42.0.0 (DON'T PANIC 😱)

What's Changed

Breaking Changes 🛠

• 597e895 chore(aosd)!: Make the KxS Json instance private
• 4df0c5a refactor(aosd)!: Make the version 2.0 explicit
• 8e1df98 refactor(model)!: Simplify the DependencyNavigator API

Bug Fixes 🐞

• 1ddbc81 aosd: Always encode the schema field
• 3d1a87d aosd: Fix the default descriptor argument for the AOSD 2.1 reporter
• 0bd38c1 model: Change the ALPINE purl type into APK
• e238417 model: Normalize purl name(space segments)
• 4768cca reuse: Use the default "precedence" of "closest"

New Features 🎉

• cd871ca aosd: Add an AOSD 2.1 reporter
• 958918a model: Add all purl types that are used in the test suite
• 61a9846 model: Add the property Project.description
• eeba28e model: Extend Identifier.toPurl() with handling for Bazel
• 517f8ed node: Set the description of Npm, Yarn and Pnpm projects
• 8061a66 plugins-api: Generate a convenience factory function
• 044f377 yarn2: Set the project's description

Build 🐘 & CI ⚙️

• c56cf22 gradle: Fix issues about implicit platform dependencies
• a093540 web-app: Make cross-project sharing of outputs more reliable
• 28a26c3 web-app-template: Use typed tasks

Chores 🔧

• d0a240c gradle-inspector: Lower logging of missing checkums to debug
• eaa5499 model: Guarantee the static value of PurlType to be lowercase
• 799e808 model: Introduce a variable to ease inspection when debugging
• 06a7eeb model: Remove a trailing blank line from createPurl() docs
• dfce837 model: Remove the A_NAME purl type
• 6985c5a node: Make use of splitNamespaceAndName()
• d31d4d1 node: Remove redundant "Npm" infixes from function names
• 7241461 ort-utils: Remove a superfluous empty line
• 2458ed5 osv: Fix a typo in a function name
• 33837c0 yarn2: Remove some log output
• 8635514 Omit a default argument for KxS Json

Dependency Updates 🚀

• 234805d Update the dependency-analysis-gradle-plugin to version 2.5.0
• d68c5ef update dependency com.charleskorn.kaml:kaml to v0.66.0
• 9844c96 update dependency com.networknt:json-schema-validator to v1.5.4
• 2d66362 update dependency io.github.java-diff-utils:java-diff-utils to v4.15
• 13c0738 update dependency org.metaeffekt.core:ae-security to v0.127.0
• 8f25027 update docker/build-push-action digest to 48aba3b
• e269fd7 update docusaurus monorepo to v3.6.3
• fc225df update hoplite to v2.9.0
• 0ad375a update jackson monorepo to v2.18.2
• e3f22a0 update kotlin monorepo to v2.1.0
• 1d5676f update log4j2 monorepo to v2.24.2

Documentation 📖

• 9103ac2 model: Add a comment about the algorithm in traverse()
• 8658030 model: Correct DependencyHandler docs about collections vs. lists
• bd94e19 model: Remove some less relevant information from toPurl() docs
• 8b0b991 web-app-template: Update a link to the most recent Kotlin version
• e1d9178 yarn2: Remove two code comments which do not provide much info

Refactorings 🚜

• d09a639 Yarn2: Factor out PackageHeader.moduleId
• 18ddeed clearly-defined: Make it explicit that fromString() throws
• fcc3159 model: Make getPurlType() actually return the PurlType
• 21f1def node: Make name and version in npm.ModuleInfo nullable
• 99e611b opossum: Migrate the reporter to KxS
• 4c9569b yarn2: Factor out PackageHeader.isProject
• cb62ba0 yarn2: Factor out getPackageInfos()
• c781403 yarn2: Factor out installDependencies()
• 76c7958 yarn2: Make queryPackageDetails() only take identifiers

Tests ✅

• 0ff17e7 aosd: Validate reports against the schema
• 1232796 node: Use the path replace pattern in babel expected outputs
• ef427cd opossum: Rewrite the funTest to compare against an expected result
• 1f76243 plugins: Simplify creating plugin instances
• 1838c3b pub: Update expected results

Other Changes 💡

• c5bae26 Revert "fix(gradle): Be specific about using Adoptium / Temurin as the JDK"