2.1.2

What's Changed

• added gradle package finder by @san-zrl in #114
• fixed github purls and made them scannable by @san-zrl in #118
• upgraded to sonar-cryptography-plugin:1.4.0 by @san-zrl in #120
• Bump dev.gradleplugins:gradle-api from 7.6 to 8.11.1 by @dependabot in #116
• Bump org.yaml:snakeyaml from 1.33 to 2.3 by @dependabot in #115
• fixed git link issue and removed gradle dep by @san-zrl in #124
• fixed wrong package folder when falling back to master branch by @san-zrl in #128
• Bump com.diffplug.spotless:spotless-maven-plugin from 2.44.2 to 2.44.3 by @dependabot in #127
• Bump org.apache.maven.plugins:maven-compiler-plugin from 3.13.0 to 3.14.0 by @dependabot in #126
• Bump org.yaml:snakeyaml from 2.3 to 2.4 by @dependabot in #122
• fixed file upload to show compliance results by @san-zrl in #130
• upgrade to sonar-cryptography-1.4.2 and giturl normalization by @san-zrl in #132
• Bump com.puppycrawl.tools:checkstyle from 10.21.2 to 10.21.3 by @dependabot in #131
• Update example CBOMs by @n1ckl0sk0rtge in #133

Full Changelog: 2.1.1...2.1.2

2.1.1

New features

• Generate CBOM based on package url (PURL) @san-zrl in #87

What's Changed

• Bump com.puppycrawl.tools:checkstyle from 10.20.1 to 10.21.1 by @dependabot in #88
• Bump nanoid from 3.3.7 to 3.3.8 in /frontend by @dependabot in #86
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.9.0 to 2.9.1 by @dependabot in #81
• Bump org.yaml:snakeyaml from 1.33 to 2.3 by @dependabot in #79
• Update Dependencies by @n1ckl0sk0rtge in #89
• Bump com.diffplug.spotless:spotless-maven-plugin from 2.43.0 to 2.44.1 by @dependabot in #93
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.2 by @dependabot in #92
• Bump com.google.googlejavaformat:google-java-format from 1.25.0 to 1.25.2 by @dependabot in #91
• Bump com.diffplug.spotless:spotless-maven-plugin from 2.44.1 to 2.44.2 by @dependabot in #96
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 by @dependabot in #100
• Bump quarkus.platform.version from 3.17.5 to 3.17.8 by @dependabot in #101
• Derive package folder from purl by @san-zrl in #98
• Code improvements & Clarify projectIdentifiers for CBOMReadModel by @n1ckl0sk0rtge in #103
• fixed indexing of modules for java and python by @san-zrl in #107
• Bump quarkus.platform.version from 3.17.8 to 3.18.1 by @dependabot in #106
• Bump com.puppycrawl.tools:checkstyle from 10.21.1 to 10.21.2 by @dependabot in #105
• Bump org.apache.httpcomponents.client5:httpclient5 from 5.4.1 to 5.4.2 by @dependabot in #108
• Update dependecies frontend, update helm chart by @n1ckl0sk0rtge in #110
• update readme, update sbom by @n1ckl0sk0rtge in #111
• Downgrade quarkus version by @n1ckl0sk0rtge in #113

Full Changelog: 2.0.0...2.1.1

2.0.0

New Features

• Allow scanning private repos, update error handling in frontend by @n1ckl0sk0rtge in #73
• Allow parallel scan request to the same backend

What's Changed

• fixed compliance logs, nonnull annotations, testing by @san-zrl in #53
• Bump cookie and express in /frontend by @dependabot in #49
• cleaned code to get rid IDE/build warnings by @san-zrl in #57
• Update readme, add example CBOMs, update next steps by @n1ckl0sk0rtge in #63
• Add LF as Code Owner by @n1ckl0sk0rtge in #64
• Bump jackson.version from 2.18.0 to 2.18.1 by @dependabot in #60
• Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.5.0 to 3.6.0 by @dependabot in #59
• healthcheck bug fix and add podman compatibility by @mtcolman in #68
• CBOMkit2: Refactoring of the code for better maintainability and further development by @n1ckl0sk0rtge in #71
• Bump com.puppycrawl.tools:checkstyle from 10.20.0 to 10.20.1 by @dependabot in #72
• Bump surefire-plugin.version from 3.5.1 to 3.5.2 by @dependabot in #65
• Bump org.sonarsource.api.plugin:sonar-plugin-api from 10.11.0.2468 to 10.14.0.2599 by @dependabot in #70
• Bump org.sonarsource.sonarqube:sonar-plugin-api-impl from 10.6.0.92116 to 10.7.0.96327 by @dependabot in #55
• Bump com.google.googlejavaformat:google-java-format from 1.24.0 to 1.25.0 by @dependabot in #75
• Bump quarkus.platform.version from 3.16.3 to 3.16.4 by @dependabot in #76
• Allow scanning private repos, update error handling in frontend by @n1ckl0sk0rtge in #73
• fix container deployment and quarkus bug by @n1ckl0sk0rtge in #77

