LPVS v2.0.1

Features

• Display link to the hub in pull request message when available (#616) #616 (Oleg Kopysov)

Bug Fixes

• Change query to database to avoid the runtime error (#618) #618 (Oleg Kopysov)
• Incorrect conversion to string when equals to null (#619) #619 (Oleg Kopysov)
• Improve report structure, fix template issue (#633) #633 (Oleg Kopysov)
• Take SPDX ID from GitHub API when searching for the license (#634) #634 (Oleg Kopysov)
• Skip asking GH token for local scans (#635) #635 (Oleg Kopysov)

Documentation

• Update FAQ page with generation Python requirements guide (#620) #620 (Tetiana Naumenko)

Code Refactoring

• improve MCD (Module Circular Dependency) metric of the code (#615) #615 (Oleg Kopysov)
• Add queue ID to the PR diffs filepath (#617) #617 (Oleg Kopysov)

Builds

• deps: bump rollup from 2.79.1 to 2.79.2 in /frontend in the npm_and_yarn group across 1 directory (#621) #621 (dependabot[bot])
• deps: bump actions/checkout from 4.1.7 to 4.2.0 in /.github/workflows (#628) #628 (dependabot[bot])
• deps: bump github/codeql-action from 3.26.6 to 3.26.10 in /.github/workflows (#627) #627 (dependabot[bot])
• deps: bump actions/setup-java from 4.2.1 to 4.4.0 in /.github/workflows (#625) #625 (dependabot[bot])
• deps: bump codecov/codecov-action from 4.5.0 to 4.6.0 in /.github/workflows (#623) #623 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.9.0 to 2.10.1 in /.github/workflows (#626) #626 (dependabot[bot])
• deps: bump org.kohsuke:github-api from 1.324 to 1.326 (#631) #631 (dependabot[bot])
• deps: bump docker/build-push-action from 6.7.0 to 6.9.0 in /.github/workflows (#622) #622 (dependabot[bot])
• deps: bump org.springframework.boot:spring-boot-starter-parent from 3.3.1 to 3.3.4 (#632) #632 (dependabot[bot])
• deps: bump axel-op/googlejavaformat-action from b8a3003f6bb1d4b521a2105f35a16131d49a8709 to 0dc4ef525e7ed73d8dff50b1b062a4d441d014b5 in /.github/workflows (#624) #624 (dependabot[bot])

Chores

• Change version to 2.0.1 (#636) #636 (Oleg Kopysov)

LPVS v2.0.0

Features

• Show LPVS logo at the app start (#559) #559 (Oleg Kopysov)
• Add scanning of local files and folders (single scan) (#558) #558 (Oleg Kopysov)
• HTML file report generation for single scan (#576) #576 (Oleg Kopysov)
• User friendly command line report for single scan (#577) #577 (Oleg Kopysov)
• Renovation of LPVS logo adjustable to the GitHub theme (#579) #579 (Oleg Kopysov)
• Implement updated pull request comments (HTML and MD) (#578) #578 (Oleg Kopysov)
• Add default endpoint that forward POST requests to /webhooks (#605) #605 (m-rudyk)

Bug Fixes

• Fix Svace issue with ignored check (#572) #572 (Oleg Kopysov)
• Warning messages removal during the build process (#580) #580 (Oleg Kopysov)
• Add missing property to remove run errors (#596) #596 (Oleg Kopysov)
• Update README.md (#606) #606 (Oleg Kopysov)
• Update Security guide (#609) #609 (Taras Drozdovskyi)
• Update the clusterfuzzlite docker container (#613) #613 (Taras Drozdovskyi)

Documentation

• Prepared Home, Dev Guide and About sections (#592) #592 (Oleg Kopysov)
• Prepared API reference, Integration guide, Webhook configuration and Docker run pages (#594) #594 (Oleg Kopysov)
• Prepared Prerequisites, Command line mode and Configuration pages (#597) #597 (Oleg Kopysov)
• Add quick start guide (#602) #602 (m-rudyk)
• Move wiki info to GH Pages (#608) #608 (Oleg Kopysov)
• Add information of performance monitoring tools (#612) #612 (o-konoval)

