Releases: CycloneDX/cyclonedx-python-lib
Releases Β· CycloneDX/cyclonedx-python-lib
v11.1.0
v11.1.0 (2025-09-09)
Documentation
-
Shorten lines (
5621705)
Features
What's Changed
- chore(deps-dev): update mypy requirement from 1.16.1 to 1.17.0 by @dependabot[bot] in #855
- docs: update linked XML spec by @jkowalleck in #857
- docs: update CDX spec links by @jkowalleck in #858
- docs: update linked CDX spec by @jkowalleck in #860
- feat: add BomRefs for known models according to CycloneDX 1.5 by @jkowalleck in #859
- chore(deps-dev): update coverage requirement from 7.9.2 to 7.10.1 by @dependabot[bot] in #865
- chore(deps-dev): update mypy requirement from 1.17.0 to 1.17.1 by @dependabot[bot] in #868
- chore(deps-dev): update tox requirement from 4.27.0 to 4.28.4 by @dependabot[bot] in #867
- chore(deps-dev): update deptry requirement from 0.23.0 to 0.23.1 by @dependabot[bot] in #866
- chore(deps-dev): update coverage requirement from 7.10.1 to 7.10.2 by @dependabot[bot] in #871
- chore(deps): bump actions/download-artifact from 4 to 5 by @dependabot[bot] in #873
- chore(deps): bump actions/checkout from 4 to 5 by @dependabot[bot] in #875
- test: fix slow tests and add timing reports by @jkowalleck in #880
- chore(deps-dev): update tox requirement from 4.28.4 to 4.29.0 by @dependabot[bot] in #879
- chore(deps-dev): update coverage requirement from 7.10.2 to 7.10.6 by @dependabot[bot] in #878
- chore(deps): bump actions/setup-python from 5 to 6 by @dependabot[bot] in #882
- chore(deps-dev): update tox requirement from 4.29.0 to 4.30.2 by @dependabot[bot] in #884
- feat: Updating SPDX license list to 3.27.0 by @jkowalleck in #885
Full Changelog: v11.0.0...v11.1.0
Contributors
jkowalleck and dependabot
Assets 6
v11.0.0
v11.0.0 (2025-07-21)
BREAKING Changes
What's Changed
- feat!: ignore unknown properties when deserializing by @jkowalleck in #853
Full Changelog: v10.5.0...v11.0.0
Contributors
jkowalleck
Assets 6
v10.5.0
v10.5.0 (2025-07-20)
Features
What's Changed
- chore: dependency tests in CI/CT by @jkowalleck in #848
- chore(deps-dev): update coverage requirement from 7.9.1 to 7.9.2 by @dependabot[bot] in #841
- chore(deps-dev): update bandit requirement from 1.8.5 to 1.8.6 by @dependabot[bot] in #849
- feat: use only nonGPL dependencies by @jkowalleck in #854
Full Changelog: v10.4.1...v10.5.0
Contributors
jkowalleck and dependabot
Assets 6
v10.4.1
v10.4.1 (2025-07-08)
Bug Fixes
-
Add runtime dependnecy
typing_extensions>=4.6; python_version<"3.13"(#845,95b560a) -
Added runtime dependnecy
referencing>=0.28.4"(#846,4d01e87)
What's Changed
- fix: add runtime dependnecy
typing_extensions>=4.6; python_version<"3.13"by @jkowalleck in #845 - fix: added runtime dependnecy
referencing>=0.28.4"by @jkowalleck in #846
Full Changelog: v10.4.0...v10.4.1
Contributors
jkowalleck
Assets 6
v10.4.0
v10.4.0 (2025-07-08)
Bug Fixes
-
Issue
DeprecationWarningsfor deprecated properties properly (#838,34a11aa) -
Removed meaningless pattern checks for CycloneDX 1.2 JSON schema (#843,
6e8083a)
Features
What's Changed
- fix: issue
DeprecationWarningsfor deprecated properties properly by @KAWAHARA-souta in #838 - feat: validators return specific error classes by @jkowalleck in #840
