sbom-cyclonedx 0.2.0 → 0.4.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +8 -0
- data/Gemfile.lock +21 -10
- data/RELEASE.md +18 -0
- data/lib/sbom/cyclone_dx/validator/uri_validator.rb +1 -1
- data/lib/sbom/cyclone_dx/version.rb +1 -1
- data/sbom-cyclone_dx.gemspec +2 -2
- metadata +6 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 58e1013d9b36fe06d125e59cd7d427bd56aa80a5aa26b2870de4e4b597d12c5c
|
|
4
|
+
data.tar.gz: 4613442329b9d6679b5b1329ab063de485db5947a56594a32cfab0663856ad48
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c2d88aebca7d81cb27c0de1a2041227520f3285fe865c2fb0064052bb546804b89bc038e55878394f955f51410fe9cd7f6b1f8a61b2443cd292861b0cf8149bb
|
|
7
|
+
data.tar.gz: 21932f7436859804ad2259ce881d72c6dee43e2f1c781364cca4bb066ddbc90eab4386a977331cf58865cc2ac6e421c53c5e273c36488f8c72a4292c36826366
|
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,13 @@
|
|
|
1
1
|
## [Unreleased]
|
|
2
2
|
|
|
3
|
+
## [0.4.0] - 2026-05-01
|
|
4
|
+
|
|
5
|
+
- Allow activesupport 8.x for Rails 8 compatibility
|
|
6
|
+
|
|
7
|
+
## [0.3.0] - 2025-03-10
|
|
8
|
+
|
|
9
|
+
- Loosen endpoints URI validation to accept non-host based URIs like mailto
|
|
10
|
+
|
|
3
11
|
## [0.2.0] - 2025-03-10
|
|
4
12
|
|
|
5
13
|
- Fix of gem bundling
|
data/Gemfile.lock
CHANGED
|
@@ -1,27 +1,38 @@
|
|
|
1
1
|
PATH
|
|
2
2
|
remote: .
|
|
3
3
|
specs:
|
|
4
|
-
sbom-cyclonedx (0.
|
|
5
|
-
activesupport (>= 6.1, <
|
|
4
|
+
sbom-cyclonedx (0.4.0)
|
|
5
|
+
activesupport (>= 6.1, < 9)
|
|
6
6
|
email_address (~> 0.2, >= 0.2.4)
|
|
7
7
|
|
|
8
8
|
GEM
|
|
9
9
|
remote: https://rubygems.org/
|
|
10
10
|
specs:
|
|
11
|
-
activesupport (
|
|
12
|
-
|
|
11
|
+
activesupport (8.1.3)
|
|
12
|
+
base64
|
|
13
|
+
bigdecimal
|
|
14
|
+
concurrent-ruby (~> 1.0, >= 1.3.1)
|
|
15
|
+
connection_pool (>= 2.2.5)
|
|
16
|
+
drb
|
|
13
17
|
i18n (>= 1.6, < 2)
|
|
18
|
+
json
|
|
19
|
+
logger (>= 1.4.2)
|
|
14
20
|
minitest (>= 5.1)
|
|
15
|
-
|
|
16
|
-
|
|
21
|
+
securerandom (>= 0.3)
|
|
22
|
+
tzinfo (~> 2.0, >= 2.0.5)
|
|
23
|
+
uri (>= 0.13.1)
|
|
17
24
|
ast (2.4.2)
|
|
18
|
-
|
|
25
|
+
base64 (0.3.0)
|
|
26
|
+
bigdecimal (4.1.2)
|
|
27
|
+
concurrent-ruby (1.3.6)
|
|
28
|
+
connection_pool (3.0.2)
|
|
19
29
|
csv (3.3.0)
|
|
20
30
|
date (3.4.1)
|
|
21
31
|
debug (1.9.2)
|
|
22
32
|
irb (~> 1.10)
|
|
23
33
|
reline (>= 0.3.8)
|
|
24
34
|
diff-lcs (1.5.1)
|
|
35
|
+
drb (2.2.3)
|
|
25
36
|
email_address (0.2.4)
|
|
26
37
|
simpleidn
|
|
27
38
|
factory_bot (6.5.0)
|
|
@@ -40,7 +51,7 @@ GEM
|
|
|
40
51
|
ffi (1.17.0-x86_64-linux-gnu)
|
|
41
52
|
ffi (1.17.0-x86_64-linux-musl)
|
|
42
53
|
fileutils (1.7.3)
|
|
43
|
-
i18n (1.14.
|
|
54
|
+
i18n (1.14.8)
|
|
44
55
|
concurrent-ruby (~> 1.0)
|
|
45
56
|
io-console (0.8.0)
|
|
46
57
|
irb (1.14.1)
|
|
@@ -52,7 +63,7 @@ GEM
|
|
|
52
63
|
rb-fsevent (~> 0.10, >= 0.10.3)
|
|
53
64
|
rb-inotify (~> 0.9, >= 0.9.10)
|
|
54
65
|
logger (1.6.5)
|
|
55
|
-
minitest (5.
|
|
66
|
+
minitest (5.27.0)
|
|
56
67
|
parallel (1.26.3)
|
|
57
68
|
parser (3.3.6.0)
|
|
58
69
|
ast (~> 2.4.1)
|
|
@@ -141,7 +152,7 @@ GEM
|
|
|
141
152
|
tzinfo (2.0.6)
|
|
142
153
|
concurrent-ruby (~> 1.0)
|
|
143
154
|
unicode-display_width (2.6.0)
|
|
144
|
-
|
|
155
|
+
uri (1.1.1)
|
|
145
156
|
|
|
146
157
|
PLATFORMS
|
|
147
158
|
aarch64-linux-gnu
|
data/RELEASE.md
ADDED
|
@@ -0,0 +1,18 @@
|
|
|
1
|
+
# Release
|
|
2
|
+
|
|
3
|
+
Keeping releases consistent is important so here are the steps to follow when pushing a new version.