Code Refactoring

• Group artifacts to LPVS folder, apply small fixes (#557) #557 (Oleg Kopysov)
• Taking the LPVS version from the POM file (#575) #575 (Oleg Kopysov)
• Separate queue service and implement factory for webhooks (#599) #599 (Oleg Kopysov)

Builds

• Update python requirements (#593) #593 (Taras Drozdovskyi)
• deps: bump certifi from 2023.7.22 to 2024.7.4 in the pip group (#555) #555 (dependabot[bot])
• deps: bump docker/build-push-action from 6.2.0 to 6.5.0 in /.github/workflows (#571) #571 (dependabot[bot])
• deps: bump docker/login-action from 3.2.0 to 3.3.0 in /.github/workflows (#570) #570 (dependabot[bot])
• deps: bump ossf/scorecard-action from 2.3.3 to 2.4.0 in /.github/workflows (#569) #569 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.8.1 to 2.9.0 in /.github/workflows (#567) #567 (dependabot[bot])
• deps: bump github/codeql-action from 3.25.7 to 3.25.15 in /.github/workflows (#566) #566 (dependabot[bot])
• deps: bump softprops/action-gh-release from 2.0.4 to 2.0.8 in /.github/workflows (#564) #564 (dependabot[bot])
• deps: bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4.8.6.2 (#563) #563 (dependabot[bot])
• deps: bump com.h2database:h2 from 2.2.220 to 2.3.230 (#561) #561 (dependabot[bot])
• deps: bump axios from 1.6.0 to 1.7.4 in /frontend in the npm_and_yarn group across 1 directory (#574) #574 (dependabot[bot])
• deps: bump org.kohsuke:github-api from 1.323 to 1.324 (#589) #589 (dependabot[bot])
• deps: bump com.h2database:h2 from 2.3.230 to 2.3.232 (#588) #588 (dependabot[bot])
• deps: bump actions/upload-artifact from 4.3.3 to 4.4.0 in /.github/workflows (#584) #584 (dependabot[bot])
• deps: bump docker/build-push-action from 6.5.0 to 6.7.0 in /.github/workflows (#583) #583 (dependabot[bot])
• deps: bump github/codeql-action from 3.25.15 to 3.26.6 in /.github/workflows (#582) #582 (dependabot[bot])
• deps: bump webpack from 5.89.0 to 5.94.0 in /frontend in the npm_and_yarn group across 1 directory (#581) #581 (dependabot[bot])
• deps: bump micromatch from 4.0.5 to 4.0.8 in /frontend in the npm_and_yarn group across 1 directory (#590) #590 (dependabot[bot])
• deps: bump the npm_and_yarn group across 1 directory with 2 updates (#600) #600 (dependabot[bot])
• deps: bump the npm_and_yarn group across 1 directory with 2 updates (#607) #607 (dependabot[bot])

Continuous Integration

• update documentation management job with MkDocs (#598) #598 (Tetiana Naumenko)
• Fix issue with not pinned dependancies for docs generation (#604) #604 (Tetiana Naumenko)

Chores

• Update years in copyrights (#601) #601 (Oleg Kopysov)
• Change version of release candidate (#610) [#610](https://github.co...

LPVS v2.0.0-rc.1

Features

• Show LPVS logo at the app start (#559) #559 (Oleg Kopysov)
• Add scanning of local files and folders (single scan) (#558) #558 (Oleg Kopysov)
• HTML file report generation for single scan (#576) #576 (Oleg Kopysov)
• User friendly command line report for single scan (#577) #577 (Oleg Kopysov)
• Renovation of LPVS logo adjustable to the GitHub theme (#579) #579 (Oleg Kopysov)
• Implement updated pull request comments (HTML and MD) (#578) #578 (Oleg Kopysov)
• Add default endpoint that forward POST requests to /webhooks (#605) #605 (m-rudyk)

