licensed

Граф коммитов

Автор	SHA1	Сообщение	Дата
Kevin Dangoor	d43366816f	Ensure that we don't have a vulnerability from cabal (#737 ) * Ensure that we don't have a vulnerability from cabal This makes sure we don't get a homepage URL from cabal that's too long and causes a performance issue leading to a denial of service. Fixes https://github.com/github/licensed/security/code-scanning/1	2024-08-13 13:37:05 -04:00
Kevin Dangoor	1d77e9ddb0	Update changelog for 4.5 (#735 ) * Update changelog for 4.5 * Update README with instructions for releases. Looks like the right way to do a release is on GitHub itself and not on the command line.	2024-08-13 13:27:45 -04:00
Jon Ruskin	c749c334cd	release-4.4.0 ### Added - Licensed status command will alert on stale cached dependency records (https://github.com/github/licensed/pull/657)	2023-05-26 09:18:56 -07:00
Jon Ruskin	52a1476273	release 4.3.1 ## 4.3.1 ### Changed - Bump nokogiri to resolve vulnerabilities (https://github.com/github/licensed/pull/648)	2023-04-12 11:12:20 -07:00
Jon Ruskin	e0774b46fc	release 4.3.0 ### Added - Cocoapods support has been re-enabled using a cocoapods plugin (https://github.com/github/licensed/pull/644)	2023-03-20 09:59:28 -07:00
Jon Ruskin	c20fd0a17b	release 4.2.0 ### Added - Reviewed and ignored configuration lists support matching on versions and version ranges (https://github.com/github/licensed/pull/629) ### Fixed - Licensed should more reliably source dependencies from Gradle >= 8.0 (https://github.com/github/licensed/pull/630)	2023-02-25 13:11:30 -07:00
Jon Ruskin	8a63e37f6f	release 4.1.0 ### Added - Custom license terms can be added to dependencies via new configuration options (https://github.com/github/licensed/pull/624) - Licensed is now integrated with pnpm to enumerate dependencies (https://github.com/github/licensed/pull/626)	2023-02-08 09:56:21 -07:00
Jon Ruskin	120fdf8167	release 4.0.4 ### Changed - Dependency version requirements are more relaxed (https://github.com/github/licensed/pull/619)	2023-01-26 09:24:28 -07:00
Jon Ruskin	a545485f0f	release 4.0.3 ### Changed - Cocoapods dependency enumeration has been disabled (https://github.com/github/licensed/pull/616) ### Fixed - Fixed method signature change in Bundler API with Bundler >= 2.4.4 (🎉 @CvX https://github.com/github/licensed/pull/614) - Fixed installation dependency compatibility with Rails >= 7.0 (https://github.com/github/licensed/pull/616)	2023-01-17 09:34:47 -07:00
Jon Ruskin	2ecb2fc063	release 4.0.2 - The path to a gradlew executable can be configured when enumerating gradle dependencies (🎉 @LouisBoudreau https://github.com/github/licensed/pull/610)	2023-01-11 09:52:40 -07:00
Jon Ruskin	15ac3e693e	release 4.0.1 ## 4.0.1 ### Fixed - Running gradle tests will no longer fail when gradle is not available (https://github.com/github/licensed/pull/606)	2023-01-06 09:40:02 -07:00
Jon Ruskin	fd55d32cd2	add missing link to change	2023-01-05 10:35:42 -07:00
Jon Ruskin	e9eca50c12	release 4.0.0 ### Added - Licensed supports Cocoapods as a dependency source (🎉 @LouisBoudreau https://github.com/github/licensed/pull/584) - Licensed supports Gradle multi-project builds (🎉 @LouisBoudreau https://github.com/github/licensed/pull/583) ### Fixed - Licensed no longer crashes when run with Bundler >= 2.4.0 (🎉 @JoshReedSchramm https://github.com/github/licensed/pull/597) ### Changed - BREAKING: Licensed no longer ships executables with releases (https://github.com/github/licensed/pull/586) - BREAKING: Licensed no longer includes support for Go <= 1.11	2023-01-05 10:34:23 -07:00
