Skip to content

Releases: CycloneDX/cyclonedx-python-lib

v7.0.0

09 Apr 15:25
Compare
Choose a tag to compare

v7.0.0 (2024-04-09)

Breaking

  • feat!: Support for CycloneDX v1.6

  • added draft v1.6 schemas and boilerplate for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • re-generated test snapshots for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • note bom.metadata.manufacture as deprecated

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • work on bom.metadata for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • Deprecated .component.author. Added .component.authors and .component.manufacturer

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • work to add .component.omniborid - but tests deserialisation tests fail due to schema differences (.component.author not in 1.6)

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • work to get deserialization tests passing

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • chore(deps): bump py-serializable to >=1.0.3 to resolve issues with deserialization to XML

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • imports tidied

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • properly added .component.swhid

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • add .component.cryptoProperties - with test failures for SchemaVersion < 1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • typing and bandit ignores

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • test filtering

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • additional tests to increase code coverage

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • corrected CryptoMode enum

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • Added address to organizationalEntity

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • Added address to organizationalEntity

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • raise UserWarning in .component.version has length > 1024

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • coding standards and typing

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • add acknowledgement to LicenseExpression (#582)

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • more proper way to filter test cases

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • update schema to published versions

Signed-off-by: Paul Horton <paul.horton@owasp.org>

  • fetch schema 1.6 JSON

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • fetch test data for CDX 1.6

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • reformat

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • reformat

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • refactor

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • style

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • refactor

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>

  • docs

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>


Signed-off-by: Paul Horton <paul.horton@owasp.org>
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
Co-authored-by: Jan Kowalleck <jan.kowalleck@gmail.com> (8bbdf46)

Chore

  • chore(deps-dev): update autopep8 requirement from 2.0.4 to 2.1.0 (#573)

Updates the requirements on autopep8 to permit the latest version.


updated-dependencies:

  • dependency-name: autopep8
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (35749c6)

  • chore(deps-dev): update tox requirement from 4.14.1 to 4.14.2 (#574)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (d60f457)


What's Changed

  • chore(deps-dev): update tox requirement from 4.14.1 to 4.14.2 by @dependabot in #574
  • chore(deps-dev): update autopep8 requirement from 2.0.4 to 2.1.0 by @dependabot in #573
  • feat: Support for CycloneDX v1.6 by @madpah in #576

Full Changelog: v6.4.4...v7.0.0

v7.0.0-alpha.1

09 Apr 15:18
Compare
Choose a tag to compare
v7.0.0-alpha.1 Pre-release
Pre-release

v7.0.0-alpha.1 (2024-04-09)

Chore

  • chore(deps): bump py-serializable to >=1.0.3 to resolve issues with deserialization to XML

Signed-off-by: Paul Horton <paul.horton@owasp.org> (0398051)

  • chore(deps-dev): update autopep8 requirement from 2.0.4 to 2.1.0 (#573)

Updates the requirements on autopep8 to permit the latest version.


updated-dependencies:

  • dependency-name: autopep8
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (35749c6)

  • chore(deps-dev): update tox requirement from 4.14.1 to 4.14.2 (#574)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (d60f457)

Unknown

  • docs

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (42c6f25)

  • refactor

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b4a133a)

  • style

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (0843234)

  • refactor

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (62c1d9a)

  • reformat

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (e10ffee)

  • reformat

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (e0184cc)

  • fetch test data for CDX 1.6

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (618a292)

  • fetch schema 1.6 JSON

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (289e81a)

  • update schema to published versions

Signed-off-by: Paul Horton <paul.horton@owasp.org> (0449de2)

  • more proper way to filter test cases

Signed-off-by: Paul Horton <paul.horton@owasp.org> (0a2ca2c)

  • add acknowledgement to LicenseExpression (#582)

Signed-off-by: Paul Horton <paul.horton@owasp.org> (ddd7847)

  • coding standards and typing

Signed-off-by: Paul Horton <paul.horton@owasp.org> (5c97c2d)

  • raise UserWarning in .component.version has length > 1024

Signed-off-by: Paul Horton <paul.horton@owasp.org> (abebd4f)

  • Added address to organizationalEntity

Signed-off-by: Paul Horton <paul.horton@owasp.org> (1327558)

