Skip to content

v1.4.2: Up the version to 1.4.2
Compare
Choose a tag to compare
@github-actions github-actions released this 16 Feb 10:51
· 184 commits to main since this release
v1.4.2
35683e5

Improve derivation attributes:

  • Make derivation pname more accurate e.g. for perl packages.
  • Do not generate purl or cpe for packages with pname 'source'. Pname 'source' has a special meaning in in Nix - it is the default name for all fetchFromGitHub derivations.
  • Add 'urls' attribute, which contains the package fetch url (if any).
  • Add license and other meta information to the sbomnix release asset SBOMs.

In addition, this release includes the following other changes:

  • Add a test case that checks the nix-shell works as expected to prevent cases like #44 in the future.
  • Read 'unfree' and 'description' from each nix package meta information if available.
  • Add more properties to SPDX sbom: package summary, downloadLocation.
  • Add more properties to CDX sbom: component description, fetch_url, homepage.
Assets 8
Loading