Next | Query returned 31 messages, browsing 11 to 20 | Previous

History of commit frequency

CVS Commit History:


   2023-12-17 23:22:06 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
py-cyclonedx-python-lib: update to 6.0.0.

v6.0.0 (2023-12-10)

Breaking

    feat!: v6.0.0 (#492)

Breaking Changes

    Removed symbols that were already marked as deprecated (via #493)
    Removed symbols in parser.* (#489 via #495)
    Removed output.LATEST_SUPPORTED_SCHEMA_VERSION (#491 via #494)
    Serialization of unsupported enum values might downgrade/migrate/omit them \ 
(#490 via #496)
    Handling might raise warnings if a data loss occurred due to omitting.
    The result is a guaranteed valid XML/JSON, since no (enum-)invalid values \ 
are rendered.
    Serialization of any model.component.Component with unsupported type raises \ 
exception.serialization.SerializationOfUnsupportedComponentTypeException (#490 \ 
via #496)
    Object model.bom_ref.BomRef's property value defaults to Null, was arbitrary \ 
UUID (#504 via #505)
    This change does not affect serialization. All bom-refs are guaranteed to \ 
have unique values on rendering.
    Removed helpers from public API (#503 via #506)

Added

    Basic support for CycloneDX 1.5 (#404 via #488) -- Thanks to @Churro
        No data models were enhanced nor added, yet.
        Pull requests to add functionality are welcome.
        Existing enumerable got new cases, to reflect features of CycloneDX 1.5 \ 
(#404 via #488)
        Outputters were enabled to render CycloneDX 1.5 (#404 via #488)

Tests

    Created (regression/unit/integration/functional) tests for CycloneDX 1.5 \ 
(#404 via #488)
    Created (regression/functional) tests for Enums' handling and completeness \ 
(#490 via #496)

Misc

    Bumped dependency py-serializable@^0.16, was @^0.15 (via #496)

API Changes — the details for migration

    Added new sub-package exception.serialization (via #496)
    Removed class models.ComparableTuple (#503 via #506)
    Enum model.ExternalReferenceType got new cases, to reflect features for \ 
CycloneDX 1.5 (#404 via #488)
    Removed function models.get_now_utc (#503 via #506)
    Removed function models.sha1sum (#503 via #506)
    Enum model.component.ComponentType got new cases, to reflect features for \ 
CycloneDX 1.5 (#404 via #488)
    Removed model.component.Component.__init__()'s deprecated optional kwarg \ 
namespace (via #493)
    Use kwarg group instead.
    Removed model.component.Component.__init__()'s deprecated optional kwarg \ 
license_str (via #493)
    Use kwarg licenses instead.
    Removed deprecated method model.component.Component.get_namespace() (via #493)
    Removed class models.dependency.DependencyDependencies (#503 via #506)
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional \ 
kwarg source_name (via #493)
    Use kwarg source instead.
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional \ 
kwarg source_url (via #493)
    Use kwarg source instead.
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional \ 
kwarg recommendations (via #493)
    Use kwarg recommendation instead.
    Removed model.vulnerability.VulnerabilityRating.__init__()'s deprecated \ 
optional kwarg score_base (via #493)
    Use kwarg score instead.
    Enum model.vulnerability.VulnerabilityScoreSource got new cases, to reflect \ 
features for CycloneDX 1.5 (#404 via #488)
    Removed output.LATEST_SUPPORTED_SCHEMA_VERSION (#491 via #494)
    Removed deprecated function output.get_instance() (via #493)
    Use function output.make_outputter() instead.
    Added new class output.json.JsonV1Dot5, to reflect CycloneDX 1.5 (#404 via #488)
    Added new item to dict output.json.BY_SCHEMA_VERSION, to reflect CycloneDX \ 
1.5 (#404 via #488)
    Added new class output.xml.XmlV1Dot5, to reflect CycloneDX 1.5 (#404 via #488)
    Added new item to dict output.xml.BY_SCHEMA_VERSION, to reflect CycloneDX \ 
1.5 (#404 via #488)
    Removed class parser.ParserWarning (#489 via #495)
    Removed class parser.BaseParser (#489 via #495)
    Enum schema.SchemaVersion got new case V1_5, to reflect CycloneDX 1.5 (#404 \ 
via #488)
   2023-12-07 09:33:39 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
py-cyclonedx-python-lib: update to 5.2.0.