  • Added address to organizationalEntity

Signed-off-by: Paul Horton <paul.horton@owasp.org> (318d723)

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org> (d294620)

  • corrected CryptoMode enum

Signed-off-by: Paul Horton <paul.horton@owasp.org> (71e4bc6)

  • additional tests to increase code coverage

Signed-off-by: Paul Horton <paul.horton@owasp.org> (f504daa)

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org> (a3e09d1)

  • test filtering

Signed-off-by: Paul Horton <paul.horton@owasp.org> (14f699f)

  • coding standards

Signed-off-by: Paul Horton <paul.horton@owasp.org> (b23df1f)

  • typing and bandit ignores

Signed-off-by: Paul Horton <paul.horton@owasp.org> (96a6dc9)

  • add .component.cryptoProperties - with test failures for SchemaVersion < 1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org> (1e71dc3)

  • properly added .component.swhid

Signed-off-by: Paul Horton <paul.horton@owasp.org> (ee80ea3)

  • imports tidied

Signed-off-by: Paul Horton <paul.horton@owasp.org> (875a338)

  • work to get deserialization tests passing

Signed-off-by: Paul Horton <paul.horton@owasp.org> (fdece59)

  • work to add .component.omniborid - but tests deserialisation tests fail due to schema differences (.component.author not in 1.6)

Signed-off-by: Paul Horton <paul.horton@owasp.org> (af7b92b)

  • Deprecated .component.author. Added .component.authors and .component.manufacturer

Signed-off-by: Paul Horton <paul.horton@owasp.org> (6227c08)

  • work on bom.metadata for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org> (6192ed8)

  • note bom.metadata.manufacture as deprecated

Signed-off-by: Paul Horton <paul.horton@owasp.org> (240dfaa)

  • re-generated test snapshots for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org> (8132c3e)

  • added draft v1.6 schemas and boilerplate for v1.6

Signed-off-by: Paul Horton <paul.horton@owasp.org> (41ca1e0)

v6.4.4

18 Mar 18:13
Compare
Choose a tag to compare

v6.4.4 (2024-03-18)

Chore

  • chore(deps-dev): update coverage requirement from 7.4.3 to 7.4.4 (#570)

Updates the requirements on coverage to permit the latest version.


updated-dependencies:

  • dependency-name: coverage
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (3a2e427)

  • chore(deps): bump python-semantic-release/python-semantic-release (#564)

Bumps python-semantic-release/python-semantic-release from 8.5.1 to 9.1.1.


updated-dependencies:

  • dependency-name: python-semantic-release/python-semantic-release
    dependency-type: direct:production
    update-type: version-update:semver-major
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (d20a590)

  • chore(deps-dev): update tox requirement from 4.13.0 to 4.14.1 (#567)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (2dcc60e)

  • chore(deps-dev): update bandit requirement from 1.7.7 to 1.7.8 (#566)

Updates the requirements on bandit to permit the latest version.


updated-dependencies:

  • dependency-name: bandit
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (eb1a252)

  • chore(deps-dev): update mypy requirement from 1.8.0 to 1.9.0 (#565)

Updates the requirements on mypy to permit the latest version.


updated-dependencies:

  • dependency-name: mypy
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (3ce0f3a)

Fix

  • fix: wrong extra name for xml validation (#571)

Signed-off-by: Christoph Reiter <reiter.christoph@gmail.com> (10e38e2)


What's Changed

  • chore(deps-dev): update mypy requirement from 1.8.0 to 1.9.0 by @dependabot in #565
  • chore(deps-dev): update bandit requirement from 1.7.7 to 1.7.8 by @dependabot in #566
  • chore(deps-dev): update tox requirement from 4.13.0 to 4.14.1 by @dependabot in #567
  • chore(deps): bump python-semantic-release/python-semantic-release from 8.5.1 to 9.1.1 by @dependabot in #564
  • chore(deps-dev): update coverage requirement from 7.4.3 to 7.4.4 by @dependabot in #570
  • fix: wrong extra name for xml validation by @lazka in #571

New Contributors

Full Changelog: v6.4.3...v6.4.4

v6.4.3

04 Mar 12:11
Compare
Choose a tag to compare

v6.4.3 (2024-03-04)

Chore

  • chore(deps-dev): update ddt requirement from 1.7.1 to 1.7.2 (#563)