Bug Fixes

• Fix Svace issue with ignored check (#572) #572 (Oleg Kopysov)
• Warning messages removal during the build process (#580) #580 (Oleg Kopysov)
• Add missing property to remove run errors (#596) #596 (Oleg Kopysov)
• Update README.md (#606) #606 (Oleg Kopysov)
• Update Security guide (#609) #609 (Taras Drozdovskyi)

Documentation

• Prepared Home, Dev Guide and About sections (#592) #592 (Oleg Kopysov)
• Prepared API reference, Integration guide, Webhook configuration and Docker run pages (#594) #594 (Oleg Kopysov)
• Prepared Prerequisites, Command line mode and Configuration pages (#597) #597 (Oleg Kopysov)
• Add quick start guide (#602) #602 (m-rudyk)
• Move wiki info to GH Pages (#608) #608 (Oleg Kopysov)

Code Refactoring

• Group artifacts to LPVS folder, apply small fixes (#557) #557 (Oleg Kopysov)
• Taking the LPVS version from the POM file (#575) #575 (Oleg Kopysov)
• Separate queue service and implement factory for webhooks (#599) #599 (Oleg Kopysov)

Builds

• deps: bump certifi from 2023.7.22 to 2024.7.4 in the pip group (#555) #555 (dependabot[bot])
• deps: bump docker/build-push-action from 6.2.0 to 6.5.0 in /.github/workflows (#571) #571 (dependabot[bot])
• deps: bump docker/login-action from 3.2.0 to 3.3.0 in /.github/workflows (#570) #570 (dependabot[bot])
• deps: bump ossf/scorecard-action from 2.3.3 to 2.4.0 in /.github/workflows (#569) #569 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.8.1 to 2.9.0 in /.github/workflows (#567) #567 (dependabot[bot])
• deps: bump github/codeql-action from 3.25.7 to 3.25.15 in /.github/workflows (#566) #566 (dependabot[bot])
• deps: bump softprops/action-gh-release from 2.0.4 to 2.0.8 in /.github/workflows (#564) #564 (dependabot[bot])
• deps: bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4.8.6.2 (#563) #563 (dependabot[bot])
• deps: bump com.h2database:h2 from 2.2.220 to 2.3.230 (#561) #561 (dependabot[bot])
• deps: bump axios from 1.6.0 to 1.7.4 in /frontend in the npm_and_yarn group across 1 directory (#574) #574 (dependabot[bot])
• deps: bump org.kohsuke:github-api from 1.323 to 1.324 (#589) #589 (dependabot[bot])
• deps: bump com.h2database:h2 from 2.3.230 to 2.3.232 (#588) #588 (dependabot[bot])
• deps: bump actions/upload-artifact from 4.3.3 to 4.4.0 in /.github/workflows (#584) #584 (dependabot[bot])
• deps: bump docker/build-push-action from 6.5.0 to 6.7.0 in /.github/workflows (#583) #583 (dependabot[bot])
• deps: bump github/codeql-action from 3.25.15 to 3.26.6 in /.github/workflows (#582) #582 (dependabot[bot])
• deps: bump webpack from 5.89.0 to 5.94.0 in /frontend in the npm_and_yarn group across 1 directory (#581) #581 (dependabot[bot])
• deps: bump micromatch from 4.0.5 to 4.0.8 in /frontend in the npm_and_yarn group across 1 directory (#590) #590 (dependabot[bot])
• Update python requirements (#593) #593 (Taras Drozdovskyi)
• deps: bump the npm_and_yarn group across 1 directory with 2 updates (#600) #600 (dependabot[bot])
• deps: bump the npm_and_yarn group across 1 directory with 2 updates (#607) #607 (dependabot[bot])

Continuous Integration

• update documentation management job with MkDocs (#598) #598 (Tetiana Naumenko)
• Fix issue with not pinned dependancies for docs generation (#604) #604 (Tetiana Naumenko)

Chores

• Update years in copyrights (#601) #601 (Oleg Kopysov)
• Change version of release candidate (#610) #610 (Oleg Kopysov)

LPVS v1.5.2

Bug Fixes

• Fix incorrect processing of Json, remove unused fields (#542) #542 (Oleg Kopysov)

