v0.10.4

Updates in this release

New features

• feat: Bump version
• feat: Refactor to use set_cpe/set_purl
• doc: Define security policy

Fixes

• ci: Update dependencies
• fix: Handling version in cpe

v0.10.3

Updates in this release

Fixes

• fix: Handling version in cpe

v0.10.2

Updates in this release

New features

• feat: report python version and checksum data

v0.10.1

Updates in this release

New features

• feat: Report source language

Fixes

• doc: Update guidance for running on Windows (Fixes #11)

v0.10.0

Updates in this release

New features

• feat: Support CycloneDX 1.5
• feat: bump version
• feat: Detect deprecated license
• feat: update version

Fixes

• fix: linting

v0.9.2

Updates in this release

Fixes

• various bugs when a line of pip show module does not contain an ':' delimited entry.

Thanks to @You-ne

v0.9.1

Updates in this release

Fixes

• Update README
• Bump dependency versions
• Handle single word for supplier
• Improve license comment text

v0.9.0

Updates in this release

New Features

• Improved license handling including license expression support

Fixes

• Remove redundamt code
• Remove redundant license data and class (now using lib4sbom)
• Fix typos in documentaion

New Contributors

@vargenau

v0.8.0

Updates in this release

• Add file reporting support
• Add additional attributes to Python module reporting
• Fix reporting of supplier
• Refactor to use lib4sbom, sbom4files and sbom2dot
• Update documentation

v0.7.0

Bug fix release

• Correct handling of SPDX relationships to use DEPENDS ON instead of CONTAINS
• Fix issue with uppercase module names