|
|
4
|
+
|
|
5
|
+
1. Bump [lib/sbom/cyclone_dx/version.rb](https://github.com/Hacker0x01/sbom-cyclonedx/blob/main/lib/sbom/cyclone_dx/version.rb) to the next major.minor version
|
|
6
|
+
2. Make sure all tests are passing ```bundle && bundle exec rake && bundle exec rake appraisal spec```
|
|
7
|
+
3. Make sure [CHANGELOG](https://github.com/Hacker0x01/sbom-cyclonedx/blob/main/CHANGELOG.md) is up to date
|
|
8
|
+
4. Commit changes ```git commit -am "bumping to vX.X"```
|
|
9
|
+
|
|
10
|
+
Changes committed:
|
|
11
|
+
- Gemfile.lock
|
|
12
|
+
- version.rb
|
|
13
|
+
|
|
14
|
+
5. Push to github ```git push origin/master```
|
|
15
|
+
6. Tag the version ```git tag -a vX.X -m 'Version X.X Stable' && git push --tags```
|
|
16
|
+
7. Build the gem ```gem build sbom-cyclone_dx.gemspec```
|
|
17
|
+
8. Push the gem to ruby gems ```gem push sbom-cyclone_dx-X.X.X.gem```
|
|
18
|
+
9. Remove the built gem locally ```rm sbom-cyclone_dx-X.X.X.gem```
|
|
@@ -19,7 +19,7 @@ module SBOM
|
|
|
19
19
|
begin
|
|
20
20
|
# Steep is, for some reason, looking at OpenURI's ::URI, and not ::URI from stdlib...
|
|
21
21
|
uri_value = value.is_a?(URI::Generic) ? value : URI.parse(value)
|
|
22
|
-
return rv if uri_value.scheme.present?
|
|
22
|
+
return rv if uri_value.scheme.present?
|
|
23
23
|
rescue NoMethodError, URI::Error
|
|
24
24
|
# Do nothing, all errors handled below
|
|
25
25
|
end
|
data/sbom-cyclone_dx.gemspec
CHANGED
|
@@ -22,11 +22,11 @@ Gem::Specification.new do |spec|
|
|
|
22
22
|
|
|
23
23
|
spec.files = `git ls-files`.split("\n")
|
|
24
24
|
spec.bindir = "bin"
|
|
25
|
-
spec.executables = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
|
|
25
|
+
spec.executables = `git ls-files -- bin/*`.split("\n").map { |f| File.basename(f) }
|
|
26
26
|
|
|
27
27
|
spec.require_paths = ["lib"]
|
|
28
28
|
|
|
29
|
-
spec.add_dependency "activesupport", ">= 6.1", "<
|
|
29
|
+
spec.add_dependency "activesupport", ">= 6.1", "< 9"
|
|
30
30
|
spec.add_dependency "email_address", "~> 0.2", ">= 0.2.4"
|
|
31
31
|
spec.metadata["rubygems_mfa_required"] = "true"
|
|
32
32
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,13 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: sbom-cyclonedx
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.4.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rob Trame
|
|
8
|
-
autorequire:
|
|
9
8
|
bindir: bin
|
|
10
9
|
cert_chain: []
|
|
11
|
-
date:
|
|
10
|
+
date: 1980-01-02 00:00:00.000000000 Z
|
|
12
11
|
dependencies:
|
|
13
12
|
- !ruby/object:Gem::Dependency
|
|
14
13
|
name: activesupport
|
|
@@ -19,7 +18,7 @@ dependencies:
|
|
|
19
18
|
version: '6.1'
|
|
20
19
|
- - "<"
|
|
21
20
|
- !ruby/object:Gem::Version
|
|
22
|
-
version: '
|
|
21
|
+
version: '9'
|
|
23
22
|
type: :runtime
|
|
24
23
|
prerelease: false
|
|
25
24
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -29,7 +28,7 @@ dependencies:
|
|
|
29
28
|
version: '6.1'
|
|
30
29
|
- - "<"
|
|
31
30
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: '
|
|
31
|
+
version: '9'
|
|
33
32
|
- !ruby/object:Gem::Dependency
|
|
34
33
|
name: email_address
|
|
35
34
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -71,6 +70,7 @@ files:
|
|
|
71
70
|
- Gemfile.lock
|
|
72
71
|
- LICENSE.txt
|
|
73
72
|
- README.md
|
|
73
|
+
- RELEASE.md
|
|
74
74
|
- Rakefile
|
|
75
75
|
- Steepfile
|
|
76
76
|
- bin/console
|
|
@@ -434,7 +434,6 @@ metadata:
|
|
|
434
434
|
source_code_uri: https://github.com/Hacker0x01/sbom-cyclonedx
|
|
435
435
|
changelog_uri: https://github.com/Hacker0x01/sbom-cyclonedx/blob/main/CHANGELOG.md
|
|
436
436
|
rubygems_mfa_required: 'true'
|
|
437
|
-
post_install_message:
|
|
438
437
|
rdoc_options: []
|
|
439
438
|
require_paths:
|
|
440
439
|
- lib
|
|
@@ -449,8 +448,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
449
448
|
- !ruby/object:Gem::Version
|
|
450
449
|
version: '0'
|
|
451
450
|
requirements: []
|
|
452
|
-
rubygems_version: 3.
|
|
453
|
-
signing_key:
|
|
451
|
+
rubygems_version: 3.6.7
|
|
454
452
|
specification_version: 4
|
|
455
453
|
summary: Gem for generating/parsing CycloneDX JSON SBOMs
|
|
456
454
|
test_files: []
|