Bomly Guard v1.0.1

Bomly is going open source

This release prepares bomly-guard for public availability as part of Bomly’s move toward open source. The goal is to make Bomly easier to inspect, adopt, and contribute to as we continue building developer-friendly software supply chain security tools.

What's Changed

• Convert review action to composite by @bomly-guy in #1
• Support private CLI release downloads by @bomly-guy in #2
• Fallback to repo token for CLI release access by @bomly-guy in #3
• Improve review action logging and SARIF upload by @bomly-guy in #4
• Fix job summary publishing by @bomly-guy in #5
• Skip unsupported SARIF uploads cleanly by @bomly-guy in #6
• Prepare dependency review action for public release by @bomly-guy in #7
• Document release tag creation & Change action name by @bomly-guy in #12
• Bump actions/checkout from 5 to 6 by @dependabot[bot] in #11
• Bump actions/setup-node from 5 to 6 by @dependabot[bot] in #10
• Bump ossf/scorecard-action from 2.4.1 to 2.4.3 by @dependabot[bot] in #9
• Bump actions/upload-artifact from 4 to 7 by @dependabot[bot] in #8

New Contributors

• @bomly-guy made their first contribution in #1
• @dependabot[bot] made their first contribution in #11

Full Changelog: https://github.com/bomly-dev/bomly-guard/commits/v1.0.0