonedx-python/commit/be559020e482795c6603f36e98713c6f7bde1e34)) -Signed-off-by: Jan Kowalleck - ## v3.11.5 (2023-10-20) @@ -635,11 +428,6 @@ Signed-off-by: Jan Kowalleck - Custom input encoding ([#601](https://github.com/CycloneDX/cyclonedx-python/pull/601), [`363934c`](https://github.com/CycloneDX/cyclonedx-python/commit/363934c0bc69ebbb23472f1173bf3c6b1e3c023a)) -The custom input specified via CLI's `-i` option did not properly detect the input encoding. This - was fixed. - -Signed-off-by: Jan Kowalleck - ## v3.11.4 (2023-10-19) @@ -648,8 +436,6 @@ Signed-off-by: Jan Kowalleck - Input file encoding fallback ([`0bc7296`](https://github.com/CycloneDX/cyclonedx-python/commit/0bc72964d0578f713f405bc101742ef096bf8fd7)) -Signed-off-by: Jan Kowalleck - ## v3.11.3 (2023-10-19) @@ -658,35 +444,18 @@ Signed-off-by: Jan Kowalleck - Input file encoding ([#596](https://github.com/CycloneDX/cyclonedx-python/pull/596), [`a9dda4b`](https://github.com/CycloneDX/cyclonedx-python/commit/a9dda4bfd0e68529628eab99b6db00fb5214bfc3)) -Input files in lock-format are expected in a certain encoding, other input file encodings are - detected. - -fixes https://github.com/CycloneDX/cyclonedx-python/issues/448 - ---------- - -Signed-off-by: Jan Kowalleck - -Co-authored-by: Jan Kowalleck - ### Documentation - Adjust syntax hilight for code blocks ([#592](https://github.com/CycloneDX/cyclonedx-python/pull/592), [`ccac31e`](https://github.com/CycloneDX/cyclonedx-python/commit/ccac31eb4d0996236da24ca9efb57af66bd1a020)) -Signed-off-by: Jan Kowalleck - - Mark `ShellSession` in README ([`411cf3d`](https://github.com/CycloneDX/cyclonedx-python/commit/411cf3d0a4b5005c1591211ecdc464d4747d69f1)) -Signed-off-by: Jan Kowalleck - - Publish coverage ([#600](https://github.com/CycloneDX/cyclonedx-python/pull/600), [`bd4f48e`](https://github.com/CycloneDX/cyclonedx-python/commit/bd4f48ef7f3c4c890a138c45dbc87f6ca3e2cf7b)) -Signed-off-by: Jan Kowalleck - ## v3.11.2 (2023-07-12) @@ -696,12 +465,6 @@ Signed-off-by: Jan Kowalleck ([#562](https://github.com/CycloneDX/cyclonedx-python/pull/562), [`830d15c`](https://github.com/CycloneDX/cyclonedx-python/commit/830d15c27fadb475fa9a15918b1d5930cd71834d)) -somebody renamed the `master` branch to `main`. but forgot to transition the docs. - -fixed this - -Signed-off-by: Jan Kowalleck - ## v3.11.1 (2023-07-12) @@ -710,12 +473,6 @@ Signed-off-by: Jan Kowalleck - Fix typo in help page ([#552](https://github.com/CycloneDX/cyclonedx-python/pull/552), [`19bf41a`](https://github.com/CycloneDX/cyclonedx-python/commit/19bf41a52a698ee3ddee5fafc5d293ea3d9427be)) -`it's` -> `its` - -fixes #551 - -Signed-off-by: Jan Kowalleck - ## v3.11.0 (2023-02-11) @@ -724,32 +481,18 @@ Signed-off-by: Jan Kowalleck - Fix shields ([#473](https://github.com/CycloneDX/cyclonedx-python/pull/473), [`e32b288`](https://github.com/CycloneDX/cyclonedx-python/commit/e32b28894a8859925f22a1f45aec8608e7cd8bc3)) -caused