Skip to content

Releases: phylum-dev/cli

v6.4.0-rc1

13 May 17:23
@github-actions github-actions
v6.4.0-rc1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
16ab00e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.4.0-rc1 Pre-release
Pre-release

Added

  • PNPM v9 lockfile support
  • Support for parsing go.mod files with a Go directive of version 1.17 and higher

Changed

  • Improved go.sum file parsing to prevent the parser from listing unused packages

Fixed

  • Sandboxed processes sticking around after CLI is killed with a signal
  • Lockfiles with local versions breaking the pip parser
Loading

v6.3.0

22 Apr 16:17
@github-actions github-actions
v6.3.0
This tag was signed with the committer’s verified signature. The key has expired.
kylewillmon Kyle Willmon
GPG key ID: C59FE3EE765E3DD0
Expired
Verified
Learn about vigilant mode.
fb23936
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.3.0

Fixed

  • Improve parsing of non-UTF-8 encoded pom.xml files
  • SPDX SBOM registry determination from downloadLocation
  • SPDX parsing adding the described package as a dependency
  • SPDX parsing certain text files with optional package fields
Loading

v6.2.0

19 Mar 22:53
@github-actions github-actions
v6.2.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
f9f47f0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.2.0

Fixed

  • Crashes when parsing invalid lockfiles

Removed

  • phylum group transfer subcommand
  • Owner email from phylum group list results
Loading

v6.1.2

22 Feb 18:21
@github-actions github-actions
v6.1.2
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
46ecafd
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.1.2

Fixed

  • Improved sandboxing error message for unsupported kernel versions
Loading

v6.1.1

06 Feb 20:19
@github-actions github-actions
v6.1.1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
44a6063
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.1.1

Fixed

  • Python lockfile generation with pip in ~/.local
  • Python lockfile generation with pyenv
Loading

v6.1.1-rc1

01 Feb 02:30
@github-actions github-actions
v6.1.1-rc1
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
d794a51
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.1.1-rc1 Pre-release
Pre-release

Fixed

  • Python lockfile generation with pip in ~/.local
  • Python lockfile generation with pyenv
Loading

v6.1.0

29 Jan 17:30
@github-actions github-actions
v6.1.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
67dbfd7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.1.0

Added

  • Parse manifest files with non-standard names
Loading

v6.0.1

20 Dec 21:47
@github-actions github-actions
v6.0.1
This tag was signed with the committer’s verified signature. The key has expired.
kylewillmon Kyle Willmon
GPG key ID: C59FE3EE765E3DD0
Expired
Verified
Learn about vigilant mode.
293213f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.0.1

Fixed

  • Lockfile generation for gradle installed under /opt/gradle
Loading

v6.0.0

13 Dec 18:05
@github-actions github-actions
v6.0.0
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
ed91b53
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.0.0

Added

  • Add CVE data to issueDetails entries when --json flag is used for phylum package

Changed

  • Renamed multiple CLI arguments to avoid the term lockfile in places where
    manifests are also accepted
  • Renamed lockfiles key in phylum status --json output to dependency_files
Loading

v6.0.0-rc3

12 Dec 22:34
@github-actions github-actions
v6.0.0-rc3
This tag was signed with the committer’s verified signature.
maxrake Charles Coggins
GPG key ID: 39672059E0E43F0D
Verified
Learn about vigilant mode.
344554c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v6.0.0-rc3 Pre-release
Pre-release

Added

  • Add CVE data to issueDetails entries when --json flag is used for phylum package

Changed

  • Renamed multiple CLI arguments to avoid the term lockfile in places where
    manifests are also accepted
  • Renamed lockfiles key in phylum status --json output to dependency_files
Loading