Jon Ruskin	1eb87b1f5d	release 3.9.1 ## 3.9.1 ### Fixed - Updating cached dependency records will more accurately apply `review_changed_license` flag (https://github.com/github/licensed/pull/578)	2022-11-25 15:23:48 -07:00
Jon Ruskin	eb4c44f5ab	release 3.9.0 ### Added - `NOTICE` files can now be generated without cached files in a repository (https://github.com/github/licensed/pull/572)	2022-11-14 09:20:05 -07:00
Jon Ruskin	fbfb06f710	release 3.8.0 ### Added - Licensing compliance status checks can now be used without cached files in a repository (https://github.com/github/licensed/pull/560)	2022-10-29 09:03:13 -07:00
Jon Ruskin	bd18e6715d	release 3.7.5 ### Fixed - Python dependency metadata will be correctly parsed from the ouput of `pip show` (https://github.com/github/licensed/pull/555)	2022-10-20 08:08:29 -07:00
Jon Ruskin	725c39be2a	release 3.7.4 ## 3.7.4 ### Fixed - Licenses for Python dependencies built with Hatchling are correctly found (https://github.com/github/licensed/pull/547)	2022-10-06 17:37:14 -07:00
Jon Ruskin	caf8bdabad	add missed fix by CvX fix was copied to a separate PR to fix build issues	2022-08-16 20:22:04 -07:00
Jon Ruskin	418333c2d9	release 3.7.3 ## 3.7.3 ### Fixed - Swift test fixtures build artifacts are now ignored (🎉 @CvX https://github.com/github/licensed/pull/524) - Running cargo test fixture setup no longer deletes test files (🎉 @CvX https://github.com/github/licensed/pull/525) - Bundler test fixtures are compatible with latest macOS silicon(🎉 @CvX https://github.com/github/licensed/pull/528) - Fix segfaults seen using licensed with ruby 3.0.4 (https://github.com/github/licensed/pull/530) - Fix compatibility with latest versions of bundler 2.3 (https://github.com/github/licensed/pull/535)	2022-08-16 20:18:13 -07:00
Jon Ruskin	52e9b6be80	release 3.7.2 ## 3.7.2 ### Fixed - Comparing dependency license contents now finds matching contents regardless of the order of the licenses (https://github.com/github/licensed/pull/516) - Fixed typo in a link in README.md (https://github.com/github/licensed/pull/514) ### Changed - Elixir testing setup is migrated to erlef/setup-beam (https://github.com/github/licensed/pull/512)	2022-06-02 10:38:57 -07:00
Jon Ruskin	9cf7691d9e	release 3.7.1 ## 3.7.1 ### Fixed - Dependencies' legal notice file matching has been made more strict to reduce false positives on code files containing the word `legal` (https://github.com/github/licensed/pull/510)	2022-05-13 08:05:19 -07:00
Jon Ruskin	809e6ce994	release 3.7.0 ## 3.7.0 ### Changed - Pip and pipenv sources will find dependency licenses under `dist-info/license_files` when available (https://github.com/github/licensed/pull/504)	2022-04-25 16:03:27 -07:00
Jon Ruskin	320bc47eb2	release 3.6.0 ## 3.6.0 2022-03-17 ### Added - Composer dev dependencies can optionally be included in enumerated PHP dependencies (🎉 `@digilist` https://github.com/github/licensed/pull/486) - Getting started usage documentation (https://github.com/github/licensed/pull/483) - Initial support for NPM workspaces (https://github.com/github/licensed/pull/485) ### Changed - Transitive dependencies are now enumerated by the `pip` source (https://github.com/github/licensed/pull/480) ### Fixed - `licensed cache --force` will now correctly overwrite existing license classifications (https://github.com/github/licensed/pull/473)	2022-03-17 13:56:12 -07:00
