v0.20.3

🧰 Maintenance

• chore: bump github/codeql-action from 3.27.0 to 3.27.4 by @dependabot in #324
• chore: bump sphinx-rtd-theme from 3.0.1 to 3.0.2 by @dependabot in #325
• chore: bump coverage from 7.6.4 to 7.6.7 by @dependabot in #326

Full Changelog: v0.20.2...v0.20.3

v0.20.2

🧰 Maintenance

• chore: bump cyclonedx-python-lib from 8.3.0 to 8.4.0 and remove warning filter by @dependabot, @italvi in #321
• chore: fix token-permission on toplevel by @italvi in #322

Full Changelog: v0.20.1...v0.20.2

v0.20.1

🐛 Bugfixes

• fix: remove development help functions by @CBeck-96 in #316

🧰 Maintenance

• chore: bump mypy from 1.12.1 to 1.13.0 by @dependabot in #320
• chore: bump github/codeql-action from 3.26.12 to 3.27.0 by @dependabot in #317
• chore: bump actions/setup-python from 5.2.0 to 5.3.0 by @dependabot in #318
• chore: bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #319

Full Changelog: v0.20.0...v0.20.1

v0.20.0

🚀 Features

• feat: add function for initialization of an SBOM by @CBeck-96 in #272
• feat: add list command by @CBeck-96 in #309

🐛 Bugfixes

• fix: introduce error handling when version-range is not valid by @mmarseu in #306

🧰 Maintenance

• chore: Add JSON formatting to pre-commit and apply to all by @mmarseu in #296
• chore: bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #297
• chore: bump actions/upload-artifact from 4.4.0 to 4.4.3 by @dependabot in #298
• chore: bump MishaKav/pytest-coverage-comment from 1.1.52 to 1.1.53 by @dependabot in #299
• chore: bump github/codeql-action from 3.26.11 to 3.26.12 by @dependabot in #300
• chore: bump charset-normalizer from 3.3.2 to 3.4.0 by @dependabot in #301
• chore: bump pre-commit from 4.0.0 to 4.0.1 by @dependabot in #302
• chore: bump coverage from 7.6.1 to 7.6.3 by @dependabot in #303
• chore: bump black from 24.8.0 to 24.10.0 by @dependabot in #304
• chore: bump sphinx-rtd-theme from 2.0.0 to 3.0.1 by @dependabot in #305
• chore: exclude tests from mypy by @mmarseu in #307
• chore: bump coverage from 7.6.3 to 7.6.4 by @dependabot in #310
• chore: bump mypy from 1.11.2 to 1.12.1 by @dependabot in #311
• chore: add SAST via CodeQL by @italvi in #313
• chore: use specific version for dependencies by @italvi in #314

Full Changelog: v0.19.0...v0.20.0

v0.19.0

💥 Breaking Change

• feat: make validate write to stdout instead of stderr by @mmarseu in #285

📝 Documentation

• docs: rework creation of documentation via sphinx and rework README by @italvi in #278

🧰 Maintenance

• chore: bump pytest from 8.3.2 to 8.3.3 by @dependabot in #282
• chore: fix path to created docs by @italvi in #283
• chore: remove unnecessary if by @italvi in #284
• chore: bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #288
• chore: bump bandit from 1.7.9 to 1.7.10 by @dependabot in #287
• chore: bump github/codeql-action from 3.26.4 to 3.26.11 by @dependabot in #293
• chore: bump pre-commit from 3.8.0 to 4.0.0 by @dependabot in #291
• chore: bump types-python-dateutil from 2.9.0.20240821 to 2.9.0.20241003 by @dependabot in #292

Full Changelog: v0.18.0...v0.19.0

v0.18.2

🧰 Maintenance

• chore: remove unnecessary if by @italvi in #284

Full Changelog: v0.18.1...v0.18.2

v0.18.1

📝 Documentation

• docs: rework creation of documentation via sphinx by @italvi in #278

🧰 Maintenance

• chore: bump types-python-dateutil from 2.9.0.20240821 to 2.9.0.20240906 by @dependabot in #279
• chore: bump pytest from 8.3.2 to 8.3.3 by @dependabot in #282
• chore: fix path to created docs by @italvi in #283

Full Changelog: v0.18.0...v0.18.1

v0.18.0

🚀 Features

• feat: add option to ignore already existing fields per default. by @italvi in #277

