v6.1.0-rc.1

v6.1.0-rc.1 (2025-05-12)

---

Detailed Changes: v6.1.0-alpha.1...v6.1.0-rc.1

v6.1.0-alpha.1

v6.1.0-alpha.1 (2025-05-12)

Documentation

• Fix default value for --spec-version (2f2982b)

Signed-off-by: Jan Kowalleck [email protected]

Features

• Rootless docker container (#893, a0cd44b)

As per OWASP's Docker Security Cheat Sheet, it is recommended to set a user instead of running the container as root.

bash virgo@lenovo:~$ docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ee568549229f cyclonedx-py:latest "/bin/bash" About a minute ago Up About a minute nifty_swirles virgo@lenovo:~$ docker exec -it ee568549229f sh -c "id" uid=1000(cyclonedx) gid=1000(cyclonedx) groups=1000(cyclonedx)

⬆️ Now the container is running as a standard user.

Signed-off-by: virgo-o [email protected]

---

Detailed Changes: v6.0.0...v6.1.0-alpha.1

v6.0.0

BREAKING CHANGE

• drop support for python <3.9
• spec-version defaults to CycloneDX 1.6

Feat

• Handle misencoded license text files graceful.
• Add mimetype detection for rich text format (rtf)

---

What's Changed

• feat!: drop support for python <3.9 by @jkowalleck in #883
• ci: test macos latest by @jkowalleck in #864
• feat!: spec-version defaults to CycloneDX 1.6 by @jkowalleck in #885
• chore(deps): Bump python-semantic-release/python-semantic-release from 9.1.1 to 9.21.0 by @dependabot in #856
• chore(deps): Bump python from 3.12-slim to 3.13-slim by @dependabot in #810
• feat: Add mimetype detection for rich text format (rtf) by @schlenk in #886
• Handle misencoded license text files graceful. by @schlenk in #884

New Contributors

• @schlenk made their first contribution in #886

Full Changelog: v5.5.0...v6.0.0

v5.5.0

v5.5.0 (2025-04-23)

Feature

• feat: support runtime-dependency packaging ^25 (#882)

Signed-off-by: Jan Kowalleck <[email protected]> (4fa5a35)

v5.4.0

v5.4.0 (2025-04-23)

Documentation

• docs: reword common CLI switches (#877)

Signed-off-by: Jan Kowalleck <[email protected]> (3c86517)

• docs: showcase usage with uv (#858)

---

Signed-off-by: Jan Kowalleck <[email protected]> (efd45b1)

• docs: install instructions for uv

Signed-off-by: Jan Kowalleck <[email protected]> (07d9bcc)

Feature

• feat: support cyclonedx-python-lib ^10 (#880)

Signed-off-by: Jan Kowalleck <[email protected]> (545dde0)

• feat: deprecate CLI switch --outfile; use new --output-file instead (#875)

Signed-off-by: Jan Kowalleck <[email protected]> (fb30ee0)

• feat: deprecate CLI switch --schema-version; use new --spec-version instead (#871)

Signed-off-by: Jan Kowalleck <[email protected]> (bbae05f)

Unknown

• docs

Signed-off-by: Jan Kowalleck <[email protected]> (4837c99)

v5.3.0

v5.3.0 (2025-02-26)

Feature

• feat: add support for cyclonedx-python-lib>=9.0 <10 (#854)

---

What's Changed

• tests: add setups and snapshorts for poetry v2 by @jkowalleck in #851
• chore(deps-dev): Update flake8 requirement from 7.1.1 to 7.1.2 by @dependabot in #853
• feat: add support for cyclonedx-python-lib>=9.0<10 by @jkowalleck in #854

Full Changelog: v5.2.0...v5.3.0

v5.2.0

v5.2.0 (2025-02-20)

Documentation

• docs: showcase uv as installation option (#847)

Feature

• feat: subcommand environment got aliases env, venv (#850)

---

What's Changed

• chore(deps-dev): Update tox requirement from 4.23.2 to 4.24.1 by @dependabot in #844
• docs: showcase uv as installation option by @lightningRalf in #847
• feat: subcommand environment got aliases env, venv by @jkowalleck in #850

New Contributors

• @lightningRalf made their first contribution in #847

Full Changelog: v5.1.2...v5.2.0

v5.1.2

v5.1.2 (2025-01-21)

Documentation

• docs: fix typos in comments
• docs: add console classifier

Fix

• fix(poetry): properly handle multi-declaration (optional) dependencies (#842)
  fixes #840

---

What's Changed

• chore(deps-dev): Update flake8-bugbear requirement from 24.10.31 to 24.12.12 by @dependabot in #835
• chore(deps-dev): Update mypy requirement from 1.13.0 to 1.14.1 by @dependabot in #838
• fix(poetry): properly handle multi-declaration (optional) dependencies by @jkowalleck in #842

Full Changelog: v5.1.1...v5.1.2

v5.1.1

v5.1.1 (2024-11-09)

Documentation

• docs: fix headline structure in readme

Fix

• fix: schema-invalid CycloneDX when running PEP639 analysis (#828)

---

What's Changed

• chore(deps-dev): Update mypy requirement from 1.12.0 to 1.13.0 by @dependabot in #823
• chore(deps-dev): Update tox requirement from 4.23.0 to 4.23.2 by @dependabot in #822
• chore(deps-dev): Update flake8-bugbear requirement from 24.8.19 to 24.10.31 by @dependabot in #824
• fix: schema-invalid CycloneDX when running PEP639 analysis by @jkowalleck in #828

Full Changelog: v5.1.0...v5.1.1

v5.1.0

v5.1.0 (2024-10-23)

Feature

• feat: add Python 3.13 support (#818)

---

What's Changed

• tests: requirements with url and git node id by @jkowalleck in #817
• chore(deps-dev): Update mypy requirement from 1.11.2 to 1.12.0 by @dependabot in #815
• chore(deps-dev): Update tox requirement from 4.21.2 to 4.23.0 by @dependabot in #814
• chore: run tox w/o sdist by @jkowalleck in #819
• refactor: streamline constants by @jkowalleck in #820
• feat: add Python 3.13 support by @jkowalleck in #818

Full Changelog: v5.0.0...v5.1.0