Skip to content

osv-scanner 2.0.1 #217992

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 3, 2025
Merged

osv-scanner 2.0.1 #217992

merged 2 commits into from
Apr 3, 2025

Conversation

BrewTestBot
Copy link
Member

Created by brew bump

Created with brew bump-formula-pr.

release notes 
## Changelog

Features:


    

  • Feature #1730 Add support for extracting dependencies from .NET packages.config and packages.lock.json files.
    • 

  • Feature #1770 Add support for extracting dependencies from rust binaries compiled with cargo-auditable.
    • 

  • Feature #1761 Improve output when scanning for OS packages, we now show binary packages associated with a source package in the table output.
    • 



Fixes:


    

  • Bug #1752 Fix paging depth issue when querying the osv.dev API.
    • 

  • Bug #1747 Ensure osv-reporter prints warnings instead of errors for certain messages to return correct exit code (related to osv-scanner-action#65).
    • 

  • Bug #1717 Fix issue where nested CycloneDX components were not being parsed.
    • 

  • Bug #1744 Fix issue where empty CycloneDX SBOMs was causing a panic.
    • 

  • Bug #1726 De-duplicate references in CycloneDX report output for improved validity.
    • 

  • Bug #1727 Remove automatic opening of HTML reports in the browser (fixes #1721).
    • 

  • Bug #1735 Require a tag when scanning container images to prevent potential errors.
    • 



API Changes:



New Contributors



Full Changelog: google/osv-scanner@v2.0.0...v2.0.1

@github-actions github-actions bot added go Go use is a significant feature of the PR or issue bump-formula-pr PR was created using `brew bump-formula-pr` labels Apr 3, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 3, 2025

🤖 An automated task has requested bottles to be published to this PR.

Please do not push to this PR branch before the bottle commits have been pushed, as this results in a state that is difficult to recover from. If you need to resolve a merge conflict, please use a merge commit. Do not force-push to this PR branch.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Apr 3, 2025
@BrewTestBot BrewTestBot enabled auto-merge April 3, 2025 05:21
@BrewTestBot BrewTestBot added this pull request to the merge queue Apr 3, 2025
Merged via the queue into master with commit c4c1ebf Apr 3, 2025
14 checks passed
@BrewTestBot BrewTestBot deleted the bump-osv-scanner-2.0.1 branch April 3, 2025 05:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@daeho-ro daeho-ro daeho-ro approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. go Go use is a significant feature of the PR or issue
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@BrewTestBot @daeho-ro