GitHub / CycloneDX/cyclonedx-rust-cargo issues and pull requests
#504 - Write the dependency tree to the SBOM
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
#503 - Fix spec compliance: use an actually unique `bom-ref`
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
#502 - `bom-ref` field is not actually unique
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
#501 - Include information on dependency origin (crates.io, git, custom registry)
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 1 comment
Labels: enhancement
#500 - Allow emitting SBOM for a specific platform
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
#499 - Slience lax parsing "errors"
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
- 4 comments
#498 - Accurate deps
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
- 1 comment
#497 - Use buffered I/O when writing for much higher performance
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
#496 - Convert to `cargo metadata` as a backend
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
- 2 comments
#495 - SBOM configuration via `Cargo.toml` appears harmful
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 2 comments
#494 - Bump clap from 4.4.0 to 4.4.7
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#493 - Bump base64 from 0.21.2 to 0.21.5
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#492 - Bump toml from 0.7.6 to 0.8.4
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#491 - Release 0.4.0
Pull Request -
State: closed - Opened by Shnatsel almost 2 years ago
- 1 comment
#490 - Ship 0.4.0
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 1 comment
#489 - Download crates in parallel
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 1 comment
#488 - Add prod build and release steps
Pull Request -
State: closed - Opened by keponk almost 2 years ago
- 8 comments
#487 - Bump rustix from 0.37.23 to 0.37.25
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#486 - Bump regex from 1.9.3 to 1.10.1
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#485 - Bump DeterminateSystems/nix-installer-action from 4 to 6
Pull Request -
State: open - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: dependencies, github_actions
#484 - Add cache to speed up builds
Pull Request -
State: closed - Opened by keponk almost 2 years ago
- 8 comments
#483 - Bump regex from 1.9.3 to 1.10.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#482 - Bump cargo from 0.73.0 to 0.74.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#481 - Init release pipeline
Pull Request -
State: closed - Opened by keponk almost 2 years ago
- 1 comment
#480 - CycloneDX is full-stack
Pull Request -
State: closed - Opened by msymons almost 2 years ago
- 1 comment
#479 - Bump DeterminateSystems/nix-installer-action from 4 to 5
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, github_actions
#478 - Bump toml from 0.7.6 to 0.8.2
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#477 - Bump regex from 1.9.3 to 1.9.6
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#476 - Bump clap from 4.4.0 to 4.4.6
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#475 - Test release files
Pull Request -
State: closed - Opened by keponk almost 2 years ago
#474 - Getting different behavior between repo and cargo install
Issue -
State: closed - Opened by keponk almost 2 years ago
- 13 comments
#473 - Bump insta from 1.31.0 to 1.33.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, rust
#472 - Bump toml from 0.7.6 to 0.8.1
Pull Request -
State: open - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, rust
#471 - Bump insta from 1.31.0 to 1.32.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#470 - Bump serde_json from 1.0.105 to 1.0.107
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, rust
#469 - Bump thiserror from 1.0.47 to 1.0.48
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, rust
#468 - Allow parsing JSON from an existing `serde_json::Value`
Issue -
State: closed - Opened by ctron almost 2 years ago
- 1 comment
#467 - Bump time from 0.3.27 to 0.3.29
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, rust
#465 - Bump actions/checkout from 3 to 4
Pull Request -
State: open - Opened by dependabot[bot] almost 2 years ago
Labels: dependencies, github_actions
#464 - Bump regex from 1.9.3 to 1.9.5
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#463 - Bump base64 from 0.21.2 to 0.21.3
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#462 - Bump regex from 1.9.3 to 1.9.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#461 - Bump cargo from 0.73.0 to 0.73.1
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#460 - Bump serde from 1.0.187 to 1.0.188
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, rust
#459 - Bump time from 0.3.27 to 0.3.28
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#458 - Bump cargo from 0.71.0 to 0.72.2
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#457 - Update dependencies, MSRV and edition
Pull Request -
State: closed - Opened by lfrancke about 2 years ago
#454 - Bump clap from 4.3.0 to 4.3.24
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#453 - Bump time from 0.3.21 to 0.3.27
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#452 - Bump time from 0.3.21 to 0.3.26
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#451 - Bump clap from 4.3.0 to 4.3.23