Updates the requirements on ddt to permit the latest version.


updated-dependencies:

  • dependency-name: ddt
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (53cb8a9)

Fix

  • fix: serialization of model.component.Diff (#557)

Fixes #556


Signed-off-by: rcross-lc <151086351+rcross-lc@users.noreply.github.com>
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
Co-authored-by: Jan Kowalleck <jan.kowalleck@gmail.com> (22fa873)


What's Changed

  • chore(deps-dev): update ddt requirement from 1.7.1 to 1.7.2 by @dependabot in #563
  • fix: serialization of model.component.Diff by @rcross-lc in #557

New Contributors

Full Changelog: v6.4.2...v6.4.3

v6.4.2

01 Mar 08:10
Compare
Choose a tag to compare

v6.4.2 (2024-03-01)

Maintenance release.

Build

  • build: use poetry v1.8.1 (#560)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (6f81dfa)

Chore

  • chore(deps-dev): update coverage requirement from 7.4.1 to 7.4.3 (#558)

Updates the requirements on coverage to permit the latest version.


updated-dependencies:

  • dependency-name: coverage
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (2b7f261)

  • chore(deps): bump Gr1N/setup-poetry from 8 to 9 (#555)

Bumps Gr1N/setup-poetry from 8 to 9.


updated-dependencies:

  • dependency-name: Gr1N/setup-poetry
    dependency-type: direct:production
    update-type: version-update:semver-major
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (178ce32)

  • chore(deps-dev): update tox requirement from 4.12.1 to 4.13.0 (#553)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (77fb2ec)

  • chore(deps-dev): update flake8-quotes requirement from 3.3.2 to 3.4.0 (#552)

Updates the requirements on flake8-quotes to permit the latest version.


updated-dependencies:

  • dependency-name: flake8-quotes
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cd8e67c)

  • chore(deps-dev): update flake8-bugbear requirement (#549)

Updates the requirements on flake8-bugbear to permit the latest version.


updated-dependencies:

  • dependency-name: flake8-bugbear
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (153d83e)

Documentation

  • docs: update architecture description and examples (#550)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (a19fd28)

  • docs: exclude internal docs from rendering (#545)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (7e55dfe)

Unknown

  • docs

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (63cff7e)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b0e5b43)

v6.4.1

30 Jan 10:38
Compare
Choose a tag to compare

v6.4.1 (2024-01-30)

Chore

  • chore(deps-dev): update bandit requirement from 1.7.6 to 1.7.7 (#542)

Updates the requirements on bandit to permit the latest version.


updated-dependencies:

  • dependency-name: bandit
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (0d159c2)

  • chore(deps-dev): update coverage requirement from 7.4.0 to 7.4.1 (#541)

Updates the requirements on coverage to permit the latest version.


updated-dependencies:

  • dependency-name: coverage
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (fa82a24)

Documentation

  • docs: ship docs with sdist build (#544)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (52ef01c)

  • docs: refactor example

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (c1776b7)

Fix

  • fix: model.BomRef no longer equal to unset peers (#543)

    fixes #539


Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (1fd7fee)

Unknown

  • tests: fetched schema 1.5 test data from spec (#536)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (394cc87)


What's Changed

Full Changelog: v6.4.0...v6.4.1

v6.4.0

22 Jan 12:35
Compare
Choose a tag to compare

v6.4.0 (2024-01-22)

Chore

  • chore(deps-dev): update tox requirement from 4.12.0 to 4.12.1 (#533)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (74094d7)

  • chore(deps-dev): update flake8-bugbear requirement (#534)

Updates the requirements on flake8-bugbear to permit the latest version.


updated-dependencies:

  • dependency-name: flake8-bugbear
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (6e6f374)

  • chore: doc flake8 config

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (bd4c078)

  • chore(deps-dev): update tox requirement from 4.11.4 to 4.12.0 (#530)

Updates the requirements on tox to permit the latest version.


updated-dependencies:

  • dependency-name: tox
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (130918a)

Documentation

  • docs: add OpenSSF Best Practices shield (#532)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (59c4381)

Feature

  • feat: support py-serializable v1.0 (#531)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (e1e7277)

v6.3.0

06 Jan 23:14
Compare
Choose a tag to compare

v6.3.0 (2024-01-06)

