Skip to content

v1.3.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 07 Mar 09:14
· 405 commits to develop since this release
v1.3.0
9afbbfc
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Installation

Cargo

cargo install uv-sbom

Python (PyPI)

pip install uv-sbom-bin

Pre-built Binaries

macOS (Apple Silicon):

curl -LO https://github.com/Taketo-Yoda/uv-sbom/releases/download/v1.3.0/uv-sbom-aarch64-apple-darwin.tar.gz
tar xzf uv-sbom-aarch64-apple-darwin.tar.gz
sudo mv uv-sbom /usr/local/bin/

macOS (Intel):

curl -LO https://github.com/Taketo-Yoda/uv-sbom/releases/download/v1.3.0/uv-sbom-x86_64-apple-darwin.tar.gz
tar xzf uv-sbom-x86_64-apple-darwin.tar.gz
sudo mv uv-sbom /usr/local/bin/

Linux (x86_64):

curl -LO https://github.com/Taketo-Yoda/uv-sbom/releases/download/v1.3.0/uv-sbom-x86_64-unknown-linux-gnu.tar.gz
tar xzf uv-sbom-x86_64-unknown-linux-gnu.tar.gz
sudo mv uv-sbom /usr/local/bin/

Windows:
Download the .zip file below and extract to your desired location.

Verify Installation

uv-sbom --version

See the README for full documentation.

What's Changed

  • feat(ports): define UvLockSimulator outbound port by @Taketo-Yoda in #259
  • feat(adapters): implement UvLockAdapter for uv lock simulation by @Taketo-Yoda in #260
  • feat(domain): define UpgradeRecommendation enum for upgrade simulation results by @Taketo-Yoda in #261
  • feat(domain): implement UpgradeAdvisor domain service for upgrade simulation by @Taketo-Yoda in #262
  • feat(cli,application): add --suggest-fix flag and extend SbomRequest/SbomResponse DTOs by @Taketo-Yoda in #265
  • chore(deps): bump actions/download-artifact from 7 to 8 by @dependabot[bot] in #267
  • chore(deps): bump actions/upload-artifact from 6 to 7 by @dependabot[bot] in #268
  • chore(deps): bump the dependencies group with 3 updates by @dependabot[bot] in #269
  • feat(application): integrate UpgradeAdvisor into GenerateSbomUseCase and add upgrade view model by @Taketo-Yoda in #266
  • feat(adapters): extend markdown and CycloneDX formatters with upgrade recommendations by @Taketo-Yoda in #270
  • feat(cli): wire up --suggest-fix flag with pre-flight validation by @Taketo-Yoda in #271
  • test(adapters,domain): add fixture-based and empty-input tests for UpgradeAdvisor and UvLockAdapter by @Taketo-Yoda in #272
  • docs: document --suggest-fix flag in README and README-JP by @Taketo-Yoda in #273
  • fix(deps): update aws-lc-rs to fix GHSA-hfpc-8r3f-gw53 by @Taketo-Yoda in #277
  • feat(examples): add suggest-fix-project to demonstrate --suggest-fix flag by @Taketo-Yoda in #276
  • chore(deps): bump the dependencies group with 3 updates by @dependabot[bot] in #280
  • chore(skills): add sync-config skill to audit CLI-config coverage by @Taketo-Yoda in #281
  • fix(config): make --suggest-fix configurable via config file by @Taketo-Yoda in #282
  • feat(application): report progress during --suggest-fix upgrade simulations by @Taketo-Yoda in #285
  • chore(release): prepare v1.3.0 by @Taketo-Yoda in #286
  • chore(release): v1.3.0 by @Taketo-Yoda in #287

Full Changelog: v1.2.0...v1.3.0

Contributors

dependabot and Taketo-Yoda
Assets 6
Loading