by https://github.com/badges/shields/issues/8671 - -Signed-off-by: Jan Kowalleck - - Fix typo in CLI help page ([#490](https://github.com/CycloneDX/cyclonedx-python/pull/490), [`a8a8445`](https://github.com/CycloneDX/cyclonedx-python/commit/a8a844504494d10c217ba4739e6ff09b4ca34f67)) - Fix typos ([#482](https://github.com/CycloneDX/cyclonedx-python/pull/482), [`edbe3d4`](https://github.com/CycloneDX/cyclonedx-python/commit/edbe3d4e0ee62396ac10b42dd9ee5d6094817675)) -* Fix typo - -Signed-off-by: Thomas Beutlich - -Signed-off-by: Jan Kowalleck - -Co-authored-by: Jan Kowalleck - ### Features - Deprecated CLI command `cyclonedx-bom` prints deprecation warning on STDERR before execution ([#489](https://github.com/CycloneDX/cyclonedx-python/pull/489), [`2009236`](https://github.com/CycloneDX/cyclonedx-python/commit/2009236c537af212aab1d5907e02f2b003f3062c)) -Signed-off-by: Jan Kowalleck - ## v3.10.1 (2022-12-15) @@ -759,16 +502,12 @@ Signed-off-by: Jan Kowalleck ([#471](https://github.com/CycloneDX/cyclonedx-python/pull/471), [`1573064`](https://github.com/CycloneDX/cyclonedx-python/commit/157306483a21583d752714a77ad7d0c7395291e5)) -Signed-off-by: Roland Weber - ### Documentation - Improve CONTRIBUTION instructions - sign-off step ([#470](https://github.com/CycloneDX/cyclonedx-python/pull/470), [`578c0a8`](https://github.com/CycloneDX/cyclonedx-python/commit/578c0a88e63c804b1462e3d3b617f56b53b6012e)) -Signed-off-by: Roland Weber - ## v3.10.0 (2022-12-13) @@ -778,12 +517,6 @@ Signed-off-by: Roland Weber ([#469](https://github.com/CycloneDX/cyclonedx-python/pull/469), [`0b1e07f`](https://github.com/CycloneDX/cyclonedx-python/commit/0b1e07f91aada201088605a84ea394182ce0f10e)) -Signed-off-by: tewfik-ghariani - -Signed-off-by: Jan Kowalleck - -Co-authored-by: tewfik-ghariani - ## v3.9.0 (2022-12-13) @@ -793,8 +526,6 @@ Co-authored-by: tewfik-ghariani ([#466](https://github.com/CycloneDX/cyclonedx-python/pull/466), [`9eedb4f`](https://github.com/CycloneDX/cyclonedx-python/commit/9eedb4ff27bb81f4ad323e9fa0f79230b0710032)) -Signed-off-by: Jan Kowalleck - ## v3.8.0 (2022-12-12) @@ -804,8 +535,6 @@ Signed-off-by: Jan Kowalleck ([#465](https://github.com/CycloneDX/cyclonedx-python/pull/465), [`f543b69`](https://github.com/CycloneDX/cyclonedx-python/commit/f543b69ee4463df3fb4d4b7c86475562f62e4744)) -Signed-off-by: Jan Kowalleck - ## v3.7.4 (2022-12-12) @@ -815,8 +544,6 @@ Signed-off-by: Jan Kowalleck ([#463](https://github.com/CycloneDX/cyclonedx-python/pull/463), [`3118acd`](https://github.com/CycloneDX/cyclonedx-python/commit/3118acdf180b6d8d35a637b3e94dc6ec7c5c5b3d)) -Signed-off-by: Jan Kowalleck - ## v3.7.3 (2022-12-11) @@ -826,8 +553,6 @@ Signed-off-by: Jan Kowalleck ([#450](https://github.com/CycloneDX/cyclonedx-python/pull/450), [`6101986`](https://github.com/CycloneDX/cyclonedx-python/commit/610198659be408b5ef17d649aa381944d992a7dd)) -Signed-off-by: Jan Kowalleck - ## v3.7.2 (2022-11-15) @@ -851,10 +576,6 @@ Signed-off-by: Jan Kowalleck ([#441](https://github.com/CycloneDX/cyclonedx-python/pull/441), [`67f56e7`](https://github.com/CycloneDX/cyclonedx-python/commit/67f56e7bfa4fb9d50654ebd07ece1ad14377a355)) -fixes #440 - -Signed-off-by: Jan Kowalleck - ## v3.7.0 (2022-11-10) @@ -864,8 +585,6 @@ Signed-off-by: Jan Kowalleck ([#432](https://github.com/CycloneDX/cyclonedx-python/pull/432), [`7cfefeb`](https://github.com/CycloneDX/cyclonedx-python/commit/7cfefeb389b3c63b69ad93aeca1a709231da2901)) -Signed-off-by: a1lu - ## v3.6.4 (2022-11-10) @@ -875,8 +594,6 @@ Signed-off-by: a1lu ([#431](https://github.com/CycloneDX/cyclonedx-python/pull/431), [`4ab075e`](https://github.com/CycloneDX/cyclonedx-python/commit/4ab075ee814571a8dc8c1e7b962686b232619330)) -Signed-off-by: a1lu - ## v3.6.3 (2022-09-19) @@ -885,8 +602,6 @@ Signed-off-by: a1lu - Ci release pipeline ([`99ccdc6`](https://github.com/CycloneDX/cyclonedx-python/commit/99ccdc671f5a7a941f31199813bce71405bbfdd8)) -Signed-off-by: Jan Kowalleck - ## v3.6.2 (2022-09-19) @@ -895,8 +610,6 @@ Signed-off-by: Jan Kowalleck - Ci release pipeline ([`6515071`](https://github.com/CycloneDX/cyclonedx-python/commit/6515071fc95d2b460577d0fbceb7d6c34a18c508)) -Signed-off-by: Jan Kowalleck - ## v3.6.1 (2022-09-19) @@ -906,10 +619,6 @@ Signed-off-by: Jan Kowalleck ([#417](https://github.com/CycloneDX/cyclonedx-python/pull/417), [`25f9e29`](https://github.com/CycloneDX/cyclonedx-python/commit/25f9e29a162f20918b6f1bbe887cc7b18c623c16)) -use named licenses instead of license expressions. - -Signed-off-by: Jan Kowalleck - ## v3.6.0 (2022-09-16) @@ -918,10 +627,6 @@ Signed-off-by: Jan Kowalleck - Describe `cyclonedx-py` rather than `cyclonedx-bom` ([`c04196e`](https://github.com/CycloneDX/cyclonedx-python/commit/c04196e4404efc0513676e5baefeaf03e6b3b8e3)) -fixes #414 - -Signed-off-by: Jan Kowalleck - - Fix minor typo in poetry usage docs ([#407](https://github.com/CycloneDX/cyclonedx-python/pull/407), [`0abe230`](https://github.com/CycloneDX/cyclonedx-python/commit/0abe23049b5423f55b3e0951a00047f4e3f93056)) @@ -936,8 +641,6 @@ Signed-off-by: Jan Kowalleck ([#418](https://github.com/CycloneDX/cyclonedx-python/pull/418), [`05cd51e`](https://github.com/CycloneDX/cyclonedx-python/commit/05cd51e1da261d29fb5c3e1722544a8f00a0cfcd)) -Signed-off-by: Jan Kowalleck - ## v3.5.0 (2022-06-27) @@ -964,10 +667,6 @@ Signed-off-by: Jan Kowalleck - Cli default file for json format ([`8747620`](https://github.com/CycloneDX/cyclonedx-python/commit/8747620dac7ed3eeff69369c05dfb6386a56e549)) -fixes #337 - -Signed-off-by: Jan Kowalleck - ## v3.2.0 (2022-04-05) @@ -977,28 +676,16 @@ Signed-off-by: Jan Kowalleck ([#333](https://github.com/CycloneDX/cyclonedx-python/pull/333), [`0ff6493`](https://github.com/CycloneDX/cyclonedx-python/commit/0ff6493dd59d2e8efafd35d4460847525e590937)) -Signed-off-by: