v0.81.0

github-actions released this 22 May 14:07

· 1105 commits to main since this release

334a775

Changelog

v0.81.0 (2023-05-22)

Added Features

Support cataloging R packages [Issue #730] [PR #1790] [willmurphyscode]
Support describing license properties and SPDX expression assertions [Issue #1577] [PR #1743] [spiffcs]
Warn if parsing a newer SBOM [PR #1810] [willmurphyscode]

Bug Fixes

Retain cataloged SBOM relationships [PR #1509] [houdini91]
fix: update field plurality of 8.0.0 schema before release [PR #1820] [spiffcs]
fix: remove spurious warnings - unknown relationship type: evident-by form-lib=syft [Issue #1812] [PR #1797] [willmurphyscode]
CycloneDX Dependencies Relationships Inverted [Issue #1815] [PR #1816] [shanealv]
Alpine: license expression should be complete and not parsed out [Issue #1817] [PR #1819] [spiffcs]

Additional Changes

Print package list when extra packages found [PR #1791] [willmurphyscode]
update cosign to v2 release (different go module) [PR #1805] [bobcallaway]

Assets 18