Skip to content

Releases: ccideas/sbom-utilities-pipe

v1.4.0

23 Apr 10:37
@ccideas ccideas
v1.4.0
cd8ade4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.4.0 Latest
Latest

What's Changed

  • Add support for grype
  • Minor refactoring to simplify the way cmd params are passed in
  • Rel v1.4.0 by @ccideas in #7

Full Changelog: v1.3.0...v1.4.0

Contributors

ccideas
Assets 2

v1.3.0

23 Mar 03:43
@ccideas ccideas
v1.3.0
fbe190e
Compare
Choose a tag to compare
v1.3.0

Dockerfile optimizations to produce a smaller image with less vulnerabilities

Full Changelog: v1.2.2...v1.3.0

Assets 2

v1.2.2

18 Mar 10:19
@ccideas ccideas
v1.2.2
e742260
Compare
Choose a tag to compare
v1.2.2
  • bitbucket-pipeline.yml optimizations
  • added ability to generate sbom via pipeline
  • minor fixes

Dependency Updates

  • Base docker images: golang:1.21.7-alpine3.18 → golang:1.21.8-alpine3.18
  • OSV_SCANNER_VERSION="v1.6.2" → OSV_SCANNER_VERSION="v1.7.0"
  • SBOMQS_VERSION="v0.0.29" → SBOMQS_VERSION="v0.0.30"

Full Changelog: v1.2.0...v1.2.2

Assets 2

v1.2.0

26 Feb 03:13
@ccideas ccideas
v1.2.0
71cfda3
Compare
Choose a tag to compare
v1.2.0
  • Added support for osv-scanner. You can now scan you sbom for vulnerabilities via osv-scanner.
  • Updated dependencies

Full Changelog: v1.1.2...v1.2.0

Assets 2

v1.1.3

26 Jan 12:19
@ccideas ccideas
v1.1.3
a30de42
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1.3

What's Changed

  • Updating version of sbomqs to v0.0.29
  • Minor fixes to Bitbucket Pipeline & Release scripts

Full Changelog: v1.1.2...v1.1.3

Assets 2

v1.1.2

09 Jan 11:51
@ccideas ccideas
v1.1.2
79b8087
Compare
Choose a tag to compare
v1.1.2
  • Setting INTERLYNK_DISABLE_VERSION_CHECK variable to skip version check for latest sbomqs version.
  • Add logic to set environment variables during runtime
  • Bumping versions of bomber and sbomqs

Other changes

  • Updating release logic to better manage syncing between Bitbucket & Github

Full Changelog: v1.1.1...v1.1.2

Assets 2

v1.1.1

19 Dec 03:24
@ccideas ccideas
v1.1.1
4fdafcf
Compare
Choose a tag to compare
v1.1.1
  • Adding support for interlynk-io/sbomqs. You can now generate a sbomqs quality score directly from your Bitbucket Pipeline
  • Minor bug fixes & improvements

Full Changelog: v1.0.2...v1.1.1

Assets 2

v1.0.2

02 Nov 10:28
@ccideas ccideas
v1.0.2
4d20428
Compare
Choose a tag to compare
v1.0.2
  • Fix permission denied error when writing pipe output to build directory
  • minor code cleanup
  • update dependencies to newer versions
  • Added "Live Test" Bitbucket Pipeline for easier debugging

Full Changelog: v1.0.1...v1.0.2

Assets 2