Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / CycloneDX/cyclonedx-node-module issues and pull requests

#365 - announce yarn plugin

Pull Request - State: closed - Opened by jkowalleck about 1 month ago
Labels: enhancement

#364 - chore(deps): Bump pnpm/action-setup from 3.0.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies

#363 - docs: add rollup-plugin-sbom to out of scope section

Pull Request - State: closed - Opened by janbiasi about 2 months ago - 1 comment

#362 - Temporary workaround for Node.js v22 on Windows

Pull Request - State: closed - Opened by cclauss 2 months ago - 2 comments

#361 - chore(ci): fix macos runner

Pull Request - State: closed - Opened by jkowalleck 2 months ago
Labels: CI, chore

#360 - chore: use node22 in CI/CT

Pull Request - State: closed - Opened by jkowalleck 2 months ago
Labels: QA, CI, chore

#359 - docs: add yarn, esbuild, Rspack/Rsbuild, Svelte

Pull Request - State: closed - Opened by jkowalleck 3 months ago
Labels: documentation

#358 - Bump softprops/action-gh-release from 1 to 2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies

#357 - Bump pnpm/action-setup from 2.4.0 to 3.0.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies

#356 - Bump actions/setup-node from 3 to 4

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#355 - Bump actions/checkout from 3 to 4

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies

#354 - Bump pnpm/action-setup from 2.2.4 to 2.4.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies

#353 - yarn 3.6.1 lockfile issue

Issue - State: closed - Opened by chrisbgithub 11 months ago - 1 comment

#352 - SBOM can contain invalid URLs in externalReferences

Issue - State: closed - Opened by mmarseu almost 1 year ago - 7 comments

#351 - chore: ci scheduled for Sundays

Pull Request - State: closed - Opened by jkowalleck about 1 year ago
Labels: CI, chore

#350 - chore: ci uses node20

Pull Request - State: closed - Opened by jkowalleck about 1 year ago
Labels: QA, CI, chore

#349 - ✏️ fix readme type: suites -> suits

Pull Request - State: closed - Opened by ctcpip about 1 year ago

#348 - chore: release process allow previews

Pull Request - State: closed - Opened by jkowalleck over 1 year ago
Labels: chore

#347 - ci: run node18

Pull Request - State: closed - Opened by jkowalleck over 1 year ago
Labels: CI

#346 - docs: fix shields

Pull Request - State: closed - Opened by jkowalleck over 1 year ago
Labels: documentation

#344 - "cyclonedx-bom: command not found" when installing [email protected]

Issue - State: closed - Opened by EvgeniaPatsoni over 1 year ago - 3 comments
Labels: question

#343 - Missing feature in Version 4 / cyclonedx-npm to inlcuse License text

Issue - State: closed - Opened by vanthome over 1 year ago - 3 comments
Labels: question

#342 - docs: describe scope

Pull Request - State: closed - Opened by jkowalleck over 1 year ago
Labels: documentation

#340 - Bump pnpm/action-setup from 2.2.2 to 2.2.4

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#339 - Bump ssri from 8.0.1 to 10.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, javascript

#338 - Bump jest from 27.5.1 to 29.2.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, javascript

#337 - [PSA] ALTERNATIVES :exclamation: :mega:

Issue - State: closed - Opened by jkowalleck over 1 year ago - 1 comment
Labels: PSA

#336 - There are no components in the bom

Issue - State: closed - Opened by Stidgit over 1 year ago - 6 comments

#333 - Bump @xmldom/xmldom from 0.8.2 to 0.8.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, javascript

#332 - Bump jest from 27.5.1 to 29.1.2

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#331 - Bump commander from 8.3.0 to 9.4.1

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#330 - Bump @babel/eslint-parser from 7.17.0 to 7.19.1

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#329 - Bump jest from 27.5.1 to 29.0.3

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#328 - Conflicts between cyclonedx-node-module and cyclonedx-python commands

Issue - State: closed - Opened by rvsoni almost 2 years ago - 2 comments

#327 - Bump jest from 27.5.1 to 29.0.2

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#326 - Ensure license text persists linting

Pull Request - State: closed - Opened by bmodotdev almost 2 years ago - 2 comments
Labels: chore

#325 - Bump jest from 27.5.1 to 29.0.1

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#324 - chore: fix release workflow

Pull Request - State: closed - Opened by jkowalleck almost 2 years ago
Labels: bug, CI

#323 - chore: enable proper prereleases

Pull Request - State: closed - Opened by jkowalleck almost 2 years ago
Labels: CI, chore

#322 - Fix for https://github.com/AppThreat/cdxgen/issues/148

Pull Request - State: closed - Opened by bobflannigon almost 2 years ago - 5 comments
Labels: breaking change

#321 - v4.0

Pull Request - State: closed - Opened by jkowalleck almost 2 years ago - 5 comments
Labels: enhancement, dependencies, github_actions, QA, CI, breaking change, chore, documentation, style, tests

#320 - Bump @babel/eslint-parser from 7.17.0 to 7.18.9

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#319 - Bump commander from 8.3.0 to 9.4.0

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#318 - Bump jest from 27.5.1 to 28.1.3

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, javascript

#317 - CI: fix SBOM gathering for the bundled application in the docker image

Pull Request - State: closed - Opened by jkowalleck almost 2 years ago

#316 - simplify docker image

Pull Request - State: closed - Opened by jkowalleck almost 2 years ago

#314 - Bump jest from 27.5.1 to 28.1.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#313 - Fix comparison of component without version info

Pull Request - State: closed - Opened by peschuster about 2 years ago - 2 comments

