cyclonedx-conan icon indicating copy to clipboard operation
cyclonedx-conan copied to clipboard
verified publisher icon CycloneDX

Bump packageurl-python from 0.9.6 to 0.10.4

Open dependabot[bot] opened this issue 3 years ago • 1 comments

Bumps packageurl-python from 0.9.6 to 0.10.4.

Release notes

Sourced from packageurl-python's releases.

0.10.4 (Oct 17 2022)

  • Refactor the purl2url functions and utilities #42

    • Split purl2url into get_repo_url() and get_download_url() returning accordingly a "Repository URL" and a "Download URL".
    • A new get_inferred_urls function is available to get return all inferred URLs (repository and download) values.
    • Add support in purl2url for npm, pypi, hackage, and nuget.
    • Package URL qualifiers can now be provided to purl_from_pattern().
    • The download_url qualifier is returned in get_download_url() when available.

  • Usage of purl2url.purl2url and purl2url.get_url is still available for backward compatibility but should be migrated to purl2url.get_repo_url.

  • Include the version_prefix ("v" or "V") as a qualifier in build_github_purl #42 This allow to infer valid URLs in the context of purl2url.

0.10.2 (Sep 15 2022)

What's Changed

Full Changelog: https://github.com/package-url/packageurl-python/compare/v0.10.1...v0.10.2

0.10.1 (Aug 2nd 2022)

Changes

  • Add ability to filter objects with EMPTY purls in PackageURLFilter #92

Full Changelog: https://github.com/package-url/packageurl-python/compare/v0.10.0...v0.10.1

0.10.0 (Jun 27 2022)

What's Changed

  • Upgrade virtualenv.pyz to latest version #85
  • Replace Travis CI by GitHub Actions #84
  • Add black to the CI and apply formatting on whole codebase #91
  • Improve url2purl support for nom URLs
  • Improve url2purl support for rubygems.org URLs #89

New Contributors

Full Changelog: https://github.com/package-url/packageurl-python/compare/v0.9.9...v0.10.0

0.9.9 (Feb 15 2022)

  • Update version to be semver compliant. No changes to the code have been made.

0.9.8.1 (Feb 11 2022)

  • Fix generic sourceforge PackageURL generation #79

... (truncated)

Changelog

Sourced from packageurl-python's changelog.

0.10.4 (2022-10-17)

  • Refactor the purl2url functions and utilities #42

    • Split purl2url into get_repo_url() and get_download_url() returning accordingly a "Repository URL" and a "Download URL".
    • A new get_inferred_urls function is available to get return all inferred URLs (repository and download) values.
    • Add support in purl2url for npm, pypi, hackage, and nuget.
    • Package URL qualifiers can now be provided to purl_from_pattern().
    • The download_url qualifier is returned in get_download_url() when available.

  • Usage of purl2url.purl2url and purl2url.get_url is still available for backward compatibility but should be migrated to purl2url.get_repo_url.

  • Include the version_prefix ("v" or "V") as a qualifier in build_github_purl #42 This allow to infer valid URLs in the context of purl2url.

0.10.3 (2022-09-15)

  • Fix named arguments in purl_to_lookups.

0.10.2 (2022-09-15)

  • Add encode option in purl_lookups #94 (purl_to_lookups, without_empty_values is moved from packageurl.contrib.django.models to packageurl.contrib.django.utils)

0.10.1 (2022-08-02)

  • Add ability to filter objects with EMPTY purls in PackageURLFilter #92

0.10.0 (2022-06-27)

  • Upgrade virtualenv.pyz to latest version #85
  • Replace Travis CI by GitHub Actions #84
  • Add black to the CI and apply formatting on whole codebase #91
  • Improve url2purl support for nom URLs
  • Improve url2purl support for rubygems.org URLs #89

... (truncated)

Commits
  • 48890f6 Bump version to 0.10.4
  • 9ea1cea Refactor the purl2url functions and utilities #42 (#102)
  • e81d023 Bump version
  • b3e6a8e Merge pull request #98 from TG1999/fix_named_arguement
  • a64f5f6 Fix named arguments in purl_to_lookups
  • 8acf8c5 Bump version
  • fb834f3 Update CHANGELOG
  • aba26ce Merge pull request #95 from TG1999/fix_purl_lookups
  • 08a24af Add encode option in purl_lookups #94
  • d8f658f Fix formatting, add CHANGELOG entry, and upgrade version for release #92
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

dependabot[bot] avatar Oct 17 '22 12:10 dependabot[bot]

@dependabot rebase

jkowalleck avatar Jul 28 '23 08:07 jkowalleck