Code Refactoring

• Refactor LoginCheck and existing unit test for License Service (#523) #523 (m-rudyk)
• LPVSScanossDetectService refactoring and unit test fix (#524) #524 (Taewan Kim)
• Use LPVSFileUtil API for getReader (#535) #535 (Taewan Kim)
• Change table names, replace native queries with a non-native (#537) #537 (Oleg Kopysov)
• Rename repository methods for name-based query derivation (#541) #541 (Oleg Kopysov)

Tests

• Add unit tests for "main" function (#522) #522 (Oleg Kopysov)

Builds

• deps: bump docker/login-action from 3.1.0 to 3.2.0 in /.github/workflows (#527) #527 (dependabot[bot])
• deps: bump codecov/codecov-action from 4.3.1 to 4.4.1 in /.github/workflows (#528) #528 (dependabot[bot])
• deps: bump ossf/scorecard-action from 2.3.1 to 2.3.3 in /.github/workflows (#529) #529 (dependabot[bot])
• deps: bump github/codeql-action from 3.25.3 to 3.25.7 in /.github/workflows (#530) #530 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.7.0 to 2.8.0 in /.github/workflows (#531) #531 (dependabot[bot])
• deps: bump org.springframework.boot:spring-boot-starter-parent from 3.2.2 to 3.3.0 (#533) #533 (dependabot[bot])
• deps: bump ws from 7.5.9 to 7.5.10 in /frontend in the npm_and_yarn group across 1 directory (#539) #539 (dependabot[bot])
• deps: bump urllib3 from 1.26.18 to 1.26.19 in the pip group across 1 directory (#538) #538 (dependabot[bot])
• deps: bump braces from 3.0.2 to 3.0.3 in /frontend in the npm_and_yarn group across 1 directory (#540) #540 (dependabot[bot])
• deps: bump org.springframework.boot:spring-boot-starter-parent from 3.3.0 to 3.3.1 (#549) #549 (dependabot[bot])
• deps: bump org.kohsuke:github-api from 1.321 to 1.323 (#552) #552 (dependabot[bot])
• deps: bump jakarta.servlet:jakarta.servlet-api from 6.0.0 to 6.1.0 (#553) #553 (dependabot[bot])
• deps: bump actions/checkout from 4.1.4 to 4.1.7 in /.github/workflows (#548) #548 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.8.0 to 2.8.1 in /.github/workflows (#546) #546 (dependabot[bot])
• deps: bump codecov/codecov-action from 4.4.1 to 4.5.0 in /.github/workflows (#545) #545 (dependabot[bot])
• deps: bump docker/build-push-action from 5.1.0 to 6.2.0 in /.github/workflows (#543) #543 (dependabot[bot])

Chores

• Change version to v1.5.2 (#554) #554 (Oleg Kopysov)

LPVS v1.5.1

Features

• Check new license and alternative license names in OSORI DB (#514) #514 (Oleg Kopysov)

Bug Fixes

• Fix license search by alternative names and remove code duplicates (#497) #497 (Oleg Kopysov)
• Fix svace issue Redundant null check (#518) #518 (Oleg Kopysov)
• Fix logs and exceptions handling for single scan mode (#519) #519 (Oleg Kopysov)

Code Refactoring

• Rename util class and move common methods to util class (#515) #515 (Oleg Kopysov)