Breaking Changes

    Object model.bom_ref.BomRef's property value defaults to Null, was arbitrary \ 
UUID (#504 via #505)
    This change does not affect serialization. All bom-refs are guaranteed to \ 
have unique values on rendering.
    Removed helpers from public API (#503 via #506)

see the details here: #492
   2023-11-08 00:00:55 by Thomas Klausner | Files touched by this commit (1)
Log message:
py-cyclonedx-python-lib: annotate workaround
   2023-11-07 23:58:59 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
py-cyclonedx-python-lib: update to 5.1.1.

5.1.1

Bugfix release

5.1.0

Documentation

    docs: advance license docs (f61a730)

Feature

    feat: guarantee unique BomRefs in serialization result (#479) (a648775)
    Incorporate output.BomRefDiscriminator on serialization

5.0.1

What's Changed

    docs: fix RTFD build by @jkowalleck in #476
    docs: revisit project meta by @jkowalleck in #475
    chore: make pyproject parsable by dependabot by @jkowalleck in #477
    chore(deps): bump python-semantic-release/python-semantic-release from 8.0.8 \ 
to 8.3.0 by @dependabot in #474

5.0.0

BREAKING CHANGES

    Dropped support for python<3.8 (#436 via #441; enable #433)
    Reworked license related models, collections, and factories (#365 via #466)
    Behavior
        Method model.bom.Bom.validate() will throw \ 
exception.LicenseExpressionAlongWithOthersException, if detecting invalid \ 
license constellation (#453 via #452)
        Fixed tuple comparison when unequal lengths (via #461)
    API
        Enum schema.SchemaVersion is no longer string-like (#442 via #447)
        Enum schema.OutputVersion is no longer string-like (#442 via #447)
        Abstract class output.BaseOutput requires implementation of new method \ 
output_format (#446 via #447)
        Abstract method output.BaseOutput.output_as_string() got new optional \ 
parameter indent (#437 via #458)
        Abstract method output.BaseOutput.output_as_string() accepts arbitrary \ 
kwargs (via #458, #462)
        Removed class factory.license.LicenseChoiceFactory (via #466)
        The old functionality was integrated into factory.license.LicenseFactory.
        Method factory.license.LicenseFactory.make_from_string()'s parameter \ 
name_or_spdx was renamed to value (via #466)
        Method factory.license.LicenseFactory.make_from_string()'s return value \ 
can also be a LicenseExpression (#365 via #466)
        The behavior imitates the old \ 
factory.license.LicenseChoiceFactory.make_from_string()
        Renamed class module.License to module.license.DisjunctliveLicense (#365 \ 
via #466)
        Removed class module.LicenseChoice (#365 via #466)
        Use dedicated classes module.license.DisjunctliveLicense and \ 
module.license.LicenseExpression instead
        All occurrences of models.LicenseChoice were replaced by \ 
models.licenses.License (#365 via #466)
        All occurrences of SortedSet[LicenseChoice] were specialized to \ 
models.license.LicenseRepository (#365 via #466)

Fixed

    Serialization of multy-licenses (#365 via #466)
    Detect unused "dependent" components in model.bom.validate() (via #464)

Changed

    Updated latest supported list of supported SPDX license identifiers (via #433)
    Shipped schema files are moved to a protected space (via #433)
    These files were never intended for public use.
    XML output uses a default namespace, which makes results smaller. (#438 via #458)