Chore

  • chore(deps-dev): update flake8 requirement from 6.1.0 to 7.0.0 (#528)

Updates the requirements on flake8 to permit the latest version.


updated-dependencies:

  • dependency-name: flake8
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (6b7ed78)

  • chore(deps-dev): update ddt requirement from 1.7.0 to 1.7.1 (#527)

Updates the requirements on ddt to permit the latest version.


updated-dependencies:

  • dependency-name: ddt
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (9a58e7e)

Documentation

  • docs: add Documentation url to project meta

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (1080b73)

  • docs: add Documentation url to project meta

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (c4288b3)

Feature

  • feat: enable dependency py-serializable 0.17 (#529)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (9f24220)


What's Changed

  • chore(deps-dev): update ddt requirement from 1.7.0 to 1.7.1 by @dependabot in #527
  • chore(deps-dev): update flake8 requirement from 6.1.0 to 7.0.0 by @dependabot in #528
  • feat: enable dependency py-serializable 0.17 by @jkowalleck in #529

Full Changelog: v6.2.0...v6.3.0

v6.2.0

31 Dec 11:37
Compare
Choose a tag to compare

v6.2.0 (2023-12-31)

Build

  • build: allow additional major-version RC branch patterns

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (f8af156)

Chore

  • chore(deps-dev): update coverage requirement from 7.3.3 to 7.4.0 (#524)

Updates the requirements on coverage to permit the latest version.


updated-dependencies:

  • dependency-name: coverage
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (9bcc223)

  • chore(deps-dev): update mypy requirement from 1.7.1 to 1.8.0 (#521)

Updates the requirements on mypy to permit the latest version.


updated-dependencies:

  • dependency-name: mypy
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (720046e)

Documentation

  • docs: fix typo

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (2563996)

  • docs: update intro and description

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (f0bd05d)

  • docs: buld docs on ubuntu22.04 python311

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b3e9ab7)

Feature

  • feat: allow lxml requirement in range of >=4,<6 (#523)

Updates the requirements on lxml to permit the latest version.


updated-dependencies:

  • dependency-name: lxml
    dependency-type: direct:production
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (7d12b9a)

Unknown

  • docs

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (7dcd166)


What's Changed

  • chore(deps-dev): update mypy requirement from 1.7.1 to 1.8.0 by @dependabot in #521
  • chore(deps-dev): update coverage requirement from 7.3.3 to 7.4.0 by @dependabot in #524
  • chore(deps): update lxml requirement from ^4 to >=4,<6 by @dependabot in #523

Full Changelog: v6.1.0...v6.2.0

v6.1.0

22 Dec 01:47
Compare
Choose a tag to compare

v6.1.0 (2023-12-22)

Chore

  • chore: update maintainers

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (87c72d7)

  • chore(deps): bump python-semantic-release/python-semantic-release (#515)

Bumps python-semantic-release/python-semantic-release from 8.5.0 to 8.5.1.


updated-dependencies:

  • dependency-name: python-semantic-release/python-semantic-release
    dependency-type: direct:production
    update-type: version-update:semver-patch
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (0f56ec4)

  • chore(deps-dev): update coverage requirement from 7.3.2 to 7.3.3 (#517)

Updates the requirements on coverage to permit the latest version.


updated-dependencies:

  • dependency-name: coverage
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (a57e2f6)

  • chore(deps-dev): update isort requirement from 5.13.0 to 5.13.2 (#516)

Updates the requirements on isort to permit the latest version.


updated-dependencies:

  • dependency-name: isort
    dependency-type: direct:development
    ...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (84874a3)

Feature

  • feat: add function to map python hashlib algorithms to CycloneDX (#519)

new API: model.HashType.from_hashlib_alg()

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (81f8cf5)


What's Changed

  • chore(deps-dev): update isort requirement from 5.13.0 to 5.13.2 by @dependabot in #516
  • chore(deps-dev): update coverage requirement from 7.3.2 to 7.3.3 by @dependabot in #517
  • chore(deps): bump python-semantic-release/python-semantic-release from 8.5.0 to 8.5.1 by @dependabot in #515
  • feat: add function to map python hashlib algorithms to CycloneDX by @jkowalleck in #519

Full Changelog: v6.0.0...v6.1.0