Paul Horton
Paul Horton
see https://github.com/CycloneDX/specification/releases/tag/1.5 The following items are not currently supported for CycloneDX v1.5 (as of release 6.4.x): - [x] Missing `lifecycles` on `bom.metadata` see #698 - [ ] Missing `modelCard` on...
The CycloneDX scpecification defines a Regex for `Component.cpe`, but this library does not enforce this. see https://github.com/CycloneDX/specification/blob/c320fc0f0b46873864927d9d5684eea7ba439728/schema/bom-1.5.xsd#L1110-L1112
JSF is/has been incorporated into the core spec for Version 1.4 (JSON). This feature will delivery JSF support. This feature was bumped from the initial release (#108).
The Nexus IQ Chrome Extension has now been superseded by the Sonatype Platform Browser Extension which is available: 1. On the Chrome Web Store [here](https://chrome.google.com/webstore/detail/sonatype-platform-browser/kahnhlonadjlllgnilndafpajaiepdag) Source code for the Sonatype...
feat: begin work to migrate to using Nexus IQ client Library BREAKING CHANGE feat: refactoring to isolate three (current modes) - apply, scrape and healthcheck so they are subcommands of...
Currently, any System Notice is not included in the configuration `scrape`, nor can it be applied using `apply`. This feature will aim to close this gap.
This issue will be collating work that is targeted into the **dev** branch for Release 1.0.0. The main aims for Release 1.0.0 are: - Streamline the codebase: - [ ]...
Community has fed back that in some scenarios they would require the VEX data to be in "the original" CycloneDX BOM and not output as a separate document. This would...
Another popular publicly available data source is [osv.dev](https://osv.dev). Lets support this too! FYI - thanks @nscuro
`flake8` complains that the following are too complex: ``` requirements/parser.py:42:1: C901 'parse' is too complex (11) requirements/requirement.py:171:5: C901 'Requirement.parse_line' is too complex (11) ```