Added

    Support for Python 3.12 (via #460)
    JSON- & XML-Validators (#432, #446 via #433, #448)
    The functionality might require additional dependencies, that can be \ 
installed with the extra "validation".
    See the docs in section "Installation" for details.
    JSON & XML can be generated in a more human-friendly form (#437, #438 \ 
via #458)
    Type hints, typings & overloads for better integration downstream (via #463)
    API
        New function output.make_outputter() (via #469)
        This replaces the deprecated function output.get_instance().
        New sub-package validation (#432, #446 via #433, #448, #469, #468, #469)
        New class exception.MissingOptionalDependencyException (#432 via #433)
        New class exception.LicenseExpressionAlongWithOthersException (#453 via #452)
        New dictionaries output.{json,xml}.BY_SCHEMA_VERSION (#446 via #447)
        Existing implementations of class output.BaseOutput now have a new \ 
method output_format (#446 via #447)
        Existing implementations of method output.BaseOutput.output_as_string() \ 
got new optional parameter indent (#437 via #458)
        Existing implementations of method output.BaseOutput.output_to_file() \ 
got new optional parameter indent (#437 via #458)
        New method factory.license.LicenseFactory.make_with_expression() (via #466)
        New class model.license.DisjunctiveLicense (#365 via #466)
        New class model.license.LicenseExpression (#365 via #466)
        New class model.license.LicenseRepository (#365 via #466)
        New class serialization.LicenseRepositoryHelper (#365 via #466)

Deprecated

    Function output.get_instance() might be removed, use output.make_outputter() \ 
instead (via #469)

Tests

    Added validation tests with official CycloneDX schema test data (#432 via #433)
    Use proper snapshots, instead of pseudo comparison (#437 via #464)
    Added regression test for bug #365 (via #466, #467)

Misc

    Dependencies: bumped py-serializable@^0.15.0, was @^0.11.1 (via #458, #463, \ 
#464, #466)
    Style: streamlined quotes and strings (via #472)
    Chore: bumped internal dev- and QA-tools (#436 via #441, #472)
    Chore: added more QA tools to prevent common security issues (via #473)
   2023-10-28 21:57:26 by Thomas Klausner | Files touched by this commit (516) | Package updated
Log message:
python/wheel.mk: simplify a lot, and switch to 'installer' for installation

This follows the recommended bootstrap method (flit_core, build, installer).

However, installer installs different files than pip, so update PLISTs
for all packages using wheel.mk and bump their PKGREVISIONs.
   2023-09-09 22:56:01 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
py-cyclonedx-python-lib: update to 4.1.0.

feat: programmatic access to library's version (#417)
and lots of dependency updates
   2023-07-30 17:32:50 by Adam Ciarcinski | Files touched by this commit (19)
Log message:
Remove dependencies for Python 3.7
   2023-07-06 00:19:46 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
py-cyclonedx-python-lib: update to 4.0.1.

Fix

    Conditional warning if no root dependencies were found (#398) (c8175bb)

Documentation

    examples: README (#399) (1d262ba)
    Add exaple how to build and serialize (#397) (65e22bd)
   2023-05-04 13:38:14 by Thomas Klausner | Files touched by this commit (4) | Package updated
Log message:
py-cyclonedx-python-lib: update to 4.0.0.

Feature

    Release 4.0.0 #341) (8fb1b14)

Breaking

    Large portions of this library have been re-written for this release and \ 
many methods and contracts have changed. (8fb1b14)
    Model classes changed to relocated Vulnerability at Bom, not at Component \ 
(8fb1b14)
    Model classes changed to relocated Vulnerability at Bom, not at Component \ 
(8fb1b14)
    (8fb1b14)
   2023-03-29 11:04:03 by Thomas Klausner | Files touched by this commit (7)
Log message:
*: use PYTHON_VERSION instead of comparing PYPKGPREFIX

Next | Query returned 31 messages, browsing 11 to 20 | Previous