Releases: CycloneDX/cyclonedx-core-java
Releases · CycloneDX/cyclonedx-core-java
cyclonedx-core-java-10.0.0
What's Changed
Breaking Changes 🚨
- Support CycloneDX 1.6.1 by @jkowalleck & @mr-zepol in #552
- Move classes from package by @mr-zepol in #501
- Fix Env vars de/serialization for formulation by @mr-zepol in #486
- Fix Issue 498 by @mr-zepol in #500
Enhancements 🚀
- Reduce duplicated code by @mr-zepol in #556
- Update vulnerabilities to use new Tool specification by @shaikhu in #438
- feat: enhance enums to have from*(String) methods by @jeremylong in #561
- Allow to specify prettyPrint for toJsonString method by @mr-zepol in #569
Bug Fixes 🐛
Dependency Updates 🤖
- Bump com.networknt:json-schema-validator from 1.5.2 to 1.5.3 by @dependabot in #545
- Bump com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.18.0 to 2.18.1 by @dependabot in #544
- Bump JamesIves/github-pages-deploy-action from 4.6.8 to 4.6.9 by @dependabot in #548
- Bump org.junit.jupiter:junit-jupiter-engine from 5.11.2 to 5.11.3 by @dependabot in #540
- Bump org.junit.jupiter:junit-jupiter-params from 5.11.2 to 5.11.3 by @dependabot in #539
- Bump commons-io:commons-io from 2.17.0 to 2.18.0 by @dependabot in #555
- Bump github/codeql-action from 3.26.13 to 3.27.5 by @dependabot in #553
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 by @dependabot in #554
- Bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #542
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.10.1 to 3.11.1 by @dependabot in #546
- Bump actions/setup-java from 4.4.0 to 4.5.0 by @dependabot in #543
- Bump com.networknt:json-schema-validator from 1.5.3 to 1.5.4 by @dependabot in #557
- Bump com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.18.1 to 2.18.2 by @dependabot in #558
- Bump org.cyclonedx:cyclonedx-maven-plugin from 2.9.0 to 2.9.1 by @dependabot in #560
- Bump JamesIves/github-pages-deploy-action from 4.6.9 to 4.7.1 by @dependabot in #559
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.11.1 to 3.11.2 by @dependabot in #567
- Bump github/codeql-action from 3.27.5 to 3.27.6 by @dependabot in #564
- Bump JamesIves/github-pages-deploy-action from 4.7.1 to 4.7.2 by @dependabot in #563
- Bump github/codeql-action from 3.27.6 to 3.27.7 by @dependabot in #570
New Contributors
- @jkowalleck made their first contribution in #552
- @shaikhu made their first contribution in #438
- @jeremylong made their first contribution in #561
Full Changelog: cyclonedx-core-java-9.1.0...cyclonedx-core-java-10.0.0
cyclonedx-core-java-9.1.0
What's Changed
Enhancements 🚀
- Fix Issue 462 by @mr-zepol in #493
- Code Improvements by @mr-zepol in #504
- Polish Code by @mr-zepol in #499
- Enhancements and polish code by @mr-zepol in #506
Bug Fixes 🐛
- Fix Issue 385 by @mr-zepol in #502
- Fix NPE when deserializing
OrganizationalEntity
without name by @nscuro in #508 - Fix apidocs path for doc publish workflow by @nscuro in #535
Dependency Updates 🤖
- Bump github/codeql-action from 3.25.15 to 3.26.0 by @dependabot in #475
- Bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in #476
- Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.5 by @dependabot in #478
- Bump github/codeql-action from 3.26.0 to 3.26.1 by @dependabot in #479
- Bump github/codeql-action from 3.26.1 to 3.26.2 by @dependabot in #482
- Bump org.junit.jupiter:junit-jupiter-engine from 5.10.3 to 5.11.0 by @dependabot in #480
- Bump org.junit.jupiter:junit-jupiter-params from 5.10.3 to 5.11.0 by @dependabot in #481
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.1 to 3.4.0 by @dependabot in #483
- Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0 by @dependabot in #477
- Bump github/codeql-action from 3.26.2 to 3.26.3 by @dependabot in #484
- Bump github/codeql-action from 3.26.3 to 3.26.5 by @dependabot in #487
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.8.0 to 3.10.0 by @dependabot in #488
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.4.0 to 3.5.0 by @dependabot in #489
- Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 by @dependabot in #491
- Bump github/codeql-action from 3.26.5 to 3.26.6 by @dependabot in #490
- Bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in #494
- Bump JamesIves/github-pages-deploy-action from 4.6.3 to 4.6.4 by @dependabot in #496
- Bump actions/setup-java from 4.2.2 to 4.3.0 by @dependabot in #503
- Bump github/codeql-action from 3.26.6 to 3.26.7 by @dependabot in #510
- Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.5 to 3.2.6 by @dependabot in #509
- Bump com.networknt:json-schema-validator from 1.5.1 to 1.5.2 by @dependabot in #513
- Bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in #512
- Bump org.junit.jupiter:junit-jupiter-engine from 5.11.0 to 5.11.1 by @dependabot in #515
- Bump org.junit.jupiter:junit-jupiter-params from 5.11.0 to 5.11.1 by @dependabot in #514
- Bump actions/setup-java from 4.3.0 to 4.4.0 by @dependabot in #516
- Bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #519
- Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.1 to 2.8.2 by @dependabot in #518
- Bump github/codeql-action from 3.26.8 to 3.26.9 by @dependabot in #517
- Bump JamesIves/github-pages-deploy-action from 4.6.4 to 4.6.8 by @dependabot in #522
- Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.6 to 3.2.7 by @dependabot in #521
