Releases: phylum-dev/cli
Releases · phylum-dev/cli
v6.5.0
v6.5.0-rc1
v6.5.0-rc1
This tag was signed with the committer’s verified signature.
maxrake
Charles Coggins
Changed
- Parse
*.csprojfiles withmsbuildparser by default
v6.4.0
Added
- PNPM v9 lockfile support
- Support for parsing
go.modfiles with a Go directive of version 1.17 and higher
Changed
- Improved
go.sumfile parsing to prevent the parser from listing unused packages
Fixed
- Sandboxed processes sticking around after CLI is killed with a signal
- Lockfiles with local versions breaking the pip parser
- Lockfile generation not emitting errors for tools writing them to STDOUT
v6.4.0-rc1
v6.4.0-rc1
This tag was signed with the committer’s verified signature.
maxrake
Charles Coggins
Added
- PNPM v9 lockfile support
- Support for parsing
go.modfiles with a Go directive of version 1.17 and higher
Changed
- Improved
go.sumfile parsing to prevent the parser from listing unused packages
Fixed
- Sandboxed processes sticking around after CLI is killed with a signal
- Lockfiles with local versions breaking the pip parser
v6.3.0
v6.3.0
This tag was signed with the committer’s verified signature.
kylewillmon
Kyle Willmon
Fixed
- Improve parsing of non-UTF-8 encoded pom.xml files
SPDXSBOM registry determination from downloadLocationSPDXparsing adding the described package as a dependencySPDXparsing certain text files with optional package fields
v6.2.0
Fixed
- Crashes when parsing invalid lockfiles
Removed
phylum group transfersubcommand- Owner email from
phylum group listresults
v6.1.2
Fixed
- Improved sandboxing error message for unsupported kernel versions
v6.1.1
Fixed
- Python lockfile generation with pip in ~/.local
- Python lockfile generation with pyenv
v6.1.1-rc1
v6.1.1-rc1
This tag was signed with the committer’s verified signature.
maxrake
Charles Coggins
Fixed
- Python lockfile generation with pip in ~/.local
- Python lockfile generation with pyenv
v6.1.0
Added
- Parse manifest files with non-standard names