v35.0.0rc1
Pre-release
Pre-release
What's Changed
- Add improver pipeline to flag ghost packages #644 #917 #1395 by @keshav-space in #1533
- Add base pipeline for importers and migrate PyPa importer to aboutcode pipeline by @keshav-space in #1559
- Remove dupe Package.get_non_vulnerable_versions by @pombredanne in #1570
- Import data from GSD #706 by @ziadhany in #787
- Add curl advisories importer by @ambuj-1211 in #1439
- Update dependencies by @TG1999 in #1590
- Bump django from 4.2.0 to 4.2.15 by @dependabot in #1591
- Bump cryptography from 42.0.4 to 43.0.1 by @dependabot in #1582
- Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows by @dependabot in #1581
- Improve export command by @pombredanne in #1571
- Fix typo in Kev requests import by @ziadhany in #1594
- Prepare for release v34.0.1 by @TG1999 in #1595
- Bump upload-artifact to v4 by @keshav-space in #1596
- Migrate Npm importer to aboutcode pipeline by @keshav-space in #1574
- Use correct regex for CVE by @pombredanne in #1599
- Migrate Nginx importer to aboutcode pipeline by @keshav-space in #1575
- Migrate GitLab importer to aboutcode pipeline by @keshav-space in #1580
- Migrate GitHub importer to aboutcode pipeline by @keshav-space in #1584
- Migrate NVD importer to aboutcode pipeline by @keshav-space in #1587
- Match affected and fixed-by Packages by @johnmhoran in #1528
- Add management command to commit exported data by @keshav-space in #1600
- Add support to Exploits model by @ziadhany in #1562
- Fix 500 Server Error with DRF browsable API and resolve blank Swagger API documentation by @keshav-space in #1603
- Release v34.0.2 by @TG1999 in #1604
- Bump VCIO version by @TG1999 in #1605
- Bump django from 4.2.15 to 4.2.16 by @dependabot in #1608
- Bump fetchcode from v0.3.0 to v0.6.0 by @keshav-space in #1607
- Use 4-tier system for storing package metadata by @keshav-space in #1609
- Fix vers range crash by @pombredanne in #1598
- Add GitHub action to publish aboutcode.hashid PyPI by @keshav-space in #1615
- Segregate PackageRelatedVulnerability model to new models by @TG1999 in #1612
- Add documentation for new pipeline design by @keshav-space in #1621
- Fix 500 error in /api/cpes endpoint by @keshav-space in #1629
- Migrate pysec importer to aboutcode pipeline by @keshav-space in #1628
- Avoid memory exhaustion during data migration by @keshav-space in #1630
- Add support for Calculating Risk in VulnerableCode by @ziadhany in #1593
- Bulk create in migrations by @TG1999 in #1640
- Update README.rst by @TG1999 in #1641
- Prepare for release v34.1.0 by @TG1999 in #1642
- Add V2 API endpoints by @TG1999 in #1631
- Prepare for release v34.2.0 by @TG1999 in #1647
- Refactor severity score model and fix incorrect suse scores by @keshav-space in #1636
- Add bulk search in v2 by @TG1999 in #1649
- Prepare release v34.3.0 by @TG1999 in #1652
- Add
on_failureto handle cleanup during pipeline failure by @keshav-space in #1651 - Fix API bug by @TG1999 in #1654
- Add reference score to package endpoint by @keshav-space in #1655
- Prepare for release v34.3.2 by @TG1999 in #1656
- Add support for storing exploitability and weighted severity by @ziadhany in #1646
- Avoid migrations on version bumps by @keshav-space in #1660
- Prepare v35.0.0rc1 by @TG1999 in #1664
New Contributors
- @ambuj-1211 made their first contribution in #1439
Full Changelog: v34.0.0...v35.0.0rc1
Contributors
pombredanne, johnmhoran, and 5 other contributors