diff --git a/CHANGELOG.md b/CHANGELOG.md index fbaf8844..2a6a5bf6 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,20 +1,17 @@ # CHANGELOG +## Unreleased -## v4.6.1 (2024-09-30) +### Documentation -### Chore +* docs(chaneglog): omit chore/ci/refactor/style/test/build + +Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`824dc28`](https://github.com/CycloneDX/cyclonedx-python/commit/824dc2898cb21f14841f835b8b2703301e87f0f8)) -* chore: trusted publishing (#795) -fixes #794 - ---------- - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> -Signed-off-by: semantic-release <semantic-release@bot.local> -Co-authored-by: semantic-release <semantic-release@bot.local> ([`721f12d`](https://github.com/CycloneDX/cyclonedx-python/commit/721f12d1a5799e9766fd4da79f54fd11c5776824)) + +## v4.6.1 (2024-09-30) ### Documentation @@ -34,12 +31,6 @@ Signed-off-by: Steve (Gadget) Barnes <gadgetsteve@hotmail.com> Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> Co-authored-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`9e8a5d7`](https://github.com/CycloneDX/cyclonedx-python/commit/9e8a5d72045b3477e5523ed891493c29a584f35f)) -### Unknown - -* tests: consolidate cli runner (#806) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`c7b5b1a`](https://github.com/CycloneDX/cyclonedx-python/commit/c7b5b1a37332b3991f3066d306cb179d6004fe5a)) - ## v4.6.0 (2024-09-20) @@ -88,25 +79,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`dddcb5d`](https: ## v4.5.0 (2024-06-10) -### Chore - -* chore: shield_ossf-best-practices subbary - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`1a1ad60`](https://github.com/CycloneDX/cyclonedx-python/commit/1a1ad606af261fc0e13095306571b2073ad4b3c3)) - -### Ci - -* ci: modernize artifact action (#737) - -supersedes #625 -supersedes #624 - ---------- - -Signed-off-by: dependabot[bot] <support@github.com> -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`1222201`](https://github.com/CycloneDX/cyclonedx-python/commit/122220199bf1185c2c607c2c9774e4f39427e866)) - ### Documentation * docs: exclude dep bumps from changelog (#750) @@ -140,16 +112,6 @@ only if `--PEP-639` is also given. Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`e9cc805`](https://github.com/CycloneDX/cyclonedx-python/commit/e9cc8058bb299e98a6f645426a2626bcfa3f06eb)) -### Refactor - -* refactor: const for purl type `pypi` (#754) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`cba521e`](https://github.com/CycloneDX/cyclonedx-python/commit/cba521ee01aeb7bd3309518b4f46ba71d74abac9)) - -* refactor: `extred` -> `extref` (#753) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`a178d2e`](https://github.com/CycloneDX/cyclonedx-python/commit/a178d2ec62e2af7afab05a9807cc24102ff51a19)) - ### Unknown * Create config.yml @@ -199,12 +161,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`8ba9d0b`](https: ## v4.4.0 (2024-04-21) -### Chore - -* chore: semantic-release git commit/sign valid email address - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`692b8ea`](https://github.com/CycloneDX/cyclonedx-python/commit/692b8eaa0aecf7821e829edd6324cf33f07a86b7)) - ### Feature * feat: publish to GHCR (#724) @@ -281,12 +237,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`8ade6e1`](https: ## v4.1.3 (2024-03-15) -### Ci - -* ci: default to python 3.12 (#693) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`dc81c35`](https://github.com/CycloneDX/cyclonedx-python/commit/dc81c35e3389906ef1fe6944ee720b17c47a19e7)) - ### Documentation * docs: imprve `environment` use cases and examples (#690) @@ -340,10 +290,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`50d2a4b`](https: ### Unknown -* tests: modernize testbeds (#667) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`2fd3faf`](https://github.com/CycloneDX/cyclonedx-python/commit/2fd3faf45a5d3b9024bbf47d6e50c995880e2fd4)) - * docs (#666) Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`491e875`](https://github.com/CycloneDX/cyclonedx-python/commit/491e87564d124ccc91e21772423a10434ba5ff28)) @@ -475,12 +421,6 @@ Automatically generated by python-semantic-release ([`70889be`](https://github.c ## v3.11.3 (2023-10-19) -### Chore - -* chore: Update CONTRIBUTING.md - -Signed-off-by: Jan Kowalleck <jan.kowalleck@owasp.org> ([`4adab1c`](https://github.com/CycloneDX/cyclonedx-python/commit/4adab1c4b5d79416db6fa6b24928ec7358ad4268)) - ### Documentation * docs: publish coverage (#600) @@ -544,71 +484,6 @@ Automatically generated by python-semantic-release ([`614f6fa`](https://github.c ## v3.11.1 (2023-07-12) -### Chore - -* chore: finish transition to main branch (#561) - -somebody renamed the `master` branch to `main`. -but forgot to transition the CI triggers. - -fixed this - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`ea233cb`](https://github.com/CycloneDX/cyclonedx-python/commit/ea233cbfced743859842336bfcc0cdd07ad3a7da)) - -* chore: rename file for lowest constraints/requirements (#517) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b4f0403`](https://github.com/CycloneDX/cyclonedx-python/commit/b4f04033452403dd3bf75d3ead034b7c2a92ae8e)) - -* chore: rename file for lowest constraints/requirements (#516) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`a262bdb`](https://github.com/CycloneDX/cyclonedx-python/commit/a262bdb4a1e2692872d6b31ecf694c3cf6f0616f)) - -* chore: rename file for lowest constraints/requirements (#515) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`a096cc7`](https://github.com/CycloneDX/cyclonedx-python/commit/a096cc7c1e890ef87005ccf271bcf5da5093240a)) - -* chore: rename file for lowest constraints/requirements (#514) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`02d8437`](https://github.com/CycloneDX/cyclonedx-python/commit/02d8437bbddf8e02727368abdfb80a7b5313d210)) - -* chore: adjust lowest constraints/requirements (#513) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`c8e6d0d`](https://github.com/CycloneDX/cyclonedx-python/commit/c8e6d0d3f25c8acc1f74b498bfaaf814885da48a)) - -### Ci - -* ci: finish transition to main branch (#560) - -somebody renamed the `master` branch to `main`. -but forgot to transition the CI triggers. - -fixed this - -followup of #558 - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`0ea56c7`](https://github.com/CycloneDX/cyclonedx-python/commit/0ea56c764870240a5636be2ca2ec16ae2e342e43)) - -* ci: adjust release concurrecncy (#559) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`4b0ceac`](https://github.com/CycloneDX/cyclonedx-python/commit/4b0ceac138d309e2b0e4a516161ca3f5b9567c1a)) - -* ci: finish transition to main branch (#558) - -somebody renamed the `master` branch to `main`. -but forgot to transition the CI triggers. - -fixed this - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`7556eb9`](https://github.com/CycloneDX/cyclonedx-python/commit/7556eb98e4e985304a8afd876c8dd2c79f62d298)) - -* ci: add build concurrency (#557) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`fbcde26`](https://github.com/CycloneDX/cyclonedx-python/commit/fbcde26d392a5e3ab463ea92b602ba09d0f941ec)) - -* ci: disable tests on windows with py>=3.8 (#556) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`c95e384`](https://github.com/CycloneDX/cyclonedx-python/commit/c95e384e3f071d6370440410f0d4944c969922ca)) - ### Fix * fix: fix typo in help page (#552) @@ -628,20 +503,6 @@ Automatically generated by python-semantic-release ([`d90b45c`](https://github.c ## v3.11.0 (2023-02-11) -### Chore - -* chore: fix lowest requirements for tests (#499) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`4928515`](https://github.com/CycloneDX/cyclonedx-python/commit/492851592fe8c130a3e55fe79c46bdf1d0def7bc)) - -* chore: add Paul Horton & Jan Kowalleck as a maintainer - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b1a52fc`](https://github.com/CycloneDX/cyclonedx-python/commit/b1a52fc297f0ee774e77ceff47b99d780a4cc58c)) - -* chore: editorconfig - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`2122dba`](https://github.com/CycloneDX/cyclonedx-python/commit/2122dba8fada2336f7fd07dff33321dea165858b)) - ### Documentation * docs: fix typo in CLI help page (#490) ([`a8a8445`](https://github.com/CycloneDX/cyclonedx-python/commit/a8a844504494d10c217ba4739e6ff09b4ca34f67)) @@ -752,17 +613,6 @@ Automatically generated by python-semantic-release ([`24c4163`](https://github.c ## v3.7.4 (2022-12-12) -### Chore - -* chore: dependabot fix config - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`889a83e`](https://github.com/CycloneDX/cyclonedx-python/commit/889a83e4959391d010e536e3ed72f6ddf7a5cb1f)) - -* chore: dependabot interval weekly (#454) - - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`876ed30`](https://github.com/CycloneDX/cyclonedx-python/commit/876ed30b55300ad4abd4b078609d1b8d6e0e08a5)) - ### Fix * fix: ignore broken licenses in env parser (#463) @@ -780,44 +630,6 @@ Automatically generated by python-semantic-release ([`de188b8`](https://github.c ## v3.7.3 (2022-12-11) -### Chore - -* chore: Bump flake8-bugbear from 22.8.23 to 22.9.23 (#422) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.8.23 to 22.9.23. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.8.23...22.9.23) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -Signed-off-by: dependabot[bot] <support@github.com> -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`b05c55a`](https://github.com/CycloneDX/cyclonedx-python/commit/b05c55a7f191521a4d0b4bda29bdef3d250d8b4a)) - -### Ci - -* ci: test dockerimage with more unique version identifier (#453) - - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`5a7fb9a`](https://github.com/CycloneDX/cyclonedx-python/commit/5a7fb9a374b336ee72852d8f4ccd9bcd0dfe0a36)) - -* ci: migrate `set-output` to `>> $GITHUB_OUTPUT` (#452) - - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`bf133a3`](https://github.com/CycloneDX/cyclonedx-python/commit/bf133a3c7a436a25bd6930eae7be435747c8b521)) - -* ci: fix py36 (#451) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b35e2bf`](https://github.com/CycloneDX/cyclonedx-python/commit/b35e2bfaf5703dc23fd9790114f014825a56404e)) - ### Fix * fix: adjust dependency `pip-requirements-parser` to a working version (#450) @@ -854,28 +666,6 @@ Automatically generated by python-semantic-release ([`7aff239`](https://github.c ## v3.7.1 (2022-11-10) -### Chore - -* chore(dep): bump and devide `coverage` (#438) - -* chore(deps): bump `coverage` -* chore(deps): bump `coverage` locked - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`db051d1`](https://github.com/CycloneDX/cyclonedx-python/commit/db051d12660c5b6cc8209234a48f51b9e0657cec)) - -### Ci - -* ci: enable py311 & bump `poetry` (#437) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b7d5a4e`](https://github.com/CycloneDX/cyclonedx-python/commit/b7d5a4eb09e2348df34942d2afdf2a149efd9378)) - -* ci: fix python-version for static-code-analysis (#439) - - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`86daf68`](https://github.com/CycloneDX/cyclonedx-python/commit/86daf688a12c385406422dae3a582a48d0ca5e82)) - ### Fix * fix(EnvironmentParser): reduced crashes if no Classifiers are found (#441) @@ -942,27 +732,6 @@ Automatically generated by python-semantic-release ([`ddea61e`](https://github.c ## v3.6.2 (2022-09-19) -### Chore - -* chore: Bump packageurl-python from 0.9.9 to 0.10.3 (#416) - -Bumps [packageurl-python](https://github.com/package-url/packageurl-python) from 0.9.9 to 0.10.3. -- [Release notes](https://github.com/package-url/packageurl-python/releases) -- [Changelog](https://github.com/package-url/packageurl-python/blob/main/CHANGELOG.rst) -- [Commits](https://github.com/package-url/packageurl-python/compare/v0.9.9...v0.10.3) - ---- -updated-dependencies: -- dependency-name: packageurl-python - dependency-type: direct:production - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Signed-off-by: dependabot[bot] <support@github.com> -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`2d6dade`](https://github.com/CycloneDX/cyclonedx-python/commit/2d6dadef49c6c2fb6bafb2ef10702125f2af11cb)) - ### Fix * fix: CI release pipeline @@ -995,139 +764,6 @@ Automatically generated by python-semantic-release ([`89c262a`](https://github.c ## v3.6.0 (2022-09-16) -### Chore - -* chore: package manifest fix link to homepage and documentation (#401) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`aa5ba35`](https://github.com/CycloneDX/cyclonedx-python/commit/aa5ba35a3677d8ebf5ac4643b2d403003267ef8b)) - -* chore: fix poetry in tox (#411) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b5ceec5`](https://github.com/CycloneDX/cyclonedx-python/commit/b5ceec5f3fb58959a20c26db85316b39e522b8a2)) - -* chore: Bump flake8-bugbear from 22.8.22 to 22.8.23 (#404) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.8.22 to 22.8.23. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.8.22...22.8.23) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Signed-off-by: dependabot[bot] <support@github.com> -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`37f18f8`](https://github.com/CycloneDX/cyclonedx-python/commit/37f18f88337bbfa89f5a40fa203d22aad6b852ef)) - -* chore: Bump flake8-bugbear from 22.7.1 to 22.8.22 (#403) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.7.1 to 22.8.22. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.7.1...22.8.22) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Signed-off-by: dependabot[bot] <support@github.com> -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`1b6e7a0`](https://github.com/CycloneDX/cyclonedx-python/commit/1b6e7a062f8598187122599305eebbad5c76915a)) - -* chore: Bump flake8-isort from 4.1.1 to 4.2.0 (#400) - -Bumps [flake8-isort](https://github.com/gforcada/flake8-isort) from 4.1.1 to 4.2.0. -- [Release notes](https://github.com/gforcada/flake8-isort/releases) -- [Changelog](https://github.com/gforcada/flake8-isort/blob/master/CHANGES.rst) -- [Commits](https://github.com/gforcada/flake8-isort/compare/4.1.1...4.2.0) - ---- -updated-dependencies: -- dependency-name: flake8-isort - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`b4275e7`](https://github.com/CycloneDX/cyclonedx-python/commit/b4275e7943d4428805c8533da386313c1229a83a)) - -* chore: Bump types-toml from 0.10.7 to 0.10.8 (#387) - -Bumps [types-toml](https://github.com/python/typeshed) from 0.10.7 to 0.10.8. -- [Release notes](https://github.com/python/typeshed/releases) -- [Commits](https://github.com/python/typeshed/commits) - ---- -updated-dependencies: -- dependency-name: types-toml - dependency-type: direct:production - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`4a68f5f`](https://github.com/CycloneDX/cyclonedx-python/commit/4a68f5fd47c657735f57dceb66c9625d0839e2b3)) - -* chore: Bump mypy from 0.961 to 0.971 (#390) - -Bumps [mypy](https://github.com/python/mypy) from 0.961 to 0.971. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.961...v0.971) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`f2a7ec4`](https://github.com/CycloneDX/cyclonedx-python/commit/f2a7ec4b2c4919e32d73957e22fb320fb9ca843c)) - -* chore: Bump tox from 3.25.0 to 3.25.1 (#384) - -Bumps [tox](https://github.com/tox-dev/tox) from 3.25.0 to 3.25.1. -- [Release notes](https://github.com/tox-dev/tox/releases) -- [Changelog](https://github.com/tox-dev/tox/blob/master/docs/changelog.rst) -- [Commits](https://github.com/tox-dev/tox/compare/3.25.0...3.25.1) - ---- -updated-dependencies: -- dependency-name: tox - dependency-type: direct:development - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`cfd4a73`](https://github.com/CycloneDX/cyclonedx-python/commit/cfd4a736e2e8df83d6d998cadb68eeb822d6a8b1)) - -* chore: Bump flake8-bugbear from 22.6.22 to 22.7.1 (#385) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.6.22 to 22.7.1. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.6.22...22.7.1) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`3ac5df9`](https://github.com/CycloneDX/cyclonedx-python/commit/3ac5df95f45675c1780b6c8cb7a9e2ecf422da81)) - ### Documentation * docs: describe `cyclonedx-py` rather than `cyclonedx-bom` @@ -1163,25 +799,6 @@ docs: describe command line usages as `cyclonedx-py` rather than `cyclonedx-bom` ## v3.5.0 (2022-06-27) -### Chore - -* chore: Bump flake8-bugbear from 22.4.25 to 22.6.22 (#376) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.4.25 to 22.6.22. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.4.25...22.6.22) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`7139bb0`](https://github.com/CycloneDX/cyclonedx-python/commit/7139bb093e9c7b3585abaf193a2dee5a63c1ec1b)) - ### Feature * feat: optionally force `bom_ref` to be `purl` rather that the default random UUID format - thanks @RodneyRichardson @@ -1232,82 +849,10 @@ Automatically generated by python-semantic-release ([`cf7c625`](https://github.c ## v3.3.0 (2022-06-16) -### Chore - -* chore: Bump actions/setup-python from 3 to 4 (#369) - -Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4. -- [Release notes](https://github.com/actions/setup-python/releases) -- [Commits](https://github.com/actions/setup-python/compare/v3...v4) - ---- -updated-dependencies: -- dependency-name: actions/setup-python - dependency-type: direct:production - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`eecf04a`](https://github.com/CycloneDX/cyclonedx-python/commit/eecf04ac95f8beb0a32488a0f6b57d082f632214)) - -* chore: Bump mypy from 0.960 to 0.961 (#365) - -Bumps [mypy](https://github.com/python/mypy) from 0.960 to 0.961. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.960...v0.961) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`3bab869`](https://github.com/CycloneDX/cyclonedx-python/commit/3bab86909701f7e6a3af8815969625aeed2dfdc4)) - -* chore: Bump mypy from 0.942 to 0.960 (#356) - -* chore: Bump mypy from 0.942 to 0.960 - -Bumps [mypy](https://github.com/python/mypy) from 0.942 to 0.960. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.942...v0.960) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -* chore: try type fixes - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> -Co-authored-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`b62fc5e`](https://github.com/CycloneDX/cyclonedx-python/commit/b62fc5e2e8bfe2f85765b0e566f4d119dee20b8b)) - ### Feature * feat: Add Conda MD5 hash to Component.hashes, if available - thanks @RodneyRichardson ([`772c517`](https://github.com/CycloneDX/cyclonedx-python/commit/772c517521da0fd8ddbd1ed8abdf22243f418217)) -### Test - -* test: extend `TestRequirementsParser` to check `hashes` (#368) - -* Extend TestRequirementsParser.test_example_with_hashes() to check hashes - -Signed-off-by: Rodney Richardson <rodney.richardson@cambridgeconsultants.com> - -* Add additional test for hash. - -Signed-off-by: Rodney Richardson <rodney.richardson@cambridgeconsultants.com> ([`e2be444`](https://github.com/CycloneDX/cyclonedx-python/commit/e2be444b8db7dd12031f3e9b481dfdae23f3e59e)) - ### Unknown * 3.3.0 @@ -1358,109 +903,6 @@ Signed-off-by: Rodney Richardson <rodney.richardson@cambridgeconsultants.com& ## v3.2.2 (2022-06-02) -### Chore - -* chore: Bump cyclonedx-python-lib from 2.1.0 to 2.4.0 (#353) - -Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 2.1.0 to 2.4.0. -- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases) -- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md) -- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v2.1.0...v2.4.0) - ---- -updated-dependencies: -- dependency-name: cyclonedx-python-lib - dependency-type: direct:production - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`350297e`](https://github.com/CycloneDX/cyclonedx-python/commit/350297ee11cfaa312f4d4d08b983ac7c3d0ca719)) - -* chore: Bump flake8-bugbear from 22.3.23 to 22.4.25 (#351) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.3.23 to 22.4.25. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.3.23...22.4.25) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`ecfb175`](https://github.com/CycloneDX/cyclonedx-python/commit/ecfb17560f1be39e1d28aa64f009344871db4162)) - -* chore: Bump tox from 3.24.5 to 3.25.0 (#345) - -Bumps [tox](https://github.com/tox-dev/tox) from 3.24.5 to 3.25.0. -- [Release notes](https://github.com/tox-dev/tox/releases) -- [Changelog](https://github.com/tox-dev/tox/blob/master/docs/changelog.rst) -- [Commits](https://github.com/tox-dev/tox/compare/3.24.5...3.25.0) - ---- -updated-dependencies: -- dependency-name: tox - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`194d287`](https://github.com/CycloneDX/cyclonedx-python/commit/194d2878fe088f8f1a680cc4eb95504c046d34a2)) - -* chore: Bump actions/download-artifact from 2 to 3 (#343) - -Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3. -- [Release