🐛 Bugfixes

• fix: sort validate error messages by @italvi in #271

🧰 Maintenance

• chore: adjust token permissions according scorecard findings by @italvi in #269
• chore: bump mkdocs from 1.6.0 to 1.6.1 by @dependabot in #276
• chore: bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in #274
• chore: bump actions/setup-python from 5.1.1 to 5.2.0 by @dependabot in #273

Full Changelog: v0.17.0...v0.18.0

v0.17.0

🚀 Features

• feat: add support for cdx 1.6 by @CBeck-96 in #219
• feat: rework validation schema options by @mmarseu in #216
• feat: remove infer-copyright by @mmarseu, @italvi in #249
• tests: Add integration tests by @mmarseu in #157

🐛 Bugfixes

• fix: set --version cannot be combined with --version-range by @mmarseu in #218
• fix: do not apply custom validation components requirements to metadata.tools by @CBeck-96 in #221
• fix: remove pinned dependencies according to code scanning by @italvi in #247
• fix: remove purls from test data to fix OSSF scorecard results by @mmarseu in #258
• tests: add type hints for validate tests by @CBeck-96 in #220

📝 Documentation

• docs: add SECURITY.md by @italvi in #248

🧰 Maintenance

• chore: introduce ossf scorecard by @italvi in #241
• chore: add minimum threshold of 95% for coverage by @italvi in #222
• chore: add update of github-actions by @italvi in #223
• chore: bump peter-evans/create-pull-request from 5 to 6 by @dependabot in #226
• chore: bump webfactory/ssh-agent from 0.8.0 to 0.9.0 by @dependabot in #227
• chore: bump actions/labeler from 4 to 5 by @dependabot in #228
• chore: adjust labels to labeler v5 by @italvi in #235
• chore: bump actions/setup-python from 4 to 5 by @dependabot in #230
• chore: bump dependabot/fetch-metadata from 1 to 2 by @dependabot in #229
• chore: bump jsonschema from 4.22.0 to 4.23.0 by @dependabot in #232
• chore: bump pre-commit from 3.7.0 to 3.8.0 by @dependabot in #244
• chore: bump pytest from 8.2.2 to 8.3.2 by @dependabot in #245
• chore: bump actions/checkout from 4.1.1 to 4.1.7 by @dependabot in #252
• chore: bump ossf/scorecard-action from 2.3.1 to 2.4.0 by @dependabot in #253
• chore: bump black from 24.4.2 to 24.8.0 by @dependabot in #255
• chore: bump coverage from 7.5.4 to 7.6.1 by @dependabot in #256
• chore: bump flake8 from 7.1.0 to 7.1.1 by @dependabot in #257
• chore: bump actions/upload-artifact from 3.pre.node20 to 4.3.6 by @dependabot in #261
• chore: bump types-jsonschema from 4.22.0.20240610 to 4.23.0.20240813 by @dependabot in #263
• chore: bump github/codeql-action from 3.24.9 to 3.26.4 by @dependabot in #264
• chore: bump types-python-dateutil from 2.9.0.20240316 to 2.9.0.20240821 by @dependabot in #267
• chore: bump mypy from 1.10.1 to 1.11.2 by @dependabot in #266
• chore: bump univers from 30.11.0 to 30.12.1 by @dependabot in #268

Full Changelog: v0.16.0...v0.17.0

v0.16.3

🚀 Features

• feat: rework validation schema options by @mmarseu in #216

🐛 Bugfixes

• fix: remove purls from test data to fix OSSF scorecard results by @mmarseu in #258

🧰 Maintenance

• tests: Add integration tests by @mmarseu in #157
• chore: add minimum threshold of 95% for coverage by @italvi in #222
• chore: bump actions/upload-artifact from 3.pre.node20 to 4.3.5 by @dependabot in #250
• chore: bump github/codeql-action from 3.24.9 to 3.25.15 by @dependabot in #251
• chore: bump actions/checkout from 4.1.1 to 4.1.7 by @dependabot in #252
• chore: bump ossf/scorecard-action from 2.3.1 to 2.4.0 by @dependabot in #253
• chore: bump mypy from 1.11.0 to 1.11.1 by @dependabot in #254
• chore: bump black from 24.4.2 to 24.8.0 by @dependabot in #255
• chore: bump coverage from 7.6.0 to 7.6.1 by @dependabot in #256
• chore: bump flake8 from 7.1.0 to 7.1.1 by @dependabot in #257

Full Changelog: v0.16.2...v0.16.3