v0.1.4

• Weak credentials detector for File Browser
• Small fixes in the APK and DPKG extractors
• Remove error from ToPURL and ToCPE function signatures
• Support specifying the image platform of remote containers to scan
• Move the rest of OSV-Scanner's extractors to SCALIBR
  • cargo.lock
  • renv
  • gradle
  • go.mod
  • package-lock.json
  • Gemfile.lock
  • mix.lock
  • pubspec.lock
  • yarn.lock
  • Conan packages
  • various python lockfile extractors

v0.1.3

• Support -r options and more version ranges in the requirements.txt parser
• Accuracy improvements in NPM extraction
• Support scanning remote images natively in SCALIBR
• Detect transitional dpkg packages to filter out false positive vuln sources
• Add dedicated detectors for various CVEs
• CycloneDX SBOM extraction support
• Import various extractors from OSV: javascript/pnpm, php/composerlock, python/pipfilelock, python/pdmlock, python/poetrylock

v0.1.2

• Add new extractors: containerd, dism patches, snap packages, flatpak packages
• Support for Mac compilation
• Support file size limits on some extractors

v0.1.1

• Support for installing the CLI tool with "go install"
• Support one-shot Extractors
• Cross-compilation support for Windows and Windows-specific extraction logic
• Make the weak credentials Detector available

v0.1.0

Initial release.