Mostafa Moradian - -Signed-off-by: Jan Kowalleck - -Co-authored-by: Mostafa Moradian - ### Documentation - Describe methods to call the tool ([`2bac83a`](https://github.com/CycloneDX/cyclonedx-python/commit/2bac83a6c6f7354d8b7218c32b4b2e5d96b2fd0c)) -Signed-off-by: Jan Kowalleck - ### Features - Make module callable ([`5b3d8d7`](https://github.com/CycloneDX/cyclonedx-python/commit/5b3d8d7641b0f2825e5419b5ad8c8a75bf66403b)) -fixes #321 - -Signed-off-by: Jan Kowalleck - ## v3.1.1 (2022-03-21) @@ -1008,33 +695,20 @@ Signed-off-by: Jan Kowalleck ([#332](https://github.com/CycloneDX/cyclonedx-python/pull/332), [`65246dd`](https://github.com/CycloneDX/cyclonedx-python/commit/65246ddfa9a55ce53fbf87f33b1f269c519f9b3a)) -conda packacge string parser no longer raises unexpected errors, if the build-number is non-numeric. - fixes #331 - -Signed-off-by: Jan Kowalleck - ### Documentation - Add hint for RTFD to README ([`cf4f534`](https://github.com/CycloneDX/cyclonedx-python/commit/cf4f534401dc90dbe093ce1a094efb02e5fb7c90)) -Signed-off-by: Jan Kowalleck - - Add link to https://cyclonedx.org/ to README ([`fc4b8e4`](https://github.com/CycloneDX/cyclonedx-python/commit/fc4b8e44bec39b175bb8994e0a59bc5076d1b2a6)) -Signed-off-by: Jan Kowalleck - - Add RTFD shield to README ([`7fef6ee`](https://github.com/CycloneDX/cyclonedx-python/commit/7fef6eec5d553c7687e7b2d2af1ba4e330f16490)) -Signed-off-by: Jan Kowalleck - - Fixed link to RTFD ([`3a8669a`](https://github.com/CycloneDX/cyclonedx-python/commit/3a8669ad7ba4230d06d1e0965342a5a836a52d1f)) -Signed-off-by: Jan Kowalleck - ## v3.1.0 (2022-03-10) @@ -1043,27 +717,19 @@ Signed-off-by: Jan Kowalleck - Sort imports ([`fdec44b`](https://github.com/CycloneDX/cyclonedx-python/commit/fdec44bc111d7eb1add080a219dbc77744678f8a)) -Signed-off-by: Mostafa Moradian - - Try to fix the temp file issue on Windows machines ([`684d4f0`](https://github.com/CycloneDX/cyclonedx-python/commit/684d4f03ad6f8c0764dfaf8f3a38a09b91b69e5d)) -Signed-off-by: Mostafa Moradian - ### Documentation - Update RequirementsFileParser docs to include nested file support ([`9e9021d`](https://github.com/CycloneDX/cyclonedx-python/commit/9e9021decb19d8262e87fe6955577c1bd1309d95)) -Signed-off-by: Mostafa Moradian - ### Features - Add pip-requirements-parser and update virtualenv to latest version ([`73b2182`](https://github.com/CycloneDX/cyclonedx-python/commit/73b2182550d9635a0a5ab8e4f2226f37cf6b1b35)) -Signed-off-by: Mostafa Moradian - - Add support for hashes, local packages and private repositories ([`addc21a`](https://github.com/CycloneDX/cyclonedx-python/commit/addc21ae832f642298f665d426c576822038fb2f)) @@ -1076,26 +742,18 @@ Signed-off-by: Mostafa Moradian ([#313](https://github.com/CycloneDX/cyclonedx-python/pull/313), [`f317353`](https://github.com/CycloneDX/cyclonedx-python/commit/f317353bd7a24dbf4fb31642d766d94da609eb42)) -Signed-off-by: