Skip to content

6.1.0
Compare
Choose a tag to compare
@github-actions github-actions released this 09 Nov 08:11
· 2671 commits to main since this release
6.1.0
f5c556d

What's Changed

Bug Fixes 🐞

  • 170db0b FileListResolver: Delete the temporary directory
  • 5edbe72 cargo: Allow metadata to be missing again
  • 1f2ad1e reporter: Add score and method properties in CycloneDX report
  • edafd51 Properly delete parent directories of temporary files

Build 🐘 & CI ⚙️

  • df5ede2 Gradle: Move advisors to individual plugin projects
  • 53ea4ce Gradle: Move remaining Maven and Sbt package managers to projects
  • ced939b renovate: Disable patch-level updates for the AWS S3 dependency

Chores 🔧

  • d606322 NpmFunTest: Remove two unused imports
  • e04aa88 Use new ORT slack subdomain

Dependency Updates 🚀

  • 5ba8629 Gradle: Upgrade to the latest WireMock version 3.2.0
  • 0e3e3a1 update dependency com.zaxxer:hikaricp to v5.1.0
  • 34095e5 update dependency io.ktor:ktor-client-okhttp to v2.3.6
  • b36ec78 update dependency org.jruby:jruby to v9.4.5.0
  • df0ba6e update dependency org.wiremock:wiremock to v3.3.0
  • b08bc3c update dependency org.wiremock:wiremock to v3.3.1
  • c5add7d update kotest to v5.8.0

Documentation 📖

  • 3efccf5 ProvenanceDownloader: Clarify the semantics of download()
  • f5c556d evaluator: Fix-up the docs for two CLI options
  • a701b73 reference: Improve the wording for package curation providers

New Features 🎉

  • 7296ec0 analyzer: Log about configured but unavailable package managers
  • 91647b2 helper-cli: Extend the scope exclude generation for Poetry
  • 1d74f26 model: Add 'DOCUMENTATION_DEPENDENCY_OF` as scope exclude reason
  • 2416358 vulnerabilities: Support the CVSS 4 qualitative severity rating scale

Refactorings 🚜

  • e2bb20e analyzer: Remove the special exception code for Maven
  • 80498cf model: Make tests independent of Maven or SBT package managers
  • 7c0ca7c reporter: update the TrustSource data model and the reporter
  • 32ed408 Introduce an alsoIfNull convenience extension function

Tests ✅

  • 236997c analyzer: Remove the AnalyzerTest
  • ae37645 ossindex: Simplify some result assertions
  • e4f232a osv: Update expected results
  • cb139cc 66eee50 spm: Update expected results
  • b26c5bd spm: Update expected results
  • ca7424a trustsource: Add a basic functional test for the expected report

Other Changes 💡

  • 6c25e2c style(trustsource): Apply some trivial reformatting
Assets 4
Loading