v34.8.0
Changelog
- Add a new
enrich_with_purldbadd-on pipeline to enrich the discovered packages
with data available in the PurlDB. #1182 - Add the ability to define a results_url on the Pipeline class.
When available, that link is displayed in the UI to easily reach the results view
related to the Pipeline run. #1330 - Expands on the existing WebhookSubscription model by adding a few fields to
configure the behavior of the Webhooks, and moves some of the fields to a new
WebhookDelivery model, which captures the results of a WebhookSubscription
"delivery". #1325 - Add support for creating dependencies using the
load_sbomspipeline on CycloneDX
SBOM inputs. #1145 - Add a new Dependency view that renders the project dependencies as a tree. #1145
- The
purldb-scan-workercommand has been updated to send project results
back using the Project webhook subscriptions. This allows us to not have the
main task loop to monitor a single project run for completion in order to
return data, and allows us to have multiple scan projects active at once while
we usepurldb-scan-worker. A new option--max-concurrent-projectshas
been added to set the number of purldb packages that can be requested and
processed at once. #1287 - Add notes field on the DiscoveredPackage model. #1342
- Fix an issue with conflicting groups checkbox id in the Add pipeline modal. #1353
- Move the BasePipeline class to a new
aboutcode.pipelinemodule. #1351 - Update link references of ownership from nexB to aboutcode-org #1350
- Add a new
check-compliancemanagement command to check for compliance issues in
a project. #1182
What's Changed
- Add a new enrich_with_purldb Pipeline #1328 by @tdruez in #1329
- Add the ability to define a results_url on the Pipeline class by @tdruez in #1330
- Add mariner to supported distros by @AyanSinhaMahapatra in #1161
- Add full test coverage for the enrich_with_purldb Pipeline by @tdruez in #1331
- Replace all linter and validation libraries by ruff by @tdruez in #1333
- Put the virtualenv into a .venv directory instead of the project root by @tdruez in #1334
- 1328 enrich with purldb collect endpoint by @tdruez in #1336
- Webhook behavior customization and delivery records by @tdruez in #1338
- Load CycloneDX SBOMs dependencies #1145 by @tdruez in #1344
- 1287 purldb scan worker update by @JonoYang in #1320
- Add notes field on the DiscoveredPackage model #1342 by @tdruez in #1349
- Thirdparty upgrade and .dockerignore updates by @tdruez in #1352
- Fix issue with conflicting groups checkbox id in Add pipeline modal #… by @tdruez in #1354
- Move the BasePipeline class to a new
aboutcode.pipelinemodule #1351 by @tdruez in #1357 - Refactor the BasePipeline, move out all Project related logic #1351 by @tdruez in #1358
- Add pyproject.toml for packaging aboutcode.pipeline module #1351 by @tdruez in #1359
- Upgrade Django to latest 5.1 release by @tdruez in #1361
- 1350 owner migration by @chinyeungli in #1362
- Simplify the Project.add_message method for object_instance by @tdruez in #1363
- Add a new
check-compliancemanagement command #1346 by @tdruez in #1364
New Contributors
- @chinyeungli made their first contribution in #1362
Full Changelog: v34.7.1...v34.8.0
Contributors
tdruez, chinyeungli, and 2 other contributors