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#450 - Bump clap from 4.3.0 to 4.3.22
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#449 - Bump serde_json from 1.0.96 to 1.0.105
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#448 - Bump clap from 4.3.0 to 4.3.21
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#447 - Bump time from 0.3.21 to 0.3.25
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#446 - Allow access to the spec version
Issue -
State: closed - Opened by ctron about 2 years ago
- 2 comments
#445 - Bump time from 0.3.21 to 0.3.24
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#444 - "All" dependencies include all dependencies across all packages
Issue -
State: closed - Opened by lfrancke about 2 years ago
#443 - Fixes #442 - top level dependencies feature fixed
Pull Request -
State: closed - Opened by lfrancke about 2 years ago
#442 - Top-level dependencies don't work anymore
Issue -
State: closed - Opened by lfrancke about 2 years ago
#441 - Generate output per target, not per package
Pull Request -
State: closed - Opened by lfrancke about 2 years ago
- 12 comments
#440 - Bump serde_json from 1.0.96 to 1.0.104
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#438 - Bump xml-rs from 0.8.10 to 0.8.16
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 4 comments
Labels: dependencies, rust
#437 - Bump serde_json from 1.0.96 to 1.0.103
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#436 - Bump clap from 4.3.0 to 4.3.17
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#435 - Bump clap from 4.3.0 to 4.3.16
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#434 - Bump uuid from 1.3.3 to 1.4.1
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 2 comments
Labels: dependencies, rust
#433 - Bump clap from 4.3.0 to 4.3.15
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#432 - Bump clap from 4.3.0 to 4.3.12
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#431 - Bump serde_json from 1.0.96 to 1.0.102
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#430 - Bump time from 0.3.21 to 0.3.23
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#428 - Bump clap from 4.3.0 to 4.3.11
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#427 - Bump xml-rs from 0.8.10 to 0.8.15
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#426 - Bump clap from 4.3.0 to 4.3.10
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#425 - Bump time from 0.3.21 to 0.3.22
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#424 - Bump clap from 4.3.0 to 4.3.9
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#422 - Bump serde_json from 1.0.96 to 1.0.99
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#421 - Bump uuid from 1.3.3 to 1.4.0
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#420 - Switch Flake to use Crane and Rust Overlay
Pull Request -
State: closed - Opened by amy-keibler about 2 years ago
#419 - Switch to DeterminateSystems' new GH Actions Cache
Pull Request -
State: closed - Opened by amy-keibler about 2 years ago
#418 - Bump toml from 0.7.3 to 0.7.5
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, rust
#417 - Bump cachix/install-nix-action from 20 to 22
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, github_actions
#415 - Use thin instead of fat LTO for leaner release builds
Pull Request -
State: closed - Opened by adamreichold about 2 years ago
#414 - Bump log from 0.4.17 to 0.4.19
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, rust
#413 - Bump regex from 1.8.1 to 1.8.4
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, rust
#412 - Bump xml-rs from 0.8.10 to 0.8.14
Pull Request -
State: closed - Opened by dependabot[bot] about 2 years ago
- 1 comment
Labels: dependencies, rust
#411 - Consider using `url::Url` instead of custom `Uri` type.
Issue -
State: open - Opened by alilleybrinker over 2 years ago
#410 - Consider using `packageurl::PackageUrl` instead of custom `Purl` type.
Issue -
State: open - Opened by alilleybrinker over 2 years ago
- 3 comments
#409 - Make dependency content public.
Issue -
State: closed - Opened by alilleybrinker over 2 years ago
- 2 comments
#408 - Bump log from 0.4.17 to 0.4.18
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, rust
#407 - Bump base64 from 0.21.0 to 0.21.2
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, rust
#406 - Bump regex from 1.8.1 to 1.8.3
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, rust
#405 - Bump cachix/install-nix-action from 20 to 21
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, github_actions
#404 - Bump base64 from 0.21.0 to 0.21.1
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, rust
#401 - Bump clap from 4.2.4 to 4.3.0
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, rust
#400 - Bump toml from 0.7.3 to 0.7.4
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, rust
#399 - Add support for 1.4 to cyclonedx-bom
Pull Request -
State: closed - Opened by tokcum over 2 years ago
- 32 comments
#398 - Bump uuid from 1.3.1 to 1.3.3
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, rust
#397 - Bump xml-rs from 0.8.10 to 0.8.11
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
- 1 comment
Labels: dependencies, rust
#396 - Bump time from 0.3.20 to 0.3.21
Pull Request -
State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, rust