Changelog
v0.62.0 (2023-05-22)
Added Features
- Add package qualifier for platform CPE [PR #1291] [westonsteimel]
- Include timestamp and image name in reports [Issue #1170] [PR #1249] [jneate]
- Document command line flag for config file location [Issue #1271] [PR #1274] [jneate]
- Add support for Syft IDs in JSON output [PR #1266] [luhring]
Bug Fixes
- False positive with pkg:rpm PURLs [Issue #1031] [PR #1237] [Shanedell]
- Specifying "extras" in pip / requirements.txt results in false negative [Issue #1246]
- CycloneDX dependencies relationships inverted [Issue #1294]
Additional Changes
- docs: add "cyclonedx-json" to output formats [PR #1252] [HNKNTA]
- chore: update quality gate labels and add keycloak [PR #1255] [westonsteimel]
- Install skopeo during bootstrap [PR #1260] [willmurphyscode]
- Replace deprecated io/ioutil calls [PR #1296] [testwill]
- Fix reading syft json from stdin by redirect [PR #1299] [devfbe]
- Add gitignore for default build target [PR #1305] [testwill]