Builds

• deps: bump codecov/codecov-action from 4.1.0 to 4.3.1 in /.github/workflows (#511) #511 (dependabot[bot])
• deps: bump github/codeql-action from 3.24.3 to 3.25.3 in /.github/workflows (#510) #510 (dependabot[bot])
• deps: bump actions/upload-artifact from 4.3.0 to 4.3.3 in /.github/workflows (#509) #509 (dependabot[bot])
• deps: bump actions/download-artifact from 4.1.0 to 4.1.7 in /.github/workflows (#506) #506 (dependabot[bot])
• deps: bump peaceiris/actions-gh-pages from 3.9.3 to 4.0.0 in /.github/workflows (#507) #507 (dependabot[bot])
• deps: bump actions/checkout from 4.1.1 to 4.1.4 in /.github/workflows (#505) #505 (dependabot[bot])
• deps: bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0 in /.github/workflows (#508) #508 (dependabot[bot])
• deps: bump commons-codec:commons-codec from 1.16.0 to 1.17.0 (#500) #500 (dependabot[bot])
• deps: bump org.jacoco:jacoco-maven-plugin from 0.8.8 to 0.8.12 (#499) #499 (dependabot[bot])
• deps: bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.3.1 to 4.8.4.0 (#502) #502 (dependabot[bot])
• deps: bump node from 18 to 22 (#498) #498 (dependabot[bot])
• deps: bump ejs from 3.1.9 to 3.1.10 in /frontend in the npm_and_yarn group across 1 directory (#513) #513 (dependabot[bot])
• Remove hardcoded dependencies from POM file (#516) #516 (Oleg Kopysov)
• deps: bump requests from 2.31.0 to 2.32.0 in the pip group across 1 directory (#520) #520 (dependabot[bot])

Chores

• Fix a typo in the quick-start-guide regarding the launch of th… (#517) #517 (Taras Drozdovskyi)
• Change version to v1.5.1 (#521) #521 (Oleg Kopysov)

LPVS v1.5.0

Features

• Loaded scan services dynamically based on configuration properties
• Added conversion of the byte range in file to file lines

Improvements

• Changed visibility of constructor for testability

Bug Fixes

• Fixed Javadoc generation
• Fixed issues detected by Svace code analyzer
• Corrected link in quick-start-guide-and-build.md
• Resolved an issue with incorrect file separators
• Fixed one more Svace defect
• Fixed missing link to the scan results in case of hub link present

Dependency Updates

• Bumped follow-redirects from 1.15.4 to 1.15.6 in /frontend
• Bumped express from 4.18.2 to 4.19.2 in /frontend
• Bumped org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0
• Bumped softprops/action-gh-release from 0.1.14 to 2.0.4 in /.github/workflows
• Bumped docker/login-action from 3.0.0 to 3.1.0 in /.github/workflows
• Bumped actions/setup-java from 4.1.0 to 4.2.1 in /.github/workflows
• Bumped slsa-framework/slsa-github-generator from 1.9.0 to 1.10.0 in /.github/workflows
• Bumped org.kohsuke:github-api from 1.318 to 1.321
• Bumped org.projectlombok:lombok from 1.18.20 to 1.18.32
• Updated scanoss dependencies

Documentation Updates

• Fixed links in the quick-start-guide-and-build.md
• Changed version to v1.5.0

LPVS v1.4.2

Bug Fixes

• remove PR if max attempt reached (#430) #430 (m-rudyk)
• add check for empty number of files in dir before scan (#431) #431 (m-rudyk)
• Change table name to avoid name conflicts (#437) #437 (Oleg Kopysov)
• Clear the queue before adding new elements (#439) #439 (Oleg Kopysov)
• Fix for incorrect increment of the attempts number (#442) #442 (Oleg Kopysov)
• Fix incorrect log message (#445) #445 (Oleg Kopysov)
• Fix the issue with duplicated records in pull_requests table and runtime error (missing bean) (#446) #446 (Oleg Kopysov)
• Remove unnecessary try/catch section from the service (#447) #447 (Oleg Kopysov)
• modify single scan feature (#463) #463 (m-rudyk)

Documentation

• Update properties and corresponding documentation (#444) #444 (Oleg Kopysov)

Code Refactoring

• rename classes and improve application.properties (#443) #443 (Oleg Kopysov)

