Skip to content

Releases: ShiftLeftSecurity/cdxgen

Release v2.3.5

26 Oct 10:45
@github-actions github-actions
v2.3.5
872fcce
Compare
Choose a tag to compare
Release v2.3.5 
v2.3.5 release
Assets 3
Loading

Release v2.3.4

09 Aug 17:27
@github-actions github-actions
v2.3.4
4f017c2
Compare
Choose a tag to compare
Release v2.3.4 
Release v2.3.4
Assets 3
Loading

v2.3.3

09 Aug 15:57
@github-actions github-actions
v2.3.3
5f3e646
Compare
Choose a tag to compare
v2.3.3 
Release v2.3.3
Assets 2
Loading

v2.3.2

09 Aug 14:58
@github-actions github-actions
v2.3.2
13f9800
Compare
Choose a tag to compare
v2.3.2 
Release v2.3.2
Assets 2
Loading

v2.3.1

24 May 07:49
@github-actions github-actions
v2.3.1
f6c738e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.1 
Sync from upstream  (#14)

* Scala 0.13.8 support

* Bug fix

* 2.2.3

* Bug fix for appimage

* 2.2.4

* Update maven plugin

* 2.2.5

* Bug fix: #30. Do not hex convert non-base64 encoded hashes

* 2.2.6

* 2.2.7

* Added HTTP proxy support

* 2.2.8

* Support for fetching npm license via FETCH_LICENSE env variable

* 2.2.9

* Support for generating bom from war

* Support for generating bom from war

* 2.2.10

* Use packages config for csharp if available

* Use packages config for csharp if available

* 2.2.11

* fix: go bom generation uses go.mod for dep analysis, instead of go.sum, but gathers checksum data from go.sum

* chore: code cleanup, and commenting

* chore: linting fixes

* docs: update docs to reflect changes:

* fix: handle parse of inline replace statements in go.mod

* fix: update createXBom to look for go.mod

* feat: add --gosum flag to allow generation of BOMs using go.sum as source of truth for dependencies.

* chore: recomment long running test

* fix: use env variable instead of flag for changing golang BOM generation mode.

* fix: remove unused legacyGo option

* chore: re-add comma to fix diff

* chore: revert package.lock.json

* chore: revert package.lock.json in test proj

* refactor: optimize the parseGoModData. Use map for gosumData for faster lookup, instead of n * x iteration

* fix: ignore empty lines in sum file

* Subtle refactor

* 2.2.12

* Try to guess the license automatically for large content. Bug #43 fix

* 2.2.13

* Mvn dependency tree fallback

* Support for pulling indirect dependencies for python

* Do not update os packages

* 2.2.14

* Support for passing custom args to maven

* 2.2.15

* Revert fetching indirect deps for python

* 2.2.16

* Support requirements directory for python

* 2.2.17

* Use latest maven cyclonedx plugin

* 2.2.18

* Remove jitpack dependency

* 2.2.19

* Bug fix

* Improvements to yarn and csharp

* Improvements to yarn and csharp

* 2.2.20

* Perf improvements

* 2.2.21

* Fix #48

* 2.2.22

* Temp commit

* Temp commit

* Temp commit

* Upgrade maven plugin

* 2.3.1

* Node 16 build

* Node 16 build

* Node 16 build

* Node 16 build

* Test fixes

* Better skip for maven metadata fetches

Co-authored-by: Yuta Yamate <[email protected]>
Co-authored-by: Tyler Sullivan <[email protected]>
Assets 4
Loading

Release v2.2.11

31 Mar 12:43
@github-actions github-actions
v2.2.11
cfeaf98
Compare
Choose a tag to compare
Release v2.2.11 
Release v2.2.11
Assets 3
Loading

Release v2.2.10

29 Mar 13:03
@github-actions github-actions
v2.2.10
134a465
Compare
Choose a tag to compare
Release v2.2.10 
Release 2.2.10
Assets 3
Loading

Release v2.2.9

15 Mar 19:50
@github-actions github-actions
v2.2.9
6934c8b
Compare
Choose a tag to compare
Release v2.2.9 
Release 2.2.9
Assets 3
Loading

Release v2.2.8

05 Mar 17:20
@github-actions github-actions
v2.2.8
a6e4e54
Compare
Choose a tag to compare
Release v2.2.8 
Release 2.2.8
Assets 3
Loading

Release v2.2.7

03 Mar 10:55
@github-actions github-actions
v2.2.7
5bfbfee
Compare
Choose a tag to compare
Release v2.2.7 
Release 2.2.7
Assets 3
Loading