Skip to content

Releases: phylum-dev/cli

v6.6.1-rc4

17 Jun 21:00
@github-actions github-actions
v6.6.1-rc4
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
c3416ca
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6.1-rc4 Pre-release
Pre-release

Fixed

  • Sandbox exceptions for maven when installed via apt
  • Log output leaking into effective-pom.xml during lockfile generation
Assets 10
Loading

v6.6.1-rc3

17 Jun 15:42
@github-actions github-actions
v6.6.1-rc3
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
bf261af
Compare
Choose a tag to compare
v6.6.1-rc3 Pre-release
Pre-release

Fixed

  • Sandbox exceptions for maven when installed via apt
Assets 10
Loading

v6.6.1-rc2

17 Jun 14:54
@cd-work cd-work
v6.6.1-rc2
This tag was signed with the committer’s verified signature. The key has expired.
cd-work Christian Dürr
GPG key ID: 8947EF45C490774C
Expired
Learn about vigilant mode.
c198a44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6.1-rc2 Pre-release
Pre-release

Fixed

  • Sandbox exceptions for maven when installed via apt
Assets 2
Loading

v6.6.1-rc1

12 Jun 00:04
@github-actions github-actions
v6.6.1-rc1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
78bfc77
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6.1-rc1 Pre-release
Pre-release

Fixed

  • Sandbox exceptions for maven when installed via apt
Assets 10
Loading

v6.6.0

11 Jun 17:15
@github-actions github-actions
v6.6.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
e00c29c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6.0

Added

  • PNPM v5 lockfile support

Fixed

  • Sandbox exceptions for maven when installed via Homebrew
Assets 10
Loading

v6.5.0

04 Jun 15:47
@github-actions github-actions
v6.5.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
4f85dbc
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.5.0

Changed

  • Parse *.csproj files with msbuild parser by default
Assets 10
Loading

v6.5.0-rc1

03 Jun 23:11
@github-actions github-actions
v6.5.0-rc1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
b5a9528
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.5.0-rc1 Pre-release
Pre-release

Changed

  • Parse *.csproj files with msbuild parser by default
Assets 10
Loading

v6.4.0

28 May 19:49
@github-actions github-actions
v6.4.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
30d9e17
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.4.0

Added

  • PNPM v9 lockfile support
  • Support for parsing go.mod files with a Go directive of version 1.17 and higher

Changed

  • Improved go.sum file parsing to prevent the parser from listing unused packages

Fixed

  • Sandboxed processes sticking around after CLI is killed with a signal
  • Lockfiles with local versions breaking the pip parser
  • Lockfile generation not emitting errors for tools writing them to STDOUT
Assets 10
Loading

v6.4.0-rc1

13 May 17:23
@github-actions github-actions
v6.4.0-rc1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Learn about vigilant mode.
16ab00e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.4.0-rc1 Pre-release
Pre-release

Added

  • PNPM v9 lockfile support
  • Support for parsing go.mod files with a Go directive of version 1.17 and higher

Changed

  • Improved go.sum file parsing to prevent the parser from listing unused packages

Fixed

  • Sandboxed processes sticking around after CLI is killed with a signal
  • Lockfiles with local versions breaking the pip parser
Assets 10
Loading

v6.3.0

22 Apr 16:17
@github-actions github-actions
v6.3.0
This tag was signed with the committer’s verified signature. The key has expired.
kylewillmon Kyle Willmon
GPG key ID: C59FE3EE765E3DD0
Expired
Learn about vigilant mode.
fb23936
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.3.0

Fixed

  • Improve parsing of non-UTF-8 encoded pom.xml files
  • SPDX SBOM registry determination from downloadLocation
  • SPDX parsing adding the described package as a dependency
  • SPDX parsing certain text files with optional package fields
Assets 10
Loading