v0.10.0

Updates in this release

New features

• feat: Support CycloneDX 1.5
• feat: bump version
• feat: Detect deprecated license
• feat: update version

Fixes

• fix: linting

v0.9.2

Updates in this release

Fixes

• various bugs when a line of pip show module does not contain an ':' delimited entry.

Thanks to @You-ne

v0.9.1

Updates in this release

Fixes

• Update README
• Bump dependency versions
• Handle single word for supplier
• Improve license comment text

v0.9.0

Updates in this release

New Features

• Improved license handling including license expression support

Fixes

• Remove redundamt code
• Remove redundant license data and class (now using lib4sbom)
• Fix typos in documentaion

New Contributors

@vargenau

v0.8.0

Updates in this release

• Add file reporting support
• Add additional attributes to Python module reporting
• Fix reporting of supplier
• Refactor to use lib4sbom, sbom4files and sbom2dot
• Update documentation

v0.7.0

Bug fix release

• Correct handling of SPDX relationships to use DEPENDS ON instead of CONTAINS
• Fix issue with uppercase module names

v0.6.0

• Include CPE information in SPDX documents

• Bug fix for supplier information in SPDX JSON documents

v0.5.0

• Update to handling of supplier information particularly for SPDX documents.

• SPDX supplier information now includes email contact information if available

v0.4.0

• Improved handling of supplier information
• Minor bug fix related to Package Manager in SPDX ExternalRef element

v0.3.0

• Update SBOM documents to include additional metadata
• Update CycloneDX documents to include license URLs
• Add PURL support
• Update SPDX Licence list (version 3.18)
• Add support for graph generation for CycloneDX documents
• Minor bug fixes