New Contributors

• @mtcolman made their first contribution in #68

Full Changelog: 1.1.2...2.0.0

1.1.2

What's Changed

• fix helm chart by @san-zrl in #43
• fix: persist scan metadata by @san-zrl in #46
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.2 to 2.9.0 by @dependabot in #45
• Bump surefire-plugin.version from 3.5.0 to 3.5.1 by @dependabot in #44
• Bump com.google.googlejavaformat:google-java-format from 1.23.0 to 1.24.0 by @dependabot in #42
• Feature/update helm deployment by @n1ckl0sk0rtge in #50
• Fix dependecies by @n1ckl0sk0rtge in #51

New Contributors

• @san-zrl made their first contribution in #43

Full Changelog: 1.1.1...1.1.2

1.1.1

What's Changed

• Fix error were scan fails
• Update README.md by @n1ckl0sk0rtge in #41

Full Changelog: 1.1.0...1.1.1

1.1.0

What's Changed

• fetch version from github by @n1ckl0sk0rtge in #30
• Bump docker/build-push-action from 5 to 6 by @dependabot in #31
• Bump org.sonarsource.python:python-frontend from 4.21.0.16473 to 4.22.0.16914 by @dependabot in #32
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.1 to 2.8.2 by @dependabot in #35
• Bump quarkus.platform.version from 3.14.4 to 3.15.1 by @dependabot in #34
• Show more CBOM information by @hugoqnc in #36
• Bump org.sonarsource.sonarqube:sonar-plugin-api-impl from 10.6.0.92116 to 10.7.0.96327 by @dependabot in #40
• Bump jackson.version from 2.17.2 to 2.18.0 by @dependabot in #38
• Bump org.sonarsource.java:java-frontend from 8.3.0.36747 to 8.4.0.37032 by @dependabot in #39

Full Changelog: 1.0.0...1.1.0

1.0.0

What's Changed

• Add maven tests by @n1ckl0sk0rtge in #11
• Update cicd by @n1ckl0sk0rtge in #13
• Update Sonar Plugin Version by @n1ckl0sk0rtge in #14
• Update Github actions by @n1ckl0sk0rtge in #15
• Bump com.google.googlejavaformat:google-java-format from 1.22.0 to 1.23.0 by @dependabot in #4
• Bump quarkus.platform.version from 3.12.2 to 3.14.4 by @dependabot in #1
• Bump surefire-plugin.version from 3.2.5 to 3.5.0 by @dependabot in #5
• Bump org.sonarsource.java:java-frontend from 8.1.0.36477 to 8.3.0.36747 by @dependabot in #2
• Bump org.sonarsource.api.plugin:sonar-plugin-api from 9.17.0.587 to 10.11.0.2468 by @dependabot in #12
• Bump axios from 1.7.2 to 1.7.7 in /frontend by @dependabot in #10
• Bump webpack from 5.88.1 to 5.94.0 in /frontend by @dependabot in #9
• Bump send and express in /frontend by @dependabot in #8
• Bump serve-static and express in /frontend by @dependabot in #7
• Update image references, Update readme by @n1ckl0sk0rtge in #16
• Update Github Actions by @n1ckl0sk0rtge in #17
• Bump org.sonarsource.sonarqube:sonar-plugin-api-impl from 10.4.1.88267 to 10.6.0.92116 by @dependabot in #21
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.0 to 2.8.1 by @dependabot in #20
• Bump org.sonarsource.python:python-frontend from 4.19.0.15616 to 4.21.0.16473 by @dependabot in #19
• Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.5.0 by @dependabot in #18
• add updated Keycloak Cbom by @n1ckl0sk0rtge in #22
• Update frontend build pipeline by @n1ckl0sk0rtge in #23
• update readme by @n1ckl0sk0rtge in #24
• Update CBOM by @n1ckl0sk0rtge in #25
• Update frontend descriptions by @hugoqnc in #27
• Update CI/CD by @n1ckl0sk0rtge in #26
• Update docker deployment by @n1ckl0sk0rtge in #28
• update keycloak cbom by @n1ckl0sk0rtge in #29

Full Changelog: https://github.com/IBM/cbomkit/commits/1.0.0