Skip to content

Release v11.0.5 - hey quarkus
Compare
Choose a tag to compare
@prabhu prabhu released this 05 Dec 13:47
· 13 commits to master since this release
v11.0.5
250d9ce
This commit was signed with the committer’s verified signature.
prabhu prabhu
GPG key ID: 5589813335E58C11
Learn about vigilant mode.

cdxgen now supports the Quarkus framework with automatic detection for Maven projects—no configuration changes needed. It uses the official dependency-sbom goal but adds extra value by including phantom JARs that aren’t managed through Maven. With the research profile enabled (--profile research), cdxgen produces a highly detailed SBOM with occurrences and call stack evidence, offering better insights than the official implementation, which only tracks jar files.

cdxgenGPT is also updated to better understand the evidence information for decent reasoning performance.

2024-12-05_15-25-57

What's Changed

Other Changes

  • feat: quarkus maven support by @prabhu in #1480
  • Improve printOccurrences function with streaming output for large SBO… by @deeshantk in #1482

New Contributors

Full Changelog: v11.0.4...v11.0.5

Contributors

prabhu and deeshantk
Assets 22
Loading