Changelog
- 1be1e2e fix(spdx): add workaround for no src packages (#4118)
- 45bc9e0 test(golang): rename broken go.mod (#4129)
- 3334e78 feat(sbom): add supplier field (#4122)
- 27fb1bf test(misconf): skip downloading of policies for tests #4126
- 845ae31 refactor: use debug message for post-analyze errors (#4037)
- 11a5b91 feat(sbom): add VEX support (#4053)
- 5eab464 feat(sbom): add primary package purpose field for SPDX (#4119)
- a00d00e fix(k8s): fix quiet flag (#4120)
- 9bc3269 fix(python): parse of pip extras (#4103)
- 8559841 feat(java): use full path for nested jars (#3992)
- 0650e0e feat(license): add new flag for classifier confidence level (#4073)
- 43b6496 feat: config and fs compliance support (#4097)
- 9181bc1 chore(deps): bump sigstore/cosign-installer from 2.8.1 to 3.0.1 (#3952)
- 48e021e feat(spdx): add support for SPDX 2.3 (#4058)
- 107752d fix: k8s all-namespaces support (#4096)
- bd0c603 perf(misconf): replace with post-analyzers (#4090)
- 76662d5 fix(helm): update networking API version detection (#4106)
- be47b68 feat(image): custom docker host option (#3599)
- cc18f92 style: debug flag is incorrect and needs extra - (#4087)
- 572a619 docs(vuln): Document inline vulnerability filtering comments (#4024)
- 914c6f0 feat(fs): customize error callback during fs walk (#4038)
- 3f02fee fix(ubuntu): skip copyright files from subfolders (#4076)
- 57bb77c docs: restructure scanners (#3977)
- b19b56c fix: fix
file does not existerror for post-analyzers (#4061)