commit python-lib4sbom for openSUSE:Factory

Source-Sync Sun, 12 Apr 2026 09:48:11 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package python-lib4sbom for openSUSE:Factory 
checked in at 2026-04-12 18:47:50
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-lib4sbom (Old)
 and      /work/SRC/openSUSE:Factory/.python-lib4sbom.new.21863 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "python-lib4sbom"

Sun Apr 12 18:47:50 2026 rev:2 rq:1345088 version:0.10.3

Changes:
--------
--- /work/SRC/openSUSE:Factory/python-lib4sbom/python-lib4sbom.changes  
2026-02-20 17:53:41.643224768 +0100
+++ 
/work/SRC/openSUSE:Factory/.python-lib4sbom.new.21863/python-lib4sbom.changes   
    2026-04-12 18:47:50.915055654 +0200
@@ -1,0 +2,45 @@
+Tue Apr  7 22:54:02 UTC 2026 - Dirk Müller <[email protected]>
+
+- update to 0.10.3:
+  * feat: handle user defined licences (SPDX3)
+  * fix: handle noassertion as supplier
+  * fix: improved handling of licences (fixes #87)
+  * fix: improved handling package supplier (fixes #86)
+  * fix: remove debug
+- update to 0.10.2:
+  * feat: allow jsonld file extension
+  * feat: preserve metadata during SBOM enrichment (fixes #83)
+  * feat: validate licence id during parsing
+  * feat: validate SPDX3 JSONLD files
+  * fix: CPE not for cryptograhic-assets
+  * fix: minor improvements for SPDX3 parsing
+  * fix: supress qualifier validation in PURL identifier
+  * fix typo in generator which prevents distribution to be set
+    to something else than clear
+  * fix: update SPDX3 parser
+- update to 0.10.1:
+  * fix: correct validation rules for PURLs (fixes #82)
+  * fix: reduced output for validation errors in spdx validation
+- update to 0.10.0:
+  * feat: add PURL identifier validator
+  * feat: add PURL validation to parser and generators
+  * feat: add SPDX3 schema to validator
+  * feat: introduce Cyclonedx CBOMS
+  * feat: SPDX3 support
+  * feat: update examples
+  * chore: bump version
+  * chore: linting
+  * chore: update licence list to 3.28
+  * doc: update README
+  * fix: correct licence list version format
+  * fix: CycloneDX fails to validate (fixes #79)
+  * fix: distribution constraints only for version 1.7
+  * fix: identify crypto properties which are only available in
+    version 1.7
+  * fix: logic error in parsing crypto file
+  * fix: restrict format for SPDX3 generation to json
+  * fix: SPDX handling of OPERATING-SYSTEM (fixes #78)
+  * fix: update build to exclude tools directory
+  * fix: update test apps
+
+-------------------------------------------------------------------

Old:
----
  lib4sbom-0.9.4.tar.gz

New:
----
  lib4sbom-0.10.3.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ python-lib4sbom.spec ++++++
--- /var/tmp/diff_new_pack.qpClVm/_old  2026-04-12 18:47:52.967139177 +0200
+++ /var/tmp/diff_new_pack.qpClVm/_new  2026-04-12 18:47:52.983139827 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package python-lib4sbom
 #
-# Copyright (c) 2025 SUSE LLC
+# Copyright (c) 2026 SUSE LLC and contributors
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,30 +18,32 @@
 
 %{?sle15_python_module_pythons}
 Name:           python-lib4sbom
-Version:        0.9.4
+Version:        0.10.3
 Release:        0
 Summary:        Library to ingest and generate SBOMs
 License:        Apache-2.0
 URL:            https://github.com/anthonyharrison/lib4sbom
 Source0:        
https://github.com/anthonyharrison/lib4sbom/archive/v%{version}.tar.gz#/lib4sbom-%{version}.tar.gz
-BuildRequires:  fdupes
-BuildRequires:  %{python_module setuptools}
 BuildRequires:  %{python_module pip}
+BuildRequires:  %{python_module setuptools}
 BuildRequires:  %{python_module wheel}
+BuildRequires:  fdupes
 # Test requirements
 BuildRequires:  %{python_module pytest}
-BuildRequires:  %{python_module PyYAML}
+BuildRequires:  %{python_module PyYAML >= 5.4}
 BuildRequires:  %{python_module defusedxml}
-BuildRequires:  %{python_module semantic_version}
 BuildRequires:  %{python_module fastjsonschema}
 BuildRequires:  %{python_module jsonschema}
+BuildRequires:  %{python_module packageurl-python}
+BuildRequires:  %{python_module semantic_version}
 BuildRequires:  %{python_module xmlschema}
 # end of Test requirements
-Requires:       python-PyYAML
+Requires:       python-PyYAML >= 5.4
 Requires:       python-defusedxml
-Requires:       python-semantic_version
 Requires:       python-fastjsonschema
 Requires:       python-jsonschema
+Requires:       python-packageurl-python
+Requires:       python-semantic_version
 Requires:       python-xmlschema
 BuildArch:      noarch
 %python_subpackages

++++++ lib4sbom-0.9.4.tar.gz -> lib4sbom-0.10.3.tar.gz ++++++
++++ 22580 lines of diff (skipped)

commit python-lib4sbom for openSUSE:Factory

Reply via email to