notes](https://github.com/actions/download-artifact/releases) -- [Commits](https://github.com/actions/download-artifact/compare/v2...v3) - ---- -updated-dependencies: -- dependency-name: actions/download-artifact - dependency-type: direct:production - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`259351e`](https://github.com/CycloneDX/cyclonedx-python/commit/259351ea468c7d7642be4640783e76826a56d39a)) - -* chore: Bump actions/upload-artifact from 2 to 3 (#342) - -Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3. -- [Release notes](https://github.com/actions/upload-artifact/releases) -- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3) - ---- -updated-dependencies: -- dependency-name: actions/upload-artifact - dependency-type: direct:production - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`4b74fa0`](https://github.com/CycloneDX/cyclonedx-python/commit/4b74fa064b40051bbe0e2aad298caecff6ef7940)) - -### Ci - -* ci: pin GH-action `semantic-release` to v7.28.1 (#359) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`ec417c7`](https://github.com/CycloneDX/cyclonedx-python/commit/ec417c7418b3eef456c90bccb1bc8c29f038beca)) - -* ci: introduce `timeout-minutes` and drop `dependabot` branches for CI #344 - -Signed-off-by: Paul Horton <paul.horton@owasp.org> ([`3591849`](https://github.com/CycloneDX/cyclonedx-python/commit/359184951f18a49c7c6dd47f7e0945a215507360)) - -* ci: introduce `timeout-minutes` and drop `dependabot` branches for CI - -Signed-off-by: Paul Horton <paul.horton@owasp.org> ([`72c4967`](https://github.com/CycloneDX/cyclonedx-python/commit/72c4967ccad4ceabb2367177c90c0a80388193b7)) - ### Fix * fix: add actively used (transitive) dependencies (#363) @@ -1509,64 +951,6 @@ fix: cli default file name for json format ([`929e26d`](https://github.com/Cyclo ## v3.2.0 (2022-04-05) -### Chore - -* chore: Bump cyclonedx-python-lib from 2.0.0 to 2.1.0 (#340) - -Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 2.0.0 to 2.1.0. -- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases) -- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md) -- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v2.0.0...v2.1.0) - ---- -updated-dependencies: -- dependency-name: cyclonedx-python-lib - dependency-type: direct:production - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`171aafe`](https://github.com/CycloneDX/cyclonedx-python/commit/171aafe8daf2ca3fc0ec15b7aa2d0cacf3c208e4)) - -* chore: Bump mypy from 0.941 to 0.942 (#339) - -Bumps [mypy](https://github.com/python/mypy) from 0.941 to 0.942. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.941...v0.942) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`7cb551c`](https://github.com/CycloneDX/cyclonedx-python/commit/7cb551c182d05d3cc54bf2c5cca5f408c96fa4cd)) - -* chore: Bump flake8-bugbear from 22.3.20 to 22.3.23 (#336) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.3.20 to 22.3.23. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.3.20...22.3.23) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`11fcb60`](https://github.com/CycloneDX/cyclonedx-python/commit/11fcb60d8be0e95ad44e2b3d6d7431c9a1e018e1)) - -* chore: dependabot prefixes with `chore` and scope (#324) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`1985b56`](https://github.com/CycloneDX/cyclonedx-python/commit/1985b56ba235e48e79071667bc1425c0a3552974)) - ### Fix * fix: cli default file for json format @@ -1575,29 +959,6 @@ fixes #337 Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`8747620`](https://github.com/CycloneDX/cyclonedx-python/commit/8747620dac7ed3eeff69369c05dfb6386a56e549)) -### Test - -* test: fix malformed or wrong test setups (#333) - -* test: corrected malformed/broken tests - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -* test: fix tests and fixtures - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> - -* test: corrected malformed/broken tests - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -* fix: fix style and remove unnecessary package - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> - -Co-authored-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`0ff6493`](https://github.com/CycloneDX/cyclonedx-python/commit/0ff6493dd59d2e8efafd35d4460847525e590937)) - ### Unknown * 3.2.0 @@ -1613,59 +974,6 @@ feat: make package/module callable ([`193f1a4`](https://github.com/CycloneDX/cyc ## v3.1.1 (2022-03-21) -### Chore - -* chore: Bump flake8-bugbear from 22.1.11 to 22.3.20 (#335) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 22.1.11 to 22.3.20. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/22.1.11...22.3.20) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`5e344e2`](https://github.com/CycloneDX/cyclonedx-python/commit/5e344e223a19048c896b394bf1e6fe1a3a8d4855)) - -* chore: Bump mypy from 0.940 to 0.941 (#330) - -Bumps [mypy](https://github.com/python/mypy) from 0.940 to 0.941. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.940...v0.941) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`c02d770`](https://github.com/CycloneDX/cyclonedx-python/commit/c02d770cf18a57e118347a0a57db29ae65919c35)) - -* chore: Bump mypy from 0.931 to 0.940 (#329) - -Bumps [mypy](https://github.com/python/mypy) from 0.931 to 0.940. