Releases: sonatype/actions
Releases · sonatype/actions
Release 1.1.2
- Added support for GitHub Enterprise Server runners to use upload-artifact@v3
- Fixed spawn E2BIG error when scan targets resolved to a big list of files
- Implemented post-execution tasks to leave self-hosted runners in a clean state
Release 1.1.1
- Added support for
container:style scan patterns - Fixed issue where environment variables were not recognized by the
evaluateandrun-iq-cliactions
Release 1.1.0
- Added support to generate a SARIF file, as an artifact, with policy violations findings
- Added support to upload evaluation results to GitHub Advanced Security
Release 1.0.5
- Maintenance release
Release 1.0.4
- Added optional download-url parameter for setup-iq-cli action
- Added support for CycloneDX v1.6 to fetch-sbom action
- Added IQ report link to the summary screen
- Improved the overall error message for run-iq-cli action failures
Release 1.0.3
- Maintenance release
v1.0.2
- Updated internal dependencies to ensure compatibility with Lifecycle 181
Release 1.0.1
- Updated internal dependencies to ensure compatibility with Lifecycle 180
- Fixed issue where the sonatype-iq-cli.jar file was incorrectly identified as a component
- The moduleExclude parameter now correctly supports a list of space-separated module names
Release 1.0.0
- Initial release