v0.0.12

What's Changed

• Bump github.com/samber/lo from 1.38.0 to 1.38.1 by @dependabot in #125
• Stray debug stmt. by @riteshnoronha in #126

Full Changelog: v0.0.11...v0.0.12

v0.0.11

What's Changed

• Added basic usage, contact and checked spellings by @riteshnoronha in #109
• Change to preferred url by @riteshnoronha in #114
• Bump github.com/samber/lo from 1.37.0 to 1.38.0 by @dependabot in #113
• Update README.md by @surendrapathak in #116
• add sboms #88 by @riteshnoronha in #117
• update syft installation by @riteshnoronha in #118
• syft installation for GH by @riteshnoronha in #119
• working refactor by @riteshnoronha in #121
• fix for broken reportFormat by @riteshnoronha in #122
• Update CODEOWNERS by @riteshnoronha in #123

New Contributors

• @dependabot made their first contribution in #113

Full Changelog: v0.0.10...v0.0.11

v0.0.10

What's Changed

• SBOM samples section added by @surendrapathak in #96
• 77 add consistent creationinformation as a SBOM quality check by @riteshnoronha in #97
• Add support to ignore scores when not applicable by @riteshnoronha in #98
• Quality Score Sharing by @riteshnoronha in #100
• Add macos arm support by @riteshnoronha in #102
• fix help by @riteshnoronha in #103
• Need to change case for relation type matching by @riteshnoronha in #104
• Update Features.md by @riteshnoronha in #105

Full Changelog: v0.0.9...v0.0.10

v0.0.9

What's Changed

• Update README with details per specification by @surendrapathak in #79
• update depedencies by @riteshnoronha in #87
• fix result ordering, now use category and feature by @riteshnoronha in #91
• Always check if creation info object is present by @riteshnoronha in #92

Full Changelog: v0.0.8...v0.0.9

v0.0.8

What's Changed

• Small changes for clarity and inclusion of links by @surendrapathak in #64
• Add homebrew instructions by @riteshnoronha in #66
• Updated unique component identifier to match NTIA by @surendrapathak in #68
• 49 new rule for checking of vulnerability lookup identifier present by @riteshnoronha in #71
• Add go report card reported fixes by @riteshnoronha in #74
• 19 configurable scoring criteria by @kchetans in #75
• Add the new scores by @riteshnoronha in #81
• CDX check for bomformat only for json by @riteshnoronha in #82
• Add component count to json by @riteshnoronha in #84
• Add feature selection details by @riteshnoronha in #85

Full Changelog: v0.0.7...v0.0.8

v0.0.7

What's Changed

• Json output format support by @riteshnoronha in #45
• Adds autorelease to sbomqs by @riteshnoronha in #47
• Setup permissions and git controls by @riteshnoronha in #54
• Make other uniq id's check compliant with NTIA by @riteshnoronha in #55
• Updated Readme by @riteshnoronha in #52

Full Changelog: v0.0.6...v0.0.7

v0.0.6

What's Changed

• Create debendabot.yml by @surendrapathak in #35
• Detect proper supplier name from the component by @riteshnoronha in #27
• Update codeblocks by @riteshnoronha in #37
• For restrictive and deprecated licenses check if licenses are present by @riteshnoronha in #36
• introduce cpe as a type, added validation for cpe check by @kchetans in #32
• introduce purl as a type and validating sxpdx and cycloneDX purl by @kchetans in #33
• Fix a bad rebase by @riteshnoronha in #41
• Remove all fakes, these are auto-generated when make test is run by @riteshnoronha in #43
• Test case for CPE type on SPDX file by @kchetans in #44

Full Changelog: v0.0.5...v0.0.6

v0.0.5

Add support for restrictive license detection.

v0.0.4

• Supports Goreleaser

v0.0.3

• Fixed bug: Use ID of components to find unique's instead of names.