v10.4.1

v10.4.1 (2025-07-08)

Bug Fixes

• Add runtime dependnecy typing_extensions>=4.6; python_version<"3.13" (#845, 95b560a)

• Added runtime dependnecy referencing>=0.28.4" (#846, 4d01e87)

---

What's Changed

• fix: add runtime dependnecy typing_extensions>=4.6; python_version<"3.13" by @jkowalleck in #845
• fix: added runtime dependnecy referencing>=0.28.4" by @jkowalleck in #846

Full Changelog: v10.4.0...v10.4.1

v10.4.0

v10.4.0 (2025-07-08)

Bug Fixes

• Issue DeprecationWarnings for deprecated properties properly (#838, 34a11aa)

• Removed meaningless pattern checks for CycloneDX 1.2 JSON schema (#843, 6e8083a)

Features

• Decorate deprecated symbols (#839, 33daaf1)

• Validators return specific error classes (#840, 23a0f72)

---

What's Changed

• fix: issue DeprecationWarnings for deprecated properties properly by @KAWAHARA-souta in #838
• feat: validators return specific error classes by @jkowalleck in #840
• feat: decorate deprecated symbols by @KAWAHARA-souta in #839
• fix: removed meaningless pattern checks for CycloneDX 1.2 JSON schema by @jkowalleck in #843

New Contributors

• @KAWAHARA-souta made their first contribution in #838

Full Changelog: v10.3.0...v10.4.0

v10.3.0

v10.3.0 (2025-06-30)

Documentation

• Instructions for code style (160810f)

Features

• Schema based validation may return iterable of all errors (#834, f95576f)

---

What's Changed

• chore: update precommit hook by @jkowalleck in #833
• chore(deps-dev): update flake8 requirement from 7.2.0 to 7.3.0 by @dependabot in #829
• chore(deps-dev): update tox requirement from 4.26.0 to 4.27.0 by @dependabot in #832
• chore(deps-dev): update mypy requirement from 1.16.0 to 1.16.1 by @dependabot in #831
• chore(deps-dev): update bandit requirement from 1.8.3 to 1.8.5 by @dependabot in #830
• chore(deps-dev): update coverage requirement from 7.8.2 to 7.9.1 by @dependabot in #825
• feat: schema based validation may return iterable of all errors by @e3krisztian in #834
• chore(deps): update lxml requirement from >=4,<6 to >=4,<7 by @dependabot in #835

New Contributors

• @e3krisztian made their first contribution in #834

Full Changelog: v10.2.0...v10.3.0

v10.2.0

v10.2.0 (2025-06-10)

Bug Fixes

• vulnerabilityscoresource.get_from_vector() for CVSS_V3_1 and CVSS_V4 (#824, a97ccd4)

Features

• Add support for component's evidences according to spec (#810, 3395fda)

---

What's Changed

• feat: add support for component's evidences according to spec by @OxPirates in #810
• fix: VulnerabilityScoreSource.get_from_vector() for CVSS_V3_1 and CVSS_V4 by @jkowalleck in #824

New Contributors

• @OxPirates made their first contribution in #810

Full Changelog: v10.1.0...v10.2.0

v10.1.0

v10.1.0 (2025-06-05)

Features

• Pulled SPDX license IDs v1.0-3.26.0 (#823, 41b2d25)

---

What's Changed

• chore(deps): bump python-semantic-release/python-semantic-release from 9.21.1 to 10.0.2 by @dependabot in #818
• chore(deps): bump python-semantic-release/publish-action from 9 to 10 by @dependabot in #819
• style: pyupgrade 3.9 by @jkowalleck in #822
• feat: Pulled SPDX license IDs v1.0-3.26.0 by @jkowalleck in #823

Full Changelog: v10.0.2...v10.1.0

v10.0.2

v10.0.2 (2025-06-02)

Bug Fixes

• model.bommetadata.component setter typehint (#817, bfe889a)

---

What's Changed

• chore(deps): bump python-semantic-release/python-semantic-release from 9.21.0 to 9.21.1 by @dependabot in #813
• chore: GH workflow permissions by @jkowalleck in #814
• chore(deps-dev): update tox requirement from 4.25.0 to 4.26.0 by @dependabot in #815
• chore(deps-dev): update coverage requirement from 7.8.0 to 7.8.2 by @dependabot in #816
• fix: model.BomMetaData.component setter typehint by @dependabot in #817
• style: shorten typehint-ignores by @jkowalleck in #820

Full Changelog: v10.0.1...v10.0.2

v10.0.1

v10.0.1 (2025-05-10)

Bug Fixes

• Add missing comparator for VulnerabilityAnalysis (#812, 0df2982)

---

What's Changed

• ci: test macos latest by @jkowalleck in #802
• chore(deps-dev): update pep8-naming requirement from 0.14.1 to 0.15.1 by @dependabot in #811
• fix: Add missing comparator for VulnerabilityAnalysis by @haklir in #812

New Contributors

• @haklir made their first contribution in #812

Full Changelog: v10.0.0...v10.0.1

v10.0.0

v10.0.0 (2025-04-23)

BREAKING CHANGE

• Drop support for Python <3.9 (#809, 8b2a07d)

  Python 3.8 is end-of-life.

---

What's Changed

• chore: use 'python-semantic-release/publish-action' by @indiVar0508 in #796
• chore(deps-dev): update tox requirement from 4.24.1 to 4.24.2 by @dependabot in #798
• chore(deps-dev): update tox requirement from 4.24.2 to 4.25.0 by @dependabot in #803
• feat!: drop support for Python <3.9 by @Simoh23999 in #809
• chore(deps): bump python-semantic-release/python-semantic-release from 9.1.1 to 9.21.0 by @dependabot in #797

New Contributors

• @Simoh23999 made their first contribution in #809

Full Changelog: v9.1.0...v10.0.0

v9.1.1-rc.1

v9.1.1-rc.1 (2025-03-03)

maintenance release to see #793 in action

v9.1.0

v9.1.0 (2025-02-27)

Feature

• feat: model.VulnerabilityAnalysis properties for issued/updated datetime (#794)

Fix

• fix: improved comparison functionality of model.VulnerabilityAnalysis (#795)

---

What's Changed

• feat: VulnerabilityAnalysis properties for issued/updated datetime by @indiVar0508 in #794
• fix: improved comparison functionality of model.VulnerabilityAnalysis by @jkowalleck in #795

Full Changelog: v9.0.2...v9.1.0