Paul Horton - - Bump to latest `cyclonedx-python-lib` ([`5902fbf`](https://github.com/CycloneDX/cyclonedx-python/commit/5902fbf9dc5becdf7d92180242488e56b998d9de)) BREAKING CHANGE: Default Schema Version has been replaced by notion of LATEST supported Schema Version -Signed-off-by: Paul Horton - - Update to latest RC of `cyclonedx-python-lib` ([`6c8b517`](https://github.com/CycloneDX/cyclonedx-python/commit/6c8b5173f07329b2086312d27af5d111f9b2c7ed)) -Signed-off-by: Paul Horton - - Update to latest RC of `cyclonedx-python-lib` ([`bc8ee6b`](https://github.com/CycloneDX/cyclonedx-python/commit/bc8ee6bb115dd5214358430f64bd0581de5cb2e4)) -Signed-off-by: Paul Horton - ### Breaking Changes - Default Schema Version has been replaced by notion of LATEST supported Schema Version @@ -1109,10 +767,6 @@ Signed-off-by: Paul Horton ([#309](https://github.com/CycloneDX/cyclonedx-python/pull/309), [`5d8b1e1`](https://github.com/CycloneDX/cyclonedx-python/commit/5d8b1e159c2ced59e810b9e9564e19a29fe263d0)) -fixes #308 - -Signed-off-by: Jan Kowalleck - ## v2.0.2 (2022-02-03) @@ -1122,19 +776,6 @@ Signed-off-by: Jan Kowalleck ([#307](https://github.com/CycloneDX/cyclonedx-python/pull/307), [`23f31a0`](https://github.com/CycloneDX/cyclonedx-python/commit/23f31a03a4fbf888f396b88a9413c054358b2a3a)) -* Adjust cli when reading from stdin. - -Bind reading from stdin on specifying `-i -`. This is part of - [`argparse.FileType`](https://docs.python.org/3/library/argparse.html?highlight=pseudo-argument#argparse.FileType). - -Local tests under the following conditions: - -* implicit reading `poetry.lock` using args `-p -o -` * explicit reading `poetry.lock` using args - `-p -i poetry.lock -o -` * explicit reading `poetry.lock` file after renaming using `cat p.lock | - python -m cyclonedx_py.client -p -i - -o -` - -Signed-off-by: Theodor van Nahl - ## v2.0.1 (2022-01-24) @@ -1143,8 +784,6 @@ Signed-off-by: Theodor van Nahl - Bump dependencies to get latest `cyclonedx-python-lib` ([`87c3fe7`](https://github.com/CycloneDX/cyclonedx-python/commit/87c3fe7747cd8abd55ad5699bfc87ad9877c8132)) -Signed-off-by: Paul Horton - ## v2.0.0 (2022-01-13) @@ -1156,26 +795,12 @@ Signed-off-by: Paul Horton - Corrected import ([#294](https://github.com/CycloneDX/cyclonedx-python/pull/294), [`7bb6d32`](https://github.com/CycloneDX/cyclonedx-python/commit/7bb6d328adec59cdd4c3ab80eb5f39568ca3bc9c)) -Signed-off-by: Paul Horton - -Signed-off-by: Paul Horton - ### Documentation - Readme maintenance - shields & links ([#266](https://github.com/CycloneDX/cyclonedx-python/pull/266), [`a34046f`](https://github.com/CycloneDX/cyclonedx-python/commit/a34046f9b4c96d013fdf2dbdac5e930aa9204e15)) -* README: added typehint to the vode blocks - -Signed-off-by: Jan Kowalleck - -* README: fixed fenced-code and