v8.0.0

github-actions released this 14 Oct 12:32

· 161 commits to main since this release

7e511ae

v8.0.0 (2024-10-14)

Breaking

feat!: v8.0.0 (#665)

BREAKING Changes

Removed cyclonedx.mode.ThisTool, utilize cyclonedx.builder.this.this_tool() instead.
Moved cyclonedx.model.Tool to cyclonedx.model.tool.Tool.
Property cyclonedx.mode.bom.BomMetaData.tools is of type cyclonedx.model.tool.ToolRepository now, was SortedSet[cyclonedx.model.Tool].
The getter will act accordingly; the setter might act in a backwards-compatible way.
Property cyclonedx.mode.vulnerability.Vulnerability.tools is of type cyclonedx.model.tool.ToolRepository now, was SortedSet[cyclonedx.model.Tool].
The getter will act accordingly; the setter might act in a backwards-compatible way.
Constructor cyclonedx.model.license.LicenseExpression() accepts optional argument acknowledgement only as key-word argument, no longer as positional argument.

Changes

Constructor of cyclonedx.model.bom.BomMetaData also accepts an instance of cyclonedx.model.tool.ToolRepository for argument tools.
Constructor of cyclonedx.model.bom.BomMetaData no longer adds this very library as a tool.
Downstream users SHOULD add it manually, like my-bom.metadata.tools.components.add(cyclonedx.builder.this.this_component()).

Fixes

Deserialization of CycloneDX that do not include tools in the metadata are no longer unexpectedly modified/altered.

Added

Enabled Metadata Tools representation and serialization in accordance with CycloneDX 1.5

New class cyclonedx.model.tool.ToolRepository.
New function cyclonedx.builder.this.this_component() -- representation of this very python library as a Component.
New function cyclonedx.builder.this.this_tool() -- representation of this very python library as a Tool.
New function cyclonedx.model.tool.Tool.from_component().

Dependencies

Raised runtime dependency py-serializable>=1.1.1,<2, was >=1.1.0,<2.

Docs & Migration Paths

see https://cyclonedx-python-library.readthedocs.io/en/v8.0.0/upgrading.html

What's Changed

chore: ignore coverage of abstract methods by @jkowalleck in #699
docs(chaneglog): omit chore/ci/refactor/style/test/build by @jkowalleck in #703
feat!: v8.0.0 by @jkugler & @jkowalleck in #665

Full Changelog: v7.6.2...v8.0.0

Contributors

jkugler and jkowalleck

Assets 6