Builds

• deps: bump the pip group across 1 directories with 1 update (#424) #424 (dependabot[bot])
• deps: bump github/codeql-action from 3.23.2 to 3.24.3 in /.github/workflows (#432) #432 (dependabot[bot])
• deps: bump step-security/harden-runner from 2.6.0 to 2.7.0 in /.github/workflows (#414) #414 (dependabot[bot])
• deps: bump the pip group across 1 directories with 1 update (#440) #440 (dependabot[bot])
• update pom.xml (#441) #441 (o-konoval)
• deps: bump actions/setup-java from 4.0.0 to 4.1.0 in /.github/workflows (#452) #452 (dependabot[bot])
• deps: bump codecov/codecov-action from 4.0.0 to 4.1.0 in /.github/workflows (#454) #454 (dependabot[bot])
• deps: bump com.github.spotbugs:spotbugs-maven-plugin from 4.7.3.2 to 4.8.3.1 (#460) #460 (dependabot[bot])
• deps: bump org.apache.maven.plugins:maven-compiler-plugin from 3.10.0 to 3.12.1 (#458) #458 (dependabot[bot])
• deps: bump com.h3xstream.findsecbugs:findsecbugs-plugin from 1.12.0 to 1.13.0 (#457) #457 (dependabot[bot])
• deps: bump org.apache.maven.plugins:maven-assembly-plugin from 3.1.0 to 3.6.0 (#456) #456 (dependabot[bot])

Continuous Integration

• Add CI workflow for check the build of docker container (#429) #429 (Taras Drozdovskyi)
• fix and update actions/checkout version (#436) #436 (Tetiana Naumenko)

Chores

• remove unused dependencies (#425) #425 (m-rudyk)
• add plugin to build executable JAR (#427) #427 (m-rudyk)
• refactor and update github action workflows (#438) #438 (Tetiana Naumenko)
• change version to 1.4.2 (#449) #449 (Oleg Kopysov)

LPVS v1.4.1

Bug Fixes

• Remove packages vulnerabilities in frontend (#404) #404 (Tetiana Naumenko)
• Fix package-lock dependencies (#422) #422 (Oleg Kopysov)

Documentation

• Add guide how to use lpvs-x.y.z.jar in other project (#406) #406 (Taras Drozdovskyi)
• Reorganize README.md (#407) #407 (Taras Drozdovskyi)

Code Refactoring

• Remove unused properties from application.properties file (#419) #419 (Oleg Kopysov)
• Sync source code with external modules (#420) #420 (Oleg Kopysov)

Builds

• deps: bump follow-redirects from 1.15.2 to 1.15.4 in /frontend (#402) #402 (dependabot[bot])
• Update JDK11 to JDK17 in Dockerfile (#401) #401 (Taras Drozdovskyi)
• deps: bump actions/upload-artifact from 4.0.0 to 4.3.0 in /.github/workflows (#413) #413 (dependabot[bot])
• deps: bump docker/metadata-action from 5.2.0 to 5.5.1 in /.github/workflows (#415) #415 (dependabot[bot])
• deps: bump github/codeql-action from 3.22.12 to 3.23.2 in /.github/workflows (#417) #417 (dependabot[bot])
• deps: bump codecov/codecov-action from 3.1.4 to 4.0.0 in /.github/workflows (#416) #416 (dependabot[bot])

Continuous Integration

• Update java-kotlin for codeql analysis (#408) #408 (Taras Drozdovskyi)
• Update JDK11 to JDK17 in .github/workflows/publish-release.yml (#423) #423 (Taras Drozdovskyi)

Chores

• Switch from Spring 2.7 to 3.2 (#400) #400 (rnd4you)
• Update package version to 1.4.1 (#421) #421 (Oleg Kopysov)
• Update JDK11 to JDK17 in Fuzzer (#403) #403 (Taras Drozdovskyi)

LPVS v1.4.0

Features

• Add API for single pull request scan (#370) #370 (Oleg Kopysov)

Bug Fixes

• All actions required when publishing a release are combined into… (#371) #371 (Taras Drozdovskyi)
• Change "npm install" to "npm ci" to install fixed version packag… (#385) #385 (Taras Drozdovskyi)
• Add throw Exception in case of error in LPVSWebhookUtil class (#384) #384 (Oleg Kopysov)
• Enable scanoss dependency checking during docker container build (#388) #388 (Taras Drozdovskyi)
• Update pyopenssl version for scanoss (#396) #396 (Taras Drozdovskyi)

