Releases: janbiasi/rollup-plugin-sbom
Releases · janbiasi/rollup-plugin-sbom
v3.0.0
3.0.0 (2025-10-01)
- feat!: update cyclonedx library and move to latest lts (2a5c822)
Bug Fixes
- improve null safety for bom lookup processing (c64f677)
- improve stability for license evidence gathering (76c275a)
- various stability improvements (b68d8c6)
Features
- exclude xml serialization by default (7f8ef2f)
- implement license evidence gathering, closes #166 (78a0f0e)
BREAKING CHANGES
- we now ship the module without xmlbuilder2 and default
output set to JSON only. If you rely on XML, please include the
dependency in your project and configure the output format accordingly. - dropped support for end of life node.js versions, now requires >= 20.19.0
v2.1.2
v2.1.1
v2.1.0
2.1.0 (2025-07-24)
Bug Fixes
- improve null safety for recursive processing (b6edff4)
- improve stability for debug logging dependencies on modules (b602df2)
- improve stability of package filtering for packages without name (13d87b7)
- improve stability of package graph analyzer (6224ad0)
- output pure module id to prevent reporting wrong modules, fixes #169 (1628404)
- use post-treeshaking module graph for generation (06c0c5d)
Features
- add beforeCollect and afterCollect transform options (41b9a40)
v2.0.3
v2.0.2
v2.0.1
v2.0.0
2.0.0 (2024-12-13)
Bug Fixes
- align to breaking changes in cyclonedx library v7 (7689062)
- bump the npm group across 1 directory with 25 updates (9431cef)
- change spec and component type option to string (8b3a905)
BREAKING CHANGES
- default spec version is now 1.6 and component type as
well as spec version can now be configured via a string instead of
passing an enum value.