Release v4.3.3

What's Changed

• Adds github client and PAT inspection by @timmyteo in #138
• Added no suggest argument and initiate index by @mayaa23 in #153

New Contributors

• @timmyteo made their first contribution in #138
• @mayaa23 made their first contribution in #153

Full Changelog: v4.3.2...v4.3.3

Release v4.3.2

What's Changed

• Feat: Import SBOM Root Component to CSAF Product Tree by @cerrussell in #149
• Replaced deprecated pkg_resources with importlib @cerrussell in #149

Full Changelog: v4.3.1...v4.3.2

Release v4.3.1

What's Changed

• Fix: Issue #147 plus CSAF revision_history bugs, reference regexes, t… by @cerrussell in #148

Full Changelog: v4.3.0...v4.3.1

Release v4.3.0

What's Changed

• Enable os matrix tests by @prabhu in #129
• Pretty print vex by @cerrussell in #134
• Expand, improve, consolidate dockertests by @cerrussell in #136
• Adds 3.12 tests by @prabhu in #137
• CSAF Generation by @cerrussell in #141

Full Changelog: v4.2.8...v4.3.0

Release v4.2.8

4.2.7 had a bug, so it was removed. This release includes the fix.

Full Changelog: v4.2.6...v4.2.8

Release v4.2.6

What's Changed

• feat: add version flag by @algomaster99 in #122
• Bug fix: Dedup was removing results aggressively without considering the id

New Contributors

• @algomaster99 made their first contribution in #122

Full Changelog: v4.2.5...v4.2.6

Release v4.2.5

Retry since contents: write permission is required for releases.

Full Changelog: v4.2.4...v4.2.5

Release v4.2.4 - First release under owasp

What's Changed

• Changed repo references away from AppThreat to OWASP-dep-scan except … by @cerrussell in #118
• Support for multi-hits for packages with multiple versions by @prabhu in #119

Full Changelog: v4.2.3...v4.2.4

Release v4.2.3

Bring utf-8 decode fix for vulnerability-db. npm audit works by default for bom and universal scans.

Full Changelog: v4.2.2...v4.2.3

Release v4.2.2

OS dependency tree. Show vendor for generic os matches.

Full Changelog: v4.2.1...v4.2.2