sbom 0.4.0 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +4 -0
  3. data/README.md +6 -0
  4. data/lib/sbom/version.rb +1 -1
  5. data/spec/cyclonedx/schema/bom-1.2-strict.schema.json +1029 -0
  6. data/spec/cyclonedx/schema/bom-1.2.schema.json +1001 -0
  7. data/spec/cyclonedx/schema/bom-1.3-strict.schema.json +1089 -0
  8. data/spec/cyclonedx/schema/bom-1.3.schema.json +1058 -0
  9. data/spec/cyclonedx/schema/bom-1.4.schema.json +1697 -0
  10. data/spec/cyclonedx/schema/bom-1.5.schema.json +3799 -0
  11. data/spec/cyclonedx/schema/bom-1.6.schema.json +5699 -0
  12. data/spec/cyclonedx/schema/bom-1.7.schema.json +6700 -0
  13. data/spec/spdx/schemas/spdx-schema.json +750 -0
  14. metadata +10 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b296a99b1a2ba980aedaa542532fd88bdea816209af3a2be1999a6e4305d0167
4
- data.tar.gz: 1e9a7c1e385a4ec311baac0ea055453631d559e76ab4bab67e34cfcf3166f536
3
+ metadata.gz: ea09b1deb0550d9a03da739b170da712b89c73415462752f51cb133c43639978
4
+ data.tar.gz: '019af2723634da6944d51280f8b8fb9b3bd8155135d01ad1464a102b1efc31a1'
5
5
  SHA512:
6
- metadata.gz: 60e7f56853ad7c7874b3d1b073c06ccbf6a455985ce86b10fba011273d0491a798a6067e866f3d399a2317150128aa035b05dbcae9b53979652fb56e3f924f73
7
- data.tar.gz: 4f35f84db7c6d1dfe219e73cc7ecdefd14f701ce5fd091c504318ba7bad4c036b18dc04a17a375ecf6b0ee396a5bbf590c30d4f4d71b96812a375da54d3a84f8
6
+ metadata.gz: dd10cb7772869ca0e7a22f60668cdaa76b5fcdd5dabf938894078c3a0936f2ad7897b0cf00487d47b1b191815025c2c722007d7a6a77d03e2d788a42388c6c89
7
+ data.tar.gz: 4696e6a8d0bebdcb97f8022e9a4c25f52f5e7930fa040391432e2e28bf2ef013b6c1c1d76bf4931e7fb69605a74cf457db76be92eaea2cc76a7a63b5ccac8159
data/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  ## [Unreleased]
2
2
 
3
+ ## [0.4.1] - 2026-01-14
4
+
5
+ - Include CycloneDX and SPDX schema files in published gem
6
+
3
7
  ## [0.4.0] - 2026-01-08
4
8
 
5
9
  - Add CycloneDX vulnerabilities array support to generator
data/README.md CHANGED
@@ -131,6 +131,12 @@ package.version = "7.0.0"
131
131
  package.license_concluded = "MIT"
132
132
  package.add_checksum("SHA256", "abc123...")
133
133
 
134
+ # Go modules use base64-encoded hashes in go.sum - convert to hex first:
135
+ require "base64"
136
+ go_hash = "h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4="
137
+ hex = Base64.decode64(go_hash.sub(/^h1:/, "")).unpack1("H*")
138
+ package.add_checksum("SHA256", hex)
139
+
134
140
  # Generate a PURL
135
141
  package.generate_purl(type: "gem")
136
142
  # => "pkg:gem/rails@7.0.0"
data/lib/sbom/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Sbom
4
- VERSION = "0.4.0"
4
+ VERSION = "0.4.1"
5
5
  end