#312 - Consider optional element "comment" when serializing ExternalReference

Pull Request - State: closed - Opened by peschuster about 2 years ago - 3 comments
Labels: enhancement

#309 - Bump jest from 27.5.1 to 28.1.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#308 - Exception if #purl is not available

Issue - State: closed - Opened by peschuster about 2 years ago - 5 comments
Labels: bug

#307 - [Yarn] First-use experience has some issues

Issue - State: closed - Opened by oliversalzburg about 2 years ago - 6 comments

#306 - split code in library and application part

Issue - State: closed - Opened by jkowalleck about 2 years ago - 2 comments

#305 - chore: have check for license-text file-header

Issue - State: closed - Opened by jkowalleck about 2 years ago
Labels: chore

#304 - Bump @babel/eslint-parser from 7.17.0 to 7.18.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#303 - Bump commander from 8.3.0 to 9.3.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#302 - Bump ssri from 8.0.1 to 9.0.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#300 - node18 support

Pull Request - State: closed - Opened by jkowalleck about 2 years ago

#299 - Bump jest from 27.5.1 to 28.1.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#298 - use CDX-JS lib for data models, serialization and everythig.

Issue - State: closed - Opened by jkowalleck about 2 years ago - 2 comments
Labels: enhancement, breaking change

#296 - add dependencies

Pull Request - State: closed - Opened by kabo about 2 years ago - 7 comments
Labels: enhancement

#295 - Bump jest from 27.5.1 to 28.0.3

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#294 - [YARN] support yarn2/yarn3

Issue - State: closed - Opened by jkowalleck about 2 years ago - 1 comment
Labels: enhancement, help wanted

#293 - support yarn2

Pull Request - State: closed - Opened by jkowalleck about 2 years ago - 1 comment
Labels: help wanted

#292 - cleanup tests

Pull Request - State: closed - Opened by jkowalleck about 2 years ago
Labels: chore, tests

#291 - Bump xmldom from 0.2.1 to 0.6.0 in /tests/integration/with-yarn1-lockfile

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 2 comments
Labels: dependencies, javascript

#290 - cleanup tests

Pull Request - State: closed - Opened by jkowalleck about 2 years ago
Labels: chore, tests

#289 - initial `.npmignore` & extended `.gitignore`

Pull Request - State: closed - Opened by jkowalleck about 2 years ago

#288 - add option to make sbom reproducible & more privates & various fixes

Pull Request - State: closed - Opened by jkowalleck about 2 years ago

#287 - Bump jest-junit from 13.1.0 to 13.2.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#286 - Bump standard from 16.0.4 to 17.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#285 - Refactor to create BOMs from text.

Pull Request - State: closed - Opened by PaulMorel1 about 2 years ago - 1 comment

#284 - Bump commander from 8.3.0 to 9.2.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#283 - Bump xmldom from 0.2.1 to 0.6.0 in /tests/integration/with-yarn-lockfile

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 2 comments
Labels: dependencies, javascript

#282 - [YARN] Add yarn.lock support

Pull Request - State: closed - Opened by koconnor-dev about 2 years ago - 6 comments

#281 - Bump jest-junit from 13.0.0 to 13.1.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, javascript

#280 - Bump ssri from 8.0.1 to 9.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago - 1 comment
Labels: dependencies, javascript

#279 - Bump @xmldom/xmldom from 0.7.5 to 0.8.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, javascript

#278 - Bump actions/download-artifact from 2 to 3

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#277 - Bump actions/upload-artifact from 2 to 3

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#276 - Bump packageurl-js from 0.0.5 to 0.0.6

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, javascript

#274 - Bump commander from 8.3.0 to 9.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, javascript

#273 - bump integration tests: use non-vulnerable components

Issue - State: closed - Opened by jkowalleck over 2 years ago - 1 comment
Labels: help wanted, QA, tests

#272 - Issue255

Pull Request - State: closed - Opened by jkowalleck over 2 years ago - 1 comment

#257 - Issue255

Pull Request - State: closed - Opened by CompartMSL over 2 years ago - 3 comments

#256 - Invalid or unexpected token in 3.4.1

Issue - State: closed - Opened by rkg-mm over 2 years ago - 2 comments
Labels: not-reproducible

#255 - FF in license file throws error

Issue - State: closed - Opened by CompartMSL over 2 years ago - 3 comments
Labels: bug, help wanted

#249 - spec 1.4: `component.version` optional

Issue - State: closed - Opened by jkowalleck over 2 years ago - 2 comments

#244 - Add dependency graph info to BoM

Pull Request - State: closed - Opened by ManjunathMS35 over 2 years ago - 8 comments
Labels: enhancement

#242 - Support patch-package for component pedigree information

Issue - State: closed - Opened by coderpatros over 2 years ago
Labels: enhancement, help wanted

#238 - [YARN] Yarn support?

Issue - State: closed - Opened by factoidforrest over 2 years ago - 8 comments
Labels: help wanted, question

#233 - use private properties with `#`

Issue - State: closed - Opened by jkowalleck over 2 years ago
Labels: style

#232 - Restructure project tree

Pull Request - State: closed - Opened by jkowalleck over 2 years ago

#231 - [WIP] v4

Pull Request - State: closed - Opened by jkowalleck over 2 years ago

#229 - SBOM JSON result: add `$schema`

Issue - State: closed - Opened by jkowalleck over 2 years ago
Labels: enhancement

#226 - DRAFT: restructure project

Issue - State: closed - Opened by jkowalleck over 2 years ago
Labels: style

#225 - [DRAFT] remove depricated file `bin/cyclonedx-bom`

Issue - State: closed - Opened by jkowalleck over 2 years ago