This release migrates to the new osv.dev and osv-schema proto bindings for its internal data models (#2328). This is primarily an internal change and should not impact users.
Features:
- Feature #2321 Add support for license checks for RubyGems.
- Feature #2294 Replace
requirementsenhanceableextractor with transitive enricher. - Feature #2344 Use
osduplicateannotators.
Fixes:
- Bug #2329 Add
--ignore-scriptsflag to npm lockfile generation. - Bug #2311 Improve logic for
--all-packagesflag. - Bug #2309 Exit with a non-zero code when showing help.
- Bug #2316 Pre-commit hook now defaults to scanning current directory instead of failing.
- Bug #1507 (osv-scalibr) Interpolate Maven projects before extracting repositories.
New Contributors
- @Ly-Joey made their first contribution in #2311
- @pcastellazzi made their first contribution in #2316
Full Changelog: v2.2.4...v2.3.0