Skip to content

Releases: CycloneDX/cyclonedx-node-npm

1.10.0

17 Apr 10:29
@github-actions github-actions
v1.10.0
368d081
Compare
Choose a tag to compare
1.10.0

Added

  • SBOM result might have component.scope=optional populated for OptionalDependencies (#645 via #657)

Fixed

  • DevDependencies that are also required by OptionalDependencies correctly have the property cdx:npm:package:development populated in SBOM results (#645 via #657)
  • DevDependencies that are also required by OptionalDependencies are correctly omitted from SBOM results, when the CLI switch for omitting "dev" and "optional" are set (#645 via #657)

Docs

  • Describe internal NPM executable detection in README (via #647)

Build

  • Use TypeScript v5.0.4 now, was v4.9.5 (via #638)

Full Changelog: v1.9.2...v1.10.0

New Contributors

Contributors

igord
Assets 2
Loading

1.9.2

30 Mar 14:26
@github-actions github-actions
v1.9.2
3056b93
Compare
Choose a tag to compare
1.9.2

Fixed

  • No longer omit components' version's buildID (#551 via #597)
    Fixed for NPM>=7 only. NPM6 omits this information in the first place, still.

Misc

Full Changelog: v1.9.1...v1.9.2

Assets 2
Loading

1.9.1

15 Mar 12:53
@github-actions github-actions
v1.9.1
62ebef0
Compare
Choose a tag to compare
1.9.1

Docs

  • added section "How it works" to the README (via #563)

Full Changelog: v1.9.0...v1.9.1

Assets 2
Loading

1.9.0

03 Mar 09:10
@github-actions github-actions
v1.9.0
8c2fbc7
Compare
Choose a tag to compare
1.9.0

Changed

  • Detected node packages' metadata are now normalized, before translation to SBOM components happens. (#536 via #537)
    This might increase the quality of SBOM results.

Full Changelog: v1.8.0...v1.9.0

Assets 2
Loading

1.8.0

16 Feb 19:25
@github-actions github-actions
v1.8.0
a725513
Compare
Choose a tag to compare
1.8.0

Added

  • SBOM result might have additional items in metadata.tools populated (#505 via #506)

Full Changelog: v1.7.5...v1.8.0

Assets 2
Loading

1.7.5

14 Feb 13:04
@github-actions github-actions
v1.7.5
e9a152a
Compare
Choose a tag to compare
1.7.5

Maintenance release

Full Changelog: v1.7.4...v1.7.5

Assets 2
Loading

1.7.4

14 Feb 12:50
@github-actions github-actions
v1.7.4
e89d31b
Compare
Choose a tag to compare
1.7.4

Maintenance release

Full Changelog: v1.7.3...v1.7.4

Assets 2
Loading

1.8.0-alpha.5d82149ae21396f6824c94185281b9162e2a1841

13 Feb 19:02
@github-actions github-actions
v1.8.0-alpha.5d82149ae21396f6824c94185281b9162e2a1841
167342a
Compare
Choose a tag to compare
1.8.0-alpha.5d82149ae21396f6824c94185281b9162e2a1841 Pre-release
Pre-release

preview of #503

Assets 2
Loading

1.7.3

12 Feb 08:46
@github-actions github-actions
v1.7.3
d1ea839
Compare
Choose a tag to compare
1.7.3

Maintenance release

Dependencies

  • Utilize commander ^10.0.0 now, was "^9.4.0 (via #431)

Build

  • Use TypeScript v4.9.5 now, was v4.9.4 (via #482)

Full Changelog: v1.7.2...v1.7.3

Assets 2
Loading

1.7.2

19 Dec 14:10
@github-actions github-actions
v1.7.2
c9397ef
Compare
Choose a tag to compare
1.7.2

Changed

  • Enhanced randomness when generating a serialNumber (via #389)

Build

  • Use TypeScript v4.9.4 now, was v4.9.3 (via #366)

Full Changelog: v1.7.1...v1.7.2

Assets 2
Loading