Releases: CycloneDX/cyclonedx-python
v4.3.3-alpha.1
v4.3.3-alpha.1 (2024-04-21)
Unknown
- Update release.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (f1c6136)
v4.3.2-alpha.1
v4.3.2-alpha.1 (2024-04-21)
Unknown
- Update release.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (44608d0)
- Update docker.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (3c9428f)
- Update release.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (fba87d9)
- Update release.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (43a3dad)
v4.3.1-alpha.1
v4.3.1-alpha.1 (2024-04-20)
Chore
- chore: semantic-release git commit/sign valid email address
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (692b8ea)
Ci
- ci: release to GitHub registry (#721)
Feature
- feat: improve declared licenses detection (#722)
- Add declared licenses from License Troves if not mapped to SPDX
license ID - CycloneDX 1.6 mark licenses as "declared"
fixes #718
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
Signed-off-by: jxdv <virgoj@protonmail.com> (d47640b)
Unknown
- Update release.yml
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (bfce1d1)
- prep ghcr release
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (6644556)
- docker build label org.opencontainers.image.source
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (3d6a7ce)
- docker build label org.opencontainers.image.source
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (aefd5a6)
- container image label 'org.opencontainers.image.source'
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (f8ff29e)
-
Merge branch 'main' into ghcr-publish (
46f7ada) -
Merge branch 'main' into ghcr-publish (
1cb7a5f) -
docs
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
Signed-off-by: jxdv <virgoj@protonmail.com> (b7975ea)
- tidy and docs
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
Signed-off-by: jxdv <virgoj@protonmail.com> (b8b9409)
- rename job and description
Signed-off-by: jxdv <virgoj@protonmail.com> (da572de)
- update release-DockerHub job
Signed-off-by: jxdv <virgoj@protonmail.com> (25d2449)
- remove redundant job & fix typo
Signed-off-by: jxdv <virgoj@protonmail.com> (2e9d2fc)
- add release-GHCR job
Signed-off-by: jxdv <virgoj@protonmail.com> (9508cd0)
v4.3.0
v4.3.0 (2024-04-20)
Feature
- feat: improve declared licenses detection (#722)
- Add declared licenses from License Troves if not mapped to SPDX
license ID - CycloneDX 1.6 mark licenses as "declared"
fixes #718
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b0ae453)
v4.2.0
v4.2.0 (2024-04-18)
Feature
- feat: support CycloneDX 1.6 output (#720)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (639b35a)
What's Changed
- feat: support CycloneDX 1.6 output by @jkowalleck in #720
Full Changelog: v4.1.6...v4.2.0
Contributors
Assets 4
v4.1.6
v4.1.6 (2024-04-15)
Fix
- fix: more resilent PEP610 parsing (#716)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (93f0184)
What's Changed
- fix: more resilent PEP610 parsing by @jkowalleck in #716
Full Changelog: v4.1.5...v4.1.6
Contributors
Assets 4
v4.1.5
v4.1.5 (2024-04-11)
Fix
- fix: docs for default of CLI switch
--mc-type(#710)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (a218b40)
What's Changed
- fix: docs for default of CLI switch
--mc-typeby @jkowalleck in #710
Full Changelog: v4.1.4...v4.1.5
Contributors
Assets 4
v4.1.4
v4.1.4 (2024-03-28)
Chore
- chore(deps-dev): Update autopep8 requirement from 2.0.4 to 2.1.0 (#699)
Updates the requirements on autopep8 to permit the latest version.
updated-dependencies:
- dependency-name: autopep8
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (59f07c1)
- chore(deps-dev): Update flake8-logging requirement from 1.5.0 to 1.6.0 (#701)
Updates the requirements on flake8-logging to permit the latest version.
updated-dependencies:
- dependency-name: flake8-logging
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (dfc63b6)
- chore(deps-dev): Update tox requirement from 4.14.1 to 4.14.2 (#700)
Updates the requirements on tox to permit the latest version.
updated-dependencies:
- dependency-name: tox
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (7ae2145)
- chore(deps): Update packaging requirement || ^24 (#697)
updated-dependencies:
- dependency-name: packaging
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (bd3f232)
- chore(deps-dev): Update coverage requirement from 7.4.3 to 7.4.4 (#696)
Updates the requirements on coverage to permit the latest version.
updated-dependencies:
- dependency-name: coverage
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (8181ce9)
Fix
- fix: poetry analyzer crashed with certain optional package's version constraints (#703)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (8ade6e1)
What's Changed
- chore(deps-dev): Update coverage requirement from 7.4.3 to 7.4.4 by @dependabot in #696
- chore(deps): Update packaging requirement from ^22||^23 to ^22||^23 || ^24 by @dependabot in #697
- chore(deps-dev): Update tox requirement from 4.14.1 to 4.14.2 by @dependabot in #700
- chore(deps-dev): Update flake8-logging requirement from 1.5.0 to 1.6.0 by @dependabot in #701
- chore(deps-dev): Update autopep8 requirement from 2.0.4 to 2.1.0 by @dependabot in #699
- fix: poetry analyzer crashed with certain optional package's version constraints by @jkowalleck in #703
Full Changelog: v4.1.3...v4.1.4
Contributors
Assets 4
v4.1.3
v4.1.3 (2024-03-15)
Chore
- chore(deps): Bump python-semantic-release/python-semantic-release (#683)
Bumps python-semantic-release/python-semantic-release from 8.5.1 to 9.1.1.