lists - -* README: shields got modernixed and linked - -* README: harmonized links - ### Features - Add support for CycloneDX 1.4 specification @@ -1186,7 +811,7 @@ Signed-off-by: Jan Kowalleck ([#294](https://github.com/CycloneDX/cyclonedx-python/pull/294), [`7bb6d32`](https://github.com/CycloneDX/cyclonedx-python/commit/7bb6d328adec59cdd4c3ab80eb5f39568ca3bc9c)) -- Breaking CHANGE - relocated concrete parsers (#299) +- Breaking CHANGE - relocated concrete parsers ([#294](https://github.com/CycloneDX/cyclonedx-python/pull/294), [`7bb6d32`](https://github.com/CycloneDX/cyclonedx-python/commit/7bb6d328adec59cdd4c3ab80eb5f39568ca3bc9c)) @@ -1206,14 +831,10 @@ Signed-off-by: Jan Kowalleck python-semantic-release ([`6c65c11`](https://github.com/CycloneDX/cyclonedx-python/commit/6c65c11d439169417e2ef7e94cacb1ec216eb11c)) -Signed-off-by: Paul Horton - - Revert to previous process for building Docker image as PyPi index update is too slow to pull straight away after publish ([`67bb738`](https://github.com/CycloneDX/cyclonedx-python/commit/67bb738246bfe0ca3acd409d8c5a27fd7a305347)) -Signed-off-by: Paul Horton - ## v1.5.1 (2021-11-23) @@ -1227,8 +848,6 @@ Signed-off-by: Paul Horton ([#263](https://github.com/CycloneDX/cyclonedx-python/pull/263), [`478360d`](https://github.com/CycloneDX/cyclonedx-python/commit/478360db0de269159ab6e3777cd291b87e2e1174)) -Signed-off-by: Paul Horton - ## v1.5.0 (2021-11-17) @@ -1237,12 +856,6 @@ Signed-off-by: Paul Horton - Support for Python 3.10 ([#261](https://github.com/CycloneDX/cyclonedx-python/pull/261), [`f4f9ffe`](https://github.com/CycloneDX/cyclonedx-python/commit/f4f9ffe4b1e2d4fffe4ad0b274a067a20c9c372f)) -* enabled py3.10 tests in CI - -Signed-off-by: Jan Kowalleck - -* add py-version classifiers - ## v1.4.3 (2021-11-16) @@ -1251,8 +864,6 @@ Signed-off-by: Jan Kowalleck - Add static code analysis, better typing and bump cyclonedx-python-lib to 0.11 ([`d5d9f56`](https://github.com/CycloneDX/cyclonedx-python/commit/d5d9f563f2ceb1bdfb2f9cb39ff07af9f0deca26)) -Signed-off-by: Paul Horton - ## v1.4.2 (2021-11-12) @@ -1264,8 +875,6 @@ Signed-off-by: Paul Horton (requirements.txt) ([`93f9e59`](https://github.com/CycloneDX/cyclonedx-python/commit/93f9e5985f0d0cecd865b66119276d33b2175fe9)) -Signed-off-by: Paul Horton - ## v1.4.1 (2021-10-26) @@ -1283,20 +892,14 @@ Signed-off-by: Paul Horton - Encoding issues on Windows (bump cyclonedx-python-lib to ^0.10.1) ([`fe5df36`](https://github.com/CycloneDX/cyclonedx-python/commit/fe5df3607157b2f24854ef1f69457f163d79a093)) -Signed-off-by: Paul Horton - - Encoding issues on Windows (bump cyclonedx-python-lib to ^0.10.2) ([`da6772b`](https://github.com/CycloneDX/cyclonedx-python/commit/da6772be89ad923b1d8df6dd3b2a89c6e5805571)) -Signed-off-by: Paul Horton - ### Features - Add conda support (bump cyclonedx-python-lib to ^0.10.0) ([`cb24275`](https://github.com/CycloneDX/cyclonedx-python/commit/cb24275f3e8716244de2b4ef0a046b879fa88ba5)) -Signed-off-by: Paul Horton - ## v1.3.1 (2021-10-19) @@ -1305,8 +908,6 @@ Signed-off-by: Paul Horton - Bump to cyclonedx-python-lib to resolve issue #244 ([`ebea3ef`](https://github.com/CycloneDX/cyclonedx-python/commit/ebea3ef47e917479a7474489bb274b5fa9704375)) -Signed-off-by: Paul Horton - ## v1.3.0 (2021-10-19) @@ -1315,8 +916,6 @@ Signed-off-by: Paul Horton - Add license information in CycloneDX BOM when using Environment as the source ([`5d1f9a7`](https://github.com/CycloneDX/cyclonedx-python/commit/5d1f9a76cfa2bc1461a3dcf4c140d81876a37c40)) -Signed-off-by: Paul Horton - ## v1.2.0 (2021-10-12) @@ -1325,12 +924,6 @@ Signed-off-by: Paul Horton - Update to latest stable cyclonedx-python-lib ([`6145bd5`](https://github.com/CycloneDX/cyclonedx-python/commit/6145bd52c450e66f42367e61e086d2a9d9818b47)) -- Enables PipEnv support natively - Vast improvements to quality and information contained in the - genereated CycloneDX BOM documents - see `cyclonedx-python-lib` for details - Various old files - removes - -Signed-off-by: Paul Horton - ## v1.1.0 (2021-10-04) @@ -1339,8 +932,6 @@ Signed-off-by: Paul Horton - Add support for generating SBOM from poetry.lock files ([`bb4ac0f`](https://github.com/CycloneDX/cyclonedx-python/commit/bb4ac0f29b46db59b192191f65dfa40757268188)) -Signed-off-by: Paul Horton - ## v1.0.5 (2021-09-27) @@ -1350,8 +941,6 @@ Signed-off-by: Paul Horton they cannot be included in the resulting CycloneDX BOM ([`e637e56`](https://github.com/CycloneDX/cyclonedx-python/commit/e637e56cada6d841dae193c106647b0b03a4e776)) -Signed-off-by: Paul Horton - ## v1.0.4 (2021-09-27) @@ -1360,8 +949,6 @@ Signed-off-by: Paul Horton - Error message when `requirements.txt` file is non-existent updated ([`3bbc071`](https://github.com/CycloneDX/cyclonedx-python/commit/3bbc071a1ff26599bd9eb3220de38bd9c58fa294)) -Signed-off-by: Paul Horton - ## v1.0.3 (2021-09-27) @@ -1371,20 +958,14 @@ Signed-off-by: Paul Horton is supplied ([`bb7e30a`](https://github.com/CycloneDX/cyclonedx-python/commit/bb7e30a869300b1e63a00d7db4bcc7f35d68552d)) -Signed-off-by: Paul Horton - ### Build System - Added flake8 as dev dependency ([`a8fed84`](https://github.com/CycloneDX/cyclonedx-python/commit/a8fed843986d60da49649e6d9393ef77be2e80fa)) -Signed-off-by: Paul Horton - - Updated all dependencies ([`616b949`](https://github.com/CycloneDX/cyclonedx-python/commit/616b949e0d3200cd7c3a3e5131213e2e9bb51cfe)) -Signed-off-by: Paul Horton - ## v1.0.2 (2021-09-13) @@ -1401,8 +982,6 @@ Signed-off-by: Paul Horton - **ci**: Corrected main to master branch. ([`7162cd9`](https://github.com/CycloneDX/cyclonedx-python/commit/7162cd9385729dafbdc15dbb55e9ac5adf3906cf)) -Signed-off-by: Paul Horton - ## v0.4.3 (2020-12-06) @@ -1423,3 +1002,5 @@ Signed-off-by: Paul Horton ## v0.3.3 (2019-11-13) + +- Initial Release