- Bump github/codeql-action from 3.26.9 to 3.26.10 by @dependabot in #523
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.0 to 3.5.1 by @dependabot in #527
- Bump org.junit.jupiter:junit-jupiter-params from 5.11.1 to 5.11.2 by @dependabot in #526
- Bump github/codeql-action from 3.26.10 to 3.26.12 by @dependabot in #532
- Bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #530
- Bump actions/upload-artifact from 4.4.0 to 4.4.1 by @dependabot in #531
- Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.2 to 2.9.0 by @dependabot in #529
- Bump org.junit.jupiter:junit-jupiter-engine from 5.11.1 to 5.11.2 by @dependabot in #528
- Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @dependabot in #511
- Bump com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.17.2 to 2.18.0 by @dependabot in #520
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.10.0 to 3.10.1 by @dependabot in #524
- Bump actions/upload-artifact from 4.4.1 to 4.4.2 by @dependabot in #533
- Bump actions/upload-artifact from 4.4.2 to 4.4.3 by @dependabot in #534
- Bump github/codeql-action from 3.26.12 to 3.26.13 by @dependabot in #537
Other Changes
Full Changelog: cyclonedx-core-java-9.0.5...cyclonedx-core-java-9.1.0
cyclonedx-core-java-9.0.5
What's Changed
Enhancements 🚀
- Teach versions / generators about their supported file formats by @sschuberth in #445
- BOM string creation improvements by @sschuberth in #459
- Make Vulnerability objects comparable by value by @SaberStrat in #464
Bug Fixes 🐛
- Handle serialization of empty LicenseChoice correctly by @patveck in #441
- Fix missing offline mapping for
jsf-0.82.schema.json
by @nscuro in #469 - Fix
ObjectLocator
not working when BOM doesn't have ametadata.component
node by @nscuro in #456
Dependency Updates 🤖
- Bump com.networknt:json-schema-validator from 1.4.2 to 1.4.3 by @dependabot in #440
- Bump org.junit.jupiter:junit-jupiter-engine from 5.10.2 to 5.10.3 by @dependabot in #442
- Bump org.junit.jupiter:junit-jupiter-params from 5.10.2 to 5.10.3 by @dependabot in #443
- Bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in #451
- Bump actions/download-artifact from 4.1.7 to 4.1.8 by @dependabot in #452
- Bump JamesIves/github-pages-deploy-action from 4.6.1 to 4.6.3 by @dependabot in #450
- Bump com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.17.1 to 2.17.2 by @dependabot in #449
- Bump com.networknt:json-schema-validator from 1.4.3 to 1.5.0 by @dependabot in #448
- Bump org.assertj:assertj-core from 3.26.0 to 3.26.3 by @dependabot in #453
- Bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in #444
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.0 to 3.3.1 by @dependabot in #454
- Bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in #458
- Bump org.apache.maven.plugins:maven-release-plugin from 3.1.0 to 3.1.1 by @dependabot in #457
- Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0 by @dependabot in #461
- Bump commons-codec:commons-codec from 1.17.0 to 1.17.1 by @dependabot in #460
- Bump actions/setup-java from 4.2.1 to 4.2.2 by @dependabot in #474
- Bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in #473
- Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.0 to 2.8.1 by @dependabot in #472
- Bump github/codeql-action from 3.25.12 to 3.25.15 by @dependabot in #470
- Bump com.networknt:json-schema-validator from 1.5.0 to 1.5.1 by @dependabot in #467
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.8.0 by @dependabot in #465
New Contributors
- @patveck made their first contribution in #441
- @SaberStrat made their first contribution in #464
Full Changelog: cyclonedx-core-java-9.0.4...cyclonedx-core-java-9.0.5
9.0.4
What's Changed
Enhancements 🚀
Bug Fixes 🐛
- Fix possible XXE during XML schema version detection by @mr-zepol in #434
- Fix path to
jacoco.xml
for PR coverage reporting by @nscuro in #433
Dependency Updates 🤖
- Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.1 to 3.4.2 by @dependabot in #435
- Bump com.networknt:json-schema-validator from 1.4.0 to 1.4.2 by @dependabot in #436
Full Changelog: cyclonedx-core-java-9.0.3...cyclonedx-core-java-9.0.4
cyclonedx-core-java-9.0.3
What's Changed
- Code Improvements by @mr-zepol in #376
- Add extensible types during license serialization by @mr-zepol in #414
- Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0 by @dependabot in #417
- Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.4.1 to 3.5.0 by @dependabot in #415
- Add missing equals and hashCode by @mr-zepol in #419
- Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #420
- Fix Evidence Serialization by @mr-zepol in #423
- Improve De/Serializer by @mr-zepol in #421
- Add Missing Annotations to filter based on spec by @mr-zepol in #416
- External References and Metadata Validations by @mr-zepol in #426
- Add
CODEOWNERS
file by @nscuro in #425 - Serializer for Properties and Hashes for backwards compatibility by @mr-zepol in #428
- Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.0 by @dependabot in #429
- Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.3.0 by @dependabot in #430
- CI pipeline improvements by @nscuro in #424
- Fix order of elements for generated SBOMs to match the specs by @mr-zepol in #431
Full Changelog: https://github.com/CycloneDX/cyclonedx-core-java/commits/cyclonedx-core-java-9.0.3