87.3.0

What's Changed

🐞 Bug Fixes

• 9920bd0 bundler: Resolve dependencies from optional groups
• 3c4dcea maven: Call injectMirror before injectProxy
• 9547a44 model: Fix license file resolution when there are no findings

🎉 New Features

• a294aaf model: Allow resolving artifact license files outside of root dir
• bba75ec model: Handle path excludes when resolving license files
• 86ec797 ort-project-file: Add support for specifying the package linkage
• 3f452a6 schema: Add JSON schema for ORT project files

✅ Tests

• 871838c bundler: Regenerate a lockfile
• f74033d cyclonedx: Also use ORT_RESULT_WITH_VULNERABILITIES in one test
• 2fe597e cyclonedx: Factor out redundant code
• b970ecb cyclonedx: Remove two redundant test cases
• 3ba4679 cyclonedx: Replace or remove non-empty file assertions
• 3097546 cyclonedx: Stop having dedicate schema verification checks
• 794c0a8 model: Add VCS-specific tests for the license file resolution
• 60f644f model: Add an artifact-specific test for license file resolution
• af30ab6 model: Avoid using archive.zip as test resource
• 9719e7a model: Inline vcsInfo into its only use
• 90d6c16 model: Move two variables outside of the class

🐘 Build & ⚙️ CI

• 3ee9ad5 chore: Publish to Maven Central after making the GitHub release

📖 Documentation

• 582a210 gradle-plugin: Fix a typo

🔧 Chores

• 74d1c52 bundler: Use more idiomatic YAML mapping code
• 683e463 model: Improve two variable names
• 89cb991 model: Perform de-duplication on the KnownProvenance
• facbef7 model: Trivially simplify getting the result entry
• bf78413 scanner: Drop storing failed repository provenance resolutions

🚀 Dependency Updates

• 0fe124a docker: Upgrade Provenant to version 0.1.6
• 00cb32b update aws-java-sdk-v2 monorepo to v2.45.0
• d394bc0 update com.fasterxml.jackson:jackson-bom to v2.21.4

🚜 Refactorings

• 2ff744c model: Factor out resolveLicenseFiles()