Skip to content

84.0.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 16 Apr 07:09
· 467 commits to main since this release
84.0.0
488ec8e

What's Changed

🛠 Breaking Changes

  • 183e8fd refactor!: Remove the defects model

🐞 Bug Fixes

  • 488ec8e cli-helper: Properly delete temporary directories in tests
  • 65aa423 flox: Maintain the CI environment variable
  • e8647d1 model: Fix the default license fact provider order
  • aec718e osv: Omit packages without vulnerabilites from the result
  • 98a53ed scancode: Recognize fromFile that match file.path
  • 009e252 Convert "Dos" files from DOS to Unix line endings

🎉 New Features

  • ab91dc9 dos: Support getting the version from the API
  • 8ba0be3 evaluated-model: Set the effective license also for projects
  • ff107b9 model: Allow setting package source code origins to empty list
  • d7583e5 ort-project-file: Make the source artifact hash optional
  • 7ff200d package-configurations: Align version matching with package curations

✅ Tests

  • c6de98a conan: Update expected results
  • 872518f oss-index: Add a funTest for OssIndex
  • 4c12ac7 osv: Narrow down two assertions
  • e2f8a24 osv: Turn the test resources from JSON to YAML
  • 4f5c8f8 osv: Use a more reliable Hadoop commit for CVE testing
  • 65d1071 scanoss: Add a functional test for the different instances
  • 3e68aa0 scanoss: Disable the spec when running at cloud providers

🐘 Build & ⚙️ CI

  • 2af8e57 gradle: Avoid depending on ORT's test-utils from clients
  • bd4ef16 gradle: Make a dependency on test-utils explicit in projects
  • 9f154f4 gradle: Use the tapmoc plugin to configure Java / Kotlin versions
  • 40854ce ort-config: Explicitly depend on the Git provider for testing
  • 73db823 Make the UP-TO-DATE work-around function with IntelliJ 2026.1

📖 Documentation

  • dc86b7f advisors: Clarify to only return packages with findings
  • 908d94b gradle: Update links about embedding via the Tooling API
  • 521ead1 website: Do not mention the detektAll task anymore

🔧 Chores

  • 8322e9a dos: Move private / internal properties to the top
  • 3b9c843 model: Always use the default port for PostgreSQL connections
  • edf3650 oss-index: Strip CVE / CWE from the summary for consistency
  • 2ec9ee2 scanner: Drop unnecessary white spaces
  • 841934f scanner: Fix a typo
  • ae1861b scanoss: Omit blank file_url additional data keys
  • 75b7ff2 Move function to utils

🚀 Dependency Updates

  • 4feb48f update actions/upload-artifact action to v7.0.1
  • 26bff00 update actions/upload-pages-artifact action to v5
  • 4763928 update at.yawk.lz4:lz4-java to v1.11.0
  • 57f64bc update com.autonomousapps:dependency-analysis-gradle-plugin to v3.7.0
  • 54feea8 update docker/build-push-action action to v7.1.0
  • 660946f update github/codeql-action action to v4.35.2
  • 2ad27e4 update kotlinxserialization to v1.11.0
  • 204f8b6 update org.bouncycastle:bcprov-jdk18on to v1.84

🚜 Refactorings

  • 09c2152 evaluated-model: Factor out getEffectiveLicenseForId()
  • 6767d44 osv: Merge two functions to simplify code
  • 35a427a scancode: Rewrite the code to filter file references for clarity
Assets 10
Loading