updated-dependencies:
- dependency-name: python-semantic-release/python-semantic-release
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (f27170e)
- chore(deps): Bump actions/setup-python from 4 to 5 (#673)
Bumps actions/setup-python from 4 to 5.
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (e661fb2)
- chore(deps-dev): Update bandit requirement from 1.7.7 to 1.7.8 (#688)
Updates the requirements on bandit to permit the latest version.
updated-dependencies:
- dependency-name: bandit
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (40f16e0)
- chore(deps-dev): Update tox requirement from 4.13.0 to 4.14.1 (#687)
Updates the requirements on tox to permit the latest version.
updated-dependencies:
- dependency-name: tox
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (16efe0b)
- chore(deps-dev): Update mypy requirement from 1.8.0 to 1.9.0 (#686)
Updates the requirements on mypy to permit the latest version.
updated-dependencies:
- dependency-name: mypy
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (de3be95)
- chore(deps-dev): Update tox requirement from 4.11.4 to 4.13.0 (#685)
Updates the requirements on tox to permit the latest version.
updated-dependencies:
- dependency-name: tox
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (33d2b9b)
- chore(deps-dev): Update ddt requirement from 1.7.1 to 1.7.2 (#684)
Updates the requirements on ddt to permit the latest version.
updated-dependencies:
- dependency-name: ddt
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (743324a)
Ci
- ci: default to python 3.12 (#693)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (dc81c35)
Documentation
- docs: imprve
environmentuse cases and examples (#690)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (0d38c7b)
Fix
- fix: declared license texts as such, not as license name (#694)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (ec7ab3e)
What's Changed
- chore(deps-dev): Update ddt requirement from 1.7.1 to 1.7.2 by @dependabot in #684
- chore(deps-dev): Update tox requirement from 4.11.4 to 4.13.0 by @dependabot in #685
- chore(deps-dev): Update mypy requirement from 1.8.0 to 1.9.0 by @dependabot in #686
- chore(deps-dev): Update tox requirement from 4.13.0 to 4.14.1 by @dependabot in #687
- chore(deps-dev): Update bandit requirement from 1.7.7 to 1.7.8 by @dependabot in #688
- docs: imprve
environmentuse cases and examples by @jkowalleck in #690 - chore(deps): Bump actions/setup-python from 4 to 5 by @dependabot in #673
- ci: default to python 3.12 by @jkowalleck in #693
- chore(deps): Bump python-semantic-release/python-semantic-release from 8.5.1 to 9.1.1 by @dependabot in #683
- fix: declared license texts as such, not as license name by @jkowalleck in #694
Full Changelog: v4.1.2...v4.1.3
Contributors
Assets 4
v4.1.2
v4.1.2 (2024-03-01)
Mainenance release.
Build
- build: use poetry v1.8.1 (#682)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (dba63b8)
Chore
- chore(deps-dev): Update coverage requirement from 7.4.1 to 7.4.3 (#680)
Updates the requirements on coverage to permit the latest version.
updated-dependencies:
- dependency-name: coverage
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (dadc9b5)
- chore(deps): Bump Gr1N/setup-poetry from 8 to 9 (#681)
Bumps Gr1N/setup-poetry from 8 to 9.
updated-dependencies:
- dependency-name: Gr1N/setup-poetry
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (5ee8bb2)
- chore(deps-dev): Update flake8-quotes requirement from 3.3.2 to 3.4.0 (#679)
Updates the requirements on flake8-quotes to permit the latest version.
updated-dependencies:
- dependency-name: flake8-quotes
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (4da9c9e)
- chore(deps-dev): Update flake8-bugbear requirement (#677)
Updates the requirements on flake8-bugbear to permit the latest version.
updated-dependencies:
- dependency-name: flake8-bugbear
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (14a8ec0)
What's Changed
- chore(deps-dev): Update flake8-bugbear requirement from 24.1.17 to 24.2.6 by @dependabot in #677
- chore(deps-dev): Update flake8-quotes requirement from 3.3.2 to 3.4.0 by @dependabot in #679
- chore(deps): Bump Gr1N/setup-poetry from 8 to 9 by @dependabot in #681
- chore(deps-dev): Update coverage requirement from 7.4.1 to 7.4.3 by @dependabot in #680
- build: use poetry v1.8.1 by @jkowalleck in #682
Full Changelog: v4.1.1...v4.1.2