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.931...v0.940) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`133ef9f`](https://github.com/CycloneDX/cyclonedx-python/commit/133ef9f432253923b7533852cbf5ba637363002e)) - ### Documentation * docs: describe methods to call the tool @@ -1719,55 +1027,6 @@ docs: add and fix hint to rtfd ([`3b3477b`](https://github.com/CycloneDX/cyclone ## v3.1.0 (2022-03-10) -### Chore - -* chore: added documentation to CONTRIBUTING guidelines - -Signed-off-by: Paul Horton <paul.horton@owasp.org> ([`8d7d6b6`](https://github.com/CycloneDX/cyclonedx-python/commit/8d7d6b638d22309124c8dc80aa494590cce9422d)) - -* chore: Bump actions/setup-python from 2 to 3 (#322) - -Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3. -- [Release notes](https://github.com/actions/setup-python/releases) -- [Commits](https://github.com/actions/setup-python/compare/v2...v3) - ---- -updated-dependencies: -- dependency-name: actions/setup-python - dependency-type: direct:production - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`69de237`](https://github.com/CycloneDX/cyclonedx-python/commit/69de237fb6bd327f7e2a6f1047122dfafb65e388)) - -* chore: Bump actions/checkout from 2.4.0 to 3 (#323) - -Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3. -- [Release notes](https://github.com/actions/checkout/releases) -- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) -- [Commits](https://github.com/actions/checkout/compare/v2.4.0...v3) - ---- -updated-dependencies: -- dependency-name: actions/checkout - dependency-type: direct:production - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`cae737f`](https://github.com/CycloneDX/cyclonedx-python/commit/cae737f2b6fcbb9c44f7d6602260bc460da23858)) - -* chore: make isort and flake8-isort available - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`c6b561e`](https://github.com/CycloneDX/cyclonedx-python/commit/c6b561eabfbfb81c29ab0a44056d08e55cd23a91)) - -* chore: manually fixed CHANGELOG after accidental 2.1.0 - -2.1.0 should have been 3.0.0 ([`33c4437`](https://github.com/CycloneDX/cyclonedx-python/commit/33c4437aec7c29b331bbbf8e9abb63b86c6f6964)) - ### Documentation * docs: update RequirementsFileParser docs to include nested file support @@ -1790,49 +1049,6 @@ Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`fdec44b`]( Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`684d4f0`](https://github.com/CycloneDX/cyclonedx-python/commit/684d4f03ad6f8c0764dfaf8f3a38a09b91b69e5d)) -### Refactor - -* refactor: Apply suggestions by @jkowalleck - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`90b336f`](https://github.com/CycloneDX/cyclonedx-python/commit/90b336ff4a0b49176162e6d2ea4c25faa21e3d99)) - -* refactor: ignore mypy type errors and add proper annotation to _TemporaryFileWrapper - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`82cb655`](https://github.com/CycloneDX/cyclonedx-python/commit/82cb6556927aacf911ee69fef86006c5c6ca7e76)) - -* refactor: remove unnecessary import (flake8 error) - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`ef8148f`](https://github.com/CycloneDX/cyclonedx-python/commit/ef8148f05c31a2d254cb72048f20f98dce450aef)) - -* refactor: Replace requirements file parser - -feat: Add support for hashes, local packages and private repositories -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`addc21a`](https://github.com/CycloneDX/cyclonedx-python/commit/addc21ae832f642298f665d426c576822038fb2f)) - -### Style - -* style: sort imports - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`75d325d`](https://github.com/CycloneDX/cyclonedx-python/commit/75d325d2872b01e3cfb31883fb4044c5b7991609)) - -* style: sorted all imports - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`804420a`](https://github.com/CycloneDX/cyclonedx-python/commit/804420afc9bb02ac01c04c18fa0828024688bd42)) - -### Test - -* test: add remote URL as requirements line - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`4be30e2`](https://github.com/CycloneDX/cyclonedx-python/commit/4be30e29aa7da993dedc66560d5df7360932fd7e)) - -* test: add test for nested requirements file parsing - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`d0856e9`](https://github.com/CycloneDX/cyclonedx-python/commit/d0856e90743926648977f91981cfda500502fc51)) - -* test: Add test for Git URLs - -Signed-off-by: Mostafa Moradian <mostafamoradian0@gmail.com> ([`25333c4`](https://github.com/CycloneDX/cyclonedx-python/commit/25333c4e4bb041373fea06489ea672e5e2db176f)) - ### Unknown * 3.1.0 @@ -1965,53 +1181,6 @@ link to pep8 ([`4f87341`](https://github.com/CycloneDX/cyclonedx-python/commit/4 ## v2.0.1 (2022-01-24) -### Chore - -* chore: add CI artifacts and improve build consistency (#290) - -fixes #292 -prep for #289 - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`185b300`](https://github.com/CycloneDX/cyclonedx-python/commit/185b30071acc2fb310e4632a7a1b735b9cc9382e)) - -* chore: Bump flake8-bugbear from 21.11.29 to 22.1.11 (#301) - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 21.11.29 to 22.1.11. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/21.11.29...22.1.11) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`1b6e042`](https://github.com/CycloneDX/cyclonedx-python/commit/1b6e0422d6932dac0accbad78169b850602162ca)) - -* chore: Bump mypy from 0.930 to 0.931 (#297) - -Bumps [mypy](https://github.com/python/mypy) from 0.930 to 0.931. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.930...v0.931) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`19b285c`](https://github.com/CycloneDX/cyclonedx-python/commit/19b285c9590cc4a66c07a32bcbbd54df8839dc7b)) - -* chore: corrected next version - -Signed-off-by: Paul Horton <paul.horton@owasp.org> ([`ea8a963`](https://github.com/CycloneDX/cyclonedx-python/commit/ea8a9633f3a06c294a8c57a2169d1707af927e46)) - ### Fix * fix: bump dependencies to get latest `cyclonedx-python-lib` @@ -2027,134 +1196,6 @@ Automatically generated by python-semantic-release ([`a4a4c42`](https://github.c ## v2.0.0 (2022-01-13) -### Build - -* build(deps-dev): Bump coverage from 6.1.2 to 6.2 - -Bumps [coverage](https://github.com/nedbat/coveragepy) from 6.1.2 to 6.2. -- [Release notes](https://github.com/nedbat/coveragepy/releases) -- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) -- [Commits](https://github.com/nedbat/coveragepy/compare/6.1.2...6.2) - ---- -updated-dependencies: -- dependency-name: coverage - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> ([`82f0dba`](https://github.com/CycloneDX/cyclonedx-python/commit/82f0dba359030b513e9fcf3f8e8c561afc794c1d)) - -* build(deps-dev): Bump flake8-bugbear from 21.9.2 to 21.11.29 - -Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 21.9.2 to 21.11.29. -- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) -- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/21.9.2...21.11.29) - ---- -updated-dependencies: -- dependency-name: flake8-bugbear - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> ([`a3d0b87`](https://github.com/CycloneDX/cyclonedx-python/commit/a3d0b87152183682dfeed459c6e44af4bc69a8c8)) - -### Chore - -* chore: add pre-release manual GH workflow - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`8343c0d`](https://github.com/CycloneDX/cyclonedx-python/commit/8343c0d20fe8ce2ffaf41016155dee7953f4eb57)) - -* chore: Bump cyclonedx-python-lib from 0.12.2 to 0.12.3 (#285) - -Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 0.12.2 to 0.12.3. -- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases) -- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md) -- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v0.12.2...v0.12.3) - ---- -updated-dependencies: -- dependency-name: cyclonedx-python-lib - dependency-type: direct:production - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`2ef2b3e`](https://github.com/CycloneDX/cyclonedx-python/commit/2ef2b3eb767ed45c329390abc2800927c6324948)) - -* chore: Bump mypy from 0.920 to 0.930 (#288) - -Bumps [mypy](https://github.com/python/mypy) from 0.920 to 0.930. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.920...v0.930) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`a58ed74`](https://github.com/CycloneDX/cyclonedx-python/commit/a58ed740fd5f6a603d76a0308d69551a186f8c65)) - -* chore: update `flake8` to v4 and add `autopep8` (#283) - -closes #275 - -update locked dependencies: - • Updating pycodestyle (2.7.0 -> 2.8.0) - • Updating pyflakes (2.3.1 -> 2.4.0) - • Updating flake8 (3.9.2 -> 4.0.1) - • Installing autopep8 (1.6.0) - • Updating flake8-annotations (2.0.1 -> 2.7.0) - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`87aa348`](https://github.com/CycloneDX/cyclonedx-python/commit/87aa3487864ca94cab3c2c9dff3c263f0a849c21)) - -* chore: Bump mypy from 0.910 to 0.920 (#286) - -Bumps [mypy](https://github.com/python/mypy) from 0.910 to 0.920. -- [Release notes](https://github.com/python/mypy/releases) -- [Commits](https://github.com/python/mypy/compare/v0.910...v0.920) - ---- -updated-dependencies: -- dependency-name: mypy - dependency-type: direct:development - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`a2dc03f`](https://github.com/CycloneDX/cyclonedx-python/commit/a2dc03f15a994361c973e97f2f9c406a41f9d7cd)) - -* chore: build(deps): Bump cyclonedx-python-lib from 0.11.1 to 0.12.2 (#282) - -Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 0.11.1 to 0.12.2. -- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases) -- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md) -- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v0.11.1...v0.12.2) - ---- -updated-dependencies: -- dependency-name: cyclonedx-python-lib - dependency-type: direct:production - update-type: version-update:semver-minor -... - -Signed-off-by: dependabot[bot] <support@github.com> - -Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> ([`6b51a66`](https://github.com/CycloneDX/cyclonedx-python/commit/6b51a66094afa5e424d8548724e5d09ea3851f7d)) - -* chore: remove dev-container (#265) - -closes #262 - -Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`16349cb`](https://github.com/CycloneDX/cyclonedx-python/commit/16349cbef449ded638c0fdcba01d3b1a6978678a)) - ### Documentation * docs: readme maintenance - shields & links (#266) @@ -2284,12 +1325,6 @@ Signed-off-by: Paul Horton <paul.horton@owasp.org> Signed-off-by: Paul Horton <paul.horton@owasp.org> ([`7bb6d32`](https://github.com/CycloneDX/cyclonedx-python/commit/7bb6d328adec59cdd4c3ab80eb5f39568ca3bc9c)) -### Test - -* test: CI/CT for the docker image - -CI for the docker image ([`6c4a6de`](https://github.com/CycloneDX/cyclonedx-python/commit/6c4a6deb3293dfaf059d0d114a93b570257e5dfb)) - ### Unknown * 1.6.0 @@ -2421,12 +1456,6 @@ Automatically generated by python-semantic-release ([`31fdd93`](https://github.c ## v1.4.3 (2021-11-16) -### Ci - -* ci: run release action on push to master - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`24477a0`](https://github.com/CycloneDX/cyclonedx-python/commit/24477a0c30e3ffbc088837b55bcc4336a3d564a1)) - ### Fix * fix: add static code analysis, better typing and bump cyclonedx-python-lib to 0.11 @@ -2489,40 +1518,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`3080b57`](https: ## v1.4.2 (2021-11-12) -### Build - -* build(deps-dev): Bump coverage from 6.1.1 to 6.1.2 - -Bumps [coverage](https://github.com/nedbat/coveragepy) from 6.1.1 to 6.1.2. -- [Release notes](https://github.com/nedbat/coveragepy/releases) -- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) -- [Commits](https://github.com/nedbat/coveragepy/compare/6.1.1...6.1.2) - ---- -updated-dependencies: -- dependency-name: coverage - dependency-type: direct:development - update-type: version-update:semver-patch -... - -Signed-off-by: dependabot[bot] <support@github.com> ([`3ce6467`](https://github.com/CycloneDX/cyclonedx-python/commit/3ce64679915a7ab83aa67da05087ca6b4e84c4ef)) - -* build(deps-dev): Bump coverage from 5.5 to 6.1.1 - -Bumps [coverage](https://github.com/nedbat/coveragepy) from 5.5 to 6.1.1. -- [Release notes](https://github.com/nedbat/coveragepy/releases) -- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) -- [Commits](https://github.com/nedbat/coveragepy/compare/coverage-5.5...6.1.1) - ---- -updated-dependencies: -- dependency-name: coverage - dependency-type: direct:development - update-type: version-update:semver-major -... - -Signed-off-by: dependabot[bot] <support@github.com> ([`bd63845`](https://github.com/CycloneDX/cyclonedx-python/commit/bd63845c397490e56e2bcd64a7b7e879ef9bc027)) - ### Fix * fix: if no input file is supplied and no input is provided on STDIN, we will now try to automatically locate (in the current working directory) a manifest with default name for the input type specified. This works for PIP (Pipfile.lock), Poetry (poetry.lock) and Requirements (requirements.txt) @@ -2568,12 +1563,6 @@ Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> ([`a29525a`](https: ## v1.4.1 (2021-10-26) -### Chore - -* chore: manual addition of breaking changes in 1.4.0 into CHANGELOG - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`84fceb2`](https://github.com/CycloneDX/cyclonedx-python/commit/84fceb293aeeef2e716866edd53e589b91ba9340)) - ### Fix * fix: corrected documentation after deprecation of `-rf`, `-pf`, `--poetry-file`, `--requirements-file` and `--pip-file` @@ -2747,28 +1736,12 @@ Signed-off-by: Paul Horton <phorton@sonatype.com> ([`a8fed84`](https://git Signed-off-by: Paul Horton <phorton@sonatype.com> ([`616b949`](https://github.com/CycloneDX/cyclonedx-python/commit/616b949e0d3200cd7c3a3e5131213e2e9bb51cfe)) -### Ci - -* ci: define missing env variable in CI workflow - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`49db8c2`](https://github.com/CycloneDX/cyclonedx-python/commit/49db8c2c587ab75cdcfb12513a89905b61b6e854)) - -* ci: updated GitHub workflows to align with those used in cyclonedx-python-lib - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`0b11f5a`](https://github.com/CycloneDX/cyclonedx-python/commit/0b11f5a7d7699a88e0d689f4cc33108a3017f355)) - ### Fix * fix: default to "requirements.txt" in current directory when "-r" flag is supplied but not "-rf" flag is supplied Signed-off-by: Paul Horton <phorton@sonatype.com> ([`bb7e30a`](https://github.com/CycloneDX/cyclonedx-python/commit/bb7e30a869300b1e63a00d7db4bcc7f35d68552d)) -### Test - -* test: align Tox configuration with cyclonedx-python-lib - -Signed-off-by: Paul Horton <phorton@sonatype.com> ([`1e5c6b6`](https://github.com/CycloneDX/cyclonedx-python/commit/1e5c6b61542a1f2b5459ce2f2a84923505e86a1f)) - ### Unknown * 1.0.3 diff --git a/pyproject.toml b/pyproject.toml index 36ad6d38..64a63ad3 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -124,9 +124,12 @@ upload_to_vcs_release = true [tool.semantic_release.changelog] changelog_file = "CHANGELOG.md" exclude_commit_patterns = [ - "chore\\(release\\):", - "chore\\(deps\\):", - "chore\\(deps-dev\\):", + '''chore(?:\([^)]*?\))?: .+''', + '''ci(?:\([^)]*?\))?: .+''', + '''refactor(?:\([^)]*?\))?: .+''', + '''style(?:\([^)]*?\))?: .+''', + '''tests?(?:\([^)]*?\))?: .+''', + '''build\((?!deps\): .+)''', ] [tool.semantic_release.branches.main] @@ -134,7 +137,7 @@ match = "(main|master)" prerelease = false [tool.semantic_release.branches."step"] -match = "(build|chore|ci|docs|feat|fix|perf|style|refactor|test)" +match = "(build|chore|ci|docs|feat|fix|perf|style|refactor|tests?)" prerelease = true prerelease_token = "alpha"