- feat: decorate deprecated symbols by @KAWAHARA-souta in #839
- fix: removed meaningless pattern checks for CycloneDX 1.2 JSON schema by @jkowalleck in #843
New Contributors
- @KAWAHARA-souta made their first contribution in #838
Full Changelog: v10.3.0...v10.4.0
Contributors
jkowalleck and KAWAHARA-souta
Assets 6
v10.3.0
v10.3.0 (2025-06-30)
Documentation
- Instructions for code style (
160810f)
Features
What's Changed
- chore: update precommit hook by @jkowalleck in #833
- chore(deps-dev): update flake8 requirement from 7.2.0 to 7.3.0 by @dependabot in #829
- chore(deps-dev): update tox requirement from 4.26.0 to 4.27.0 by @dependabot in #832
- chore(deps-dev): update mypy requirement from 1.16.0 to 1.16.1 by @dependabot in #831
- chore(deps-dev): update bandit requirement from 1.8.3 to 1.8.5 by @dependabot in #830
- chore(deps-dev): update coverage requirement from 7.8.2 to 7.9.1 by @dependabot in #825
- feat: schema based validation may return iterable of all errors by @e3krisztian in #834
- chore(deps): update lxml requirement from >=4,<6 to >=4,<7 by @dependabot in #835
New Contributors
- @e3krisztian made their first contribution in #834
Full Changelog: v10.2.0...v10.3.0
Contributors
e3krisztian, jkowalleck, and dependabot
Assets 6
v10.2.0
v10.2.0 (2025-06-10)
Bug Fixes
Features
What's Changed
- feat: add support for component's evidences according to spec by @OxPirates in #810
- fix:
VulnerabilityScoreSource.get_from_vector()forCVSS_V3_1andCVSS_V4by @jkowalleck in #824
New Contributors
- @OxPirates made their first contribution in #810
Full Changelog: v10.1.0...v10.2.0
Contributors
jkowalleck and OxPirates
Assets 6
v10.1.0
v10.1.0 (2025-06-05)
Features
What's Changed
- chore(deps): bump python-semantic-release/python-semantic-release from 9.21.1 to 10.0.2 by @dependabot in #818
- chore(deps): bump python-semantic-release/publish-action from 9 to 10 by @dependabot in #819
- style: pyupgrade 3.9 by @jkowalleck in #822
- feat: Pulled SPDX license IDs v1.0-3.26.0 by @jkowalleck in #823
Full Changelog: v10.0.2...v10.1.0
Contributors
jkowalleck and dependabot
Assets 6
v10.0.2
v10.0.2 (2025-06-02)
Bug Fixes
What's Changed
- chore(deps): bump python-semantic-release/python-semantic-release from 9.21.0 to 9.21.1 by @dependabot in #813
- chore: GH workflow permissions by @jkowalleck in #814
- chore(deps-dev): update tox requirement from 4.25.0 to 4.26.0 by @dependabot in #815
- chore(deps-dev): update coverage requirement from 7.8.0 to 7.8.2 by @dependabot in #816
- fix:
model.BomMetaData.componentsetter typehint by @dependabot in #817 - style: shorten typehint-ignores by @jkowalleck in #820
Full Changelog: v10.0.1...v10.0.2
Contributors
jkowalleck and dependabot
Assets 6
v10.0.1
v10.0.1 (2025-05-10)
Bug Fixes
What's Changed
- ci: test macos latest by @jkowalleck in #802
- chore(deps-dev): update pep8-naming requirement from 0.14.1 to 0.15.1 by @dependabot in #811
- fix: Add missing comparator for VulnerabilityAnalysis by @haklir in #812
New Contributors
Full Changelog: v10.0.0...v10.0.1
Contributors
jkowalleck, dependabot, and haklir