Jon Ruskin	29a9597157	release 3.5.0 ## 3.5.0 2022-02-24 ### Added - [Licensee](https://github.com/licensee/licensee) confidence thresholds can be configured in the licensed configuration file (https://github.com/github/licensed/pull/455)	2022-02-24 13:52:33 -07:00
Jon Ruskin	ad3a0ed004	release 3.4.4 ## 3.4.4 2022-02-07 ### Fixed - The npm and pip sources have better protection from strings causing crashes in `Hash#dig` (https://github.com/github/licensed/pull/450)	2022-02-07 19:47:49 -07:00
Jon Ruskin	9635bbe9ef	release 3.4.3 ## 3.4.3 2022-01-31 ### Added - The npm source handles more cases of missing, optional, peer dependencies (https://github.com/github/licensed/pull/443)	2022-01-31 11:09:25 -07:00
Jon Ruskin	310afd3e26	release 3.4.2 ## 3.4.2 2022-01-17 ### Fixed - The yarn source will no longer evaluate package.json files that do not represent project dependencies (https://github.com/github/licensed/pull/439)	2022-01-17 09:58:38 -07:00
Jon Ruskin	9ba7df22d4	release 3.4.1 ## 3.4.1 2022-01-07 ### Fixed - Malformed package.json files will no longer crash yarn dependency detection (https://github.com/github/licensed/pull/431)	2022-01-07 16:22:58 -07:00
Jon Ruskin	f4c5e60447	release 3.4.0 ## 3.4.0 2021-12-14 ### Added - New Yarn enumerator with support for berry versions (https://github.com/github/licensed/pull/423) ### Fixed - Error handling cases return correct values in the Yarn enumerator (https://github.com/github/licensed/pull/425) - Fixed link in command documentation (🎉 @chibicco https://github.com/github/licensed/pull/416) - Fixed minor backwards compatibility issue for Ruby 2.3 support (🎉 @dzunk https://github.com/github/licensed/pull/414) ### Changed - Licensed's own dependencies are cached in the repository and kept up to date with GitHub Actions (https://github.com/github/licensed/pull/421)	2021-12-14 16:29:19 -07:00
Jon Ruskin	ed566be7f4	release 3.3.1 ## 3.3.1 2021-10-07 ### Fixed - Fix evaluation of peer dependencies with npm 7 (🎉 @manuelpuyol https://github.com/github/licensed/pull/411) ### Changed - Manifest source evaluation performance improvements (https://github.com/github/licensed/pull/407)	2021-10-07 09:09:39 -07:00
Jon Ruskin	3180c5eede	release 3.3.0 2021-09-18 ### Added - New cargo source enumerates rust dependencies (https://github.com/github/licensed/pull/404) ### Changed - Removed non-functional files from gem builds (https://github.com/github/licensed/pull/405)	2021-09-18 21:30:55 -07:00
Jon Ruskin	27f22bec8d	release 3.2.3 ## 3.2.3 2021-09-14 ### Fixed - Bundler source will no longer infinitely recurse when enumerating specifications (https://github.com/github/licensed/pull/402) - Using the `--sources` command line option will no longer delete skipped sources' cached files (https://github.com/github/licensed/pull/401)	2021-09-14 13:04:19 -07:00
Jon Ruskin	f991556798	Release 3.2.2 ## 3.2.2 2021-09-09 ### Fixed - Bundler source works properly again when used outside of `bundle exec` (https://github.com/github/licensed/pull/397)	2021-09-09 21:43:04 -07:00
Jon Ruskin	0eeeeefd21	release 3.2.1 ## 3.2.1 2021-09-06 ### Changed - Updated multiple dependency versions (🎉 @mmorel-35 https://github.com/github/licensed/pull/385, https://github.com/github/licensed/pull/389) - Go homepage links use pkg.go.dev instead of godoc.org (🎉 @mmorel-35 `73cfbbe954`) - Local development ruby version changed to 2.7.4 (https://github.com/github/licensed/pull/393) ### Fixed - Bundler source correctly finds platform specific dependencies (https://github.com/github/licensed/pull/392)	2021-09-06 10:44:11 -07:00
Jon Ruskin	a8612f0fe8	Update CHANGELOG.md	2021-08-19 14:39:43 -07:00