Documentation

• Updated links in Readme file (#368) #368 (Oleg Kopysov)
• update guide in Quick Start part of README.md file (#389) #389 (Tetiana Naumenko)
• Expand the types of commit names (#395) #395 (Taras Drozdovskyi)

Tests

• Improve LPVSDetectService branch coverage (#367) #367 (v-kerimov)

Builds

• deps: bump org.apache.maven.plugins:maven-javadoc-plugin from 3.3.1 to 3.6.3 (#383) #383 (dependabot[bot])
• deps: bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.1 (#379) #379 (dependabot[bot])
• deps: bump actions/upload-artifact from 3.1.0 to 4.0.0 in /.github/workflows (#375) #375 (dependabot[bot])
• deps: bump actions/download-artifact from 3.0.0 to 4.1.0 in /.github/workflows (#374) #374 (dependabot[bot])
• deps: bump github/codeql-action from 2.22.8 to 3.22.12 in /.github/workflows (#372) #372 (dependabot[bot])
• deps: bump certifi from 2017.4.17 to 2023.7.22 (#394) #394 (dependabot[bot])
• deps: bump urllib3 from 1.21.1 to 1.26.18 (#393) #393 (dependabot[bot])
• deps: bump cryptography from 40.0.2 to 41.0.6 (#392) #392 (dependabot[bot])
• deps: bump requests from 2.22.0 to 2.31.0 (#391) #391 (dependabot[bot])

Chores

• delete unused table configuration (#387) #387 (m-rudyk)
• Update package version to 1.4.0 (#390) #390 (Oleg Kopysov)

LPVS v1.3.0

Features

• Enable starting scans with pull request argument (#300) #300 (v-kerimov)
• Generate html report for single scan mode (#358) #358 (m-rudyk)
• Use actions-gh-pages for publication of Javadoc (#311) #311 (Oleg Kopysov)
• Provide reproducible builds (#322) #322 (Oleg Kopysov)
• Add option to scan all files (#332) #332 (m-rudyk)

Bug Fixes

• Fix Github action step to generate Javadoc (#310) #310 (Oleg Kopysov)
• Apply security install of python package into Dockerfile (#357) #357 (Taras Drozdovskyi)
• Fixed problems with singlescan and decreased .sql files count (#353) #353 (v-kerimov)
• Fix existing javadoc comments (#363) #363 (m-rudyk)
• Fix Dockerfile for secure installation of scanoss package (#366) #366 (Taras Drozdovskyi)

Documentation

• Add code review requirements description (#303) #303 (Taras Drozdovskyi)
• Add link to the frontend readme inside the main readme (#306) #306 (Oleg Kopysov)
• Enable Javadoc generation as GitHub action (#308) #308 (Oleg Kopysov)
• Add Javadoc comments for config, exception, repository and unit (#315) #315 (Oleg Kopysov)
• Update of YAML file with newly added endpoints (#328) #328 (Oleg Kopysov)
• Updated API description in YAML (#329) #329 (Oleg Kopysov)
• Update of the issue and PR templates (#330) #330 (Oleg Kopysov)
• Update and extension of Javadocs for entities (#355) #355 (Oleg Kopysov)
• Add Javadoc comments for services (#360) #360 (Oleg Kopysov)
• Update CODEOWNERS file (#309) (Taras Drozdovskyi) #309

Tests

• Add more unit tests to improve coverage (#299) #299 (Oleg Kopysov)
• Update ClusterFuzzLite github->action (#356) #356 (Taras Drozdovskyi)

CI

• Adding automatic release generation (#364) #364 (Taras Drozdovskyi)
• Harden GitHub Actions (#312) (StepSecurity Bot) #312
• Update github->action javadoc permissions (#313) #313 (Taras Drozdovskyi)
• Add context write permission to javadoc.yml (#314) #314 (Taras Drozdovskyi)
• Specifies the version of the components used in the clusterfuzzlite (#326) #326 (Taras Drozdovskyi)
• Apply hardening mechanisms to controller endpoints (#325) #325 (Oleg Kopysov)
• Add fuzzer github->action workflow (#324) (Taras Drozdovskyi) #324