Skip to content

Releases: microsoft/sbom-tool

v0.3.2

27 Feb 18:54
@github-actions github-actions
v0.3.2
742eee2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.3.2

⚙️ Changes

  • Set access modifier on sbom config to protected set by @wenyi189 (#187)
  • Add new component detection types and map to SBOMPackage by @ksigmund (#183)

Contributors

ksigmund and wenyi189
Assets 8
Loading

v0.3.1

30 Nov 22:40
@github-actions github-actions
v0.3.1
40367fc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.3.1

⚙️ Changes

Contributors

ksigmund
Assets 8
Loading

v0.3.0

17 Nov 07:15
@github-actions github-actions
v0.3.0
a74de76
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.3.0

⚙️ Changes

  • Fixed signing logic by @aasim (#173)
  • Users/ksigmund/remove sbom package to package info converter by @ksigmund (#170)
  • Update the version of Ninject and System.Private.Uri packages by @edgarrs (#169)
  • Users/viexianong/fix purl encoding by @VXianOng (#171)
  • Add a default 6-minute timeout on CD by @ksigmund (#168)
  • SPDX 2.2 Files Validator by @aasim (#164)
  • Users/ksigmund/remove ninject extensions conventions by @ksigmund (#166)
  • Upgrade to use version 2.0.6 of the Component Detection libraries by @edgarrs (#165)

Contributors

aasim, ksigmund, and 2 other contributors
Assets 8
Loading

v0.2.7

22 Oct 02:21
@github-actions github-actions
v0.2.7
7723053
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.7

⚙️ Changes

  • Fixed tests and updated CD version by @aasim (#162)

Contributors

aasim
Assets 8
Loading

v0.2.6

17 Oct 16:46
@github-actions github-actions
v0.2.6
1756fa7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.6

⚙️ Changes

  • Update all projects to .NET6 and use strong name signed assemblies by @aasim (#158)
  • Complete parser by @aasim (#147)

Contributors

aasim
Assets 8
Loading

v0.2.5

01 Oct 02:33
@github-actions github-actions
v0.2.5
46de9c9
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.5

⚙️ Changes

  • Update DotNetTool to use sbom-tool alias instead of sbom and add docu… by @edgarrs (#156)

Contributors

edgarrs
Assets 8
Loading

v0.2.4

30 Sep 23:01
@github-actions github-actions
v0.2.4
b9f85e6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.4

⚙️ Changes

  • Fix read/write directory permission checks by @ksigmund (#151)
  • Added external document reference parser by @aasim (#138)
  • Added a relationship parser. by @aasim (#137)

Contributors

aasim and ksigmund
Assets 8
Loading

v0.2.3

28 Sep 22:21
@github-actions github-actions
v0.2.3
be59608
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.3

⚙️ Changes

  • Fix Newtonsoft vulnerability by @edgarrs (#144)
  • Move DotNet tool project to its own folder to avoid race condition by @edgarrs (#143)
  • Added SBOM packages parser by @aasim (#136)
  • Add Microsoft.Sbom.DotNetTool project to generate sbomtool dotnet tool package by @edgarrs (#140)
  • Added parser for SPDX files by @aasim (#133)
  • Change the initial value of the startup project to Microsoft.Sbom.Tool by @pea-sys (#130)

Contributors

aasim, edgarrs, and pea-sys
Assets 8
Loading

v0.2.2

01 Sep 19:59
@github-actions github-actions
v0.2.2
fbd53da
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.2

⚙️ Changes

  • Fix CD tool argument building for arguments containing spaces by @ByAgenT (#124)

Contributors

ByAgenT
Assets 8
Loading

v0.2.1

30 Aug 20:24
@github-actions github-actions
v0.2.1
cb075a9
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.1

⚙️ Changes

  • Fix exception when re-adding arguments to the CD scan by @ByAgenT (#121)
  • Fallback to pre NET 5 self contained behavior by @ByAgenT (#120)
  • Update readme to add command name by @edgarrs (#119)
  • Add ability to supply custom package supplier value by @ByAgenT (#92)
  • Pacakge external references values should have dash character instead… by @edgarrs (#113)
  • Remove mentions of DropValidator by @edgarrs (#111)
  • Update .NET SDK to v6.0 by @aasim (#107)

Contributors

aasim, ByAgenT, and edgarrs
Assets 8
Loading