Jon Ruskin	610da549ec	release 3.2.0	2021-08-19 11:43:23 -07:00
Jon Ruskin	00ce3f43e7	release 3.1.0 ## 3.1.0 2021-06-16 ### Added - Licensed supports Swift/Swift package manager as a dependency source (🎉 @mattt https://github.com/github/licensed/pull/363)' ### Changed - The `source_path` configuration property accepts arrays of inclusion and exclusion glob patterns (https://github.com/github/licensed/pull/368) - The Nuget source now uses configured fallback folders to find dependencies that are not in found in the project folder (https://github.com/github/licensed/pull/366) - The Nuget source supports a configurable property for the path from the project source path to the project's `obj` folder (https://github.com/github/licensed/pull/365) ### Fixed - The Go source's checks for local packages will correctly find paths in case-insensitive file systems (https://github.com/github/licensed/pull/370) - The Bundler source will no longer unnecessarily reset the local Bundler environment configuration (https://github.com/github/licensed/pull/372)	2021-06-16 10:02:43 -07:00
Jon Ruskin	97bee37d18	release 3.0.1 ## 3.0.1 2021-05-17 ### Fixed - The bundler source will correctly enumerate dependencies pulled with a `git:` directive (https://github.com/github/licensed/pull/360)	2021-05-17 17:51:06 -07:00
Jon Ruskin	8b15fe267c	release 3.0.0	2021-04-27 17:23:23 -07:00
Jon Ruskin	4cfff62d64	release 2.15.2 ## 2.15.2 2021-04-06 ### Fixed - The pip source now accepts package names with dots (🎉 @bcskda https://github.com/github/licensed/pull/350)	2021-04-06 14:07:41 -07:00
Jon Ruskin	d75306544e	fix the 2.15.1 entry in changelog	2021-03-29 15:02:49 -07:00
Jon Ruskin	386b2e2305	release 2.15.1 ## 2.15.0 2021-03-24 ### Changed - The npm source will ignore dependencies that are marked as both extraneous and missing (https://github.com/github/licensed/pull/347)	2021-03-29 14:55:06 -07:00
Jon Ruskin	cb362ae0c0	release 2.15.0 ## 2.15.0 2021-03-24 ### Added - Support for npm 7 (https://github.com/github/licensed/pull/341) ### Fixed - Files in the manifest source will be found correctly for apps that are not at the repository root (https://github.com/github/licensed/pull/345)	2021-03-24 16:00:15 -07:00
Jon Ruskin	2701cb8adc	release 2.14.4 ## 2.14.4 2021-02-09 ## Added - `list` and `cache` commands optionally print output in JSON or YML formats using the `--format/-f` flag (https://github.com/github/licensed/pull/334) - `list` command will include detected license keys using the `--licenses/-l` flag (https://github.com/github/licensed/pull/334)	2021-02-09 13:51:42 -07:00
Jon Ruskin	2cec05ffb4	release 2.14.3	2020-12-11 15:08:42 -07:00
Jon Ruskin	dc91146933	Release 2.14.2 ## 2.14.2 2020-11-20 ## Fixed - Yarn source correctly finds dependency paths on disk (https://github.com/github/licensed/pull/326) - Go source better handles finding dependencies that have been vendored (https://github.com/github/licensed/pull/323)	2020-11-20 09:54:13 -07:00
Jon Ruskin	23799b6172	release 2.14.1 ## 2.14.1 2020-10-09 ### Fixed - Shell command output is encoded to UTF8 (https://github.com/github/licensed/pull/319)	2020-10-09 10:39:24 -07:00
Jon Ruskin	93b4d87dd4	release 2.14.0 ## 2.14.0 2020-10-04 ### Addded - `reviewed` dependencies can use glob pattern matching (https://github.com/github/licensed/pull/313) ### Fixed - Fix configuring source path globs that expand into a single directory (https://github.com/github/licensed/pull/312)	2020-10-04 10:45:26 -07:00
Jon Ruskin	215f94b9d9	release 2.13.0	2020-09-23 17:50:17 -07:00

1 2

87 Коммитов