You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
[pip] Stop allowing project metadata mixing from concurrent config files, e.g. pyproject.toml, setup.cfg, setup.py (5a65f16, #680) For projects that were defined this way and made use of cachi2 this will result in different SBOM component PURLs for the same set of inputs.
Improvements
[generic] Official support for the generic artifact fetcher
[generic] Support for fetching and SBOM reporting of Maven artifacts
Experimental features
[yarn v1] Implemented parsing for yarn.lock and package.json
Bug fixes
[CLI] typer: Do not log locals in an exception's stacktrace (CVE-2024-52582)
[bundler] Fixed missing cachi2:found_by SBOM property in precompiled gem components
