Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package osv-scanner for openSUSE:Factory
checked in at 2023-03-28 17:50:48
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/osv-scanner (Old)
and /work/SRC/openSUSE:Factory/.osv-scanner.new.31432 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "osv-scanner"
Tue Mar 28 17:50:48 2023 rev:3 rq:1074833 version:1.3.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/osv-scanner/osv-scanner.changes 2023-02-23
16:54:20.269459912 +0100
+++ /work/SRC/openSUSE:Factory/.osv-scanner.new.31432/osv-scanner.changes
2023-03-28 17:50:49.463397250 +0200
@@ -1,0 +2,64 @@
+Tue Mar 28 04:59:28 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 1.3.0:
+ * Update changelog and version for v1.3.0 (#316)
+ * chore(deps): update workflows (#314)
+ * fix(deps): update osv-scanner minor (#313)
+ * Update workflows to compositing, so that goreleaser workflow
+ can run them. (#315)
+ * Fix workflow (#311)
+ * Fix some issues with the model. (#312)
+ * Improve the OSV models to allow for 3rd party use of the
+ library. (#310)
+ * Adds concurrency to hydration requests (#304)
+ * Make `IgnoredVulns` also ignore aliases (#300)
+ * fix(deps): update osv-scanner minor (#306)
+ * chore(deps): update actions/setup-go action to v4 (#308)
+ * chore(deps): update workflows (#307)
+ * Run tests before release (#301)
+ * chore(deps): bump activesupport from 7.0.4.2 to 7.0.4.3 in
+ /docs (#302)
+ * Pin lint action (#299)
+ * fix(deps): update osv-scanner minor (#288)
+ * fix: support Pipenv develop packages without versions. (#297)
+ * Set version in source code (#295)
+ * Prevent `.gitignore` files from interfering with tests (#292)
+ * fix: trim leading zeros off when comparing numerical components
+ in Maven versions (better) (#285)
+ * fix: avoid infinite loops parsing Maven poms with syntax errors
+ (#294)
+ * Check if PURL is valid before adding it to queries (#291)
+ * Renovate bot ignore vulns package (#289)
+ * chore(deps): update workflows (#287)
+ * fix: trim leading zeros off when comparing numerical components
+ in Maven versions (#279)
+ * Adding call graph info back in (#284)
+ * Update Colors for Accessibility (#278)
+ * Removed call graph analysis for now. (#282)
+ * Remove "working doc" concept (#275)
+ * feat: improved error message when pom dependency version not
+ found (#253)
+ * Add tags and point people to slsa-verifier (#265)
+ * ci: harden permissions (#269)
+ * Run on merge queue (#272)
+ * fix: properly handle comparing zero versions in Maven (#267)
+ * chore: add `.editorconfig` file (#266)
+ * fix(deps): update osv-scanner minor (#270)
+ * Renovate bot use ignorePaths instead for fixtures (#264)
+ * test: update case with new advisory (#268)
+ * fix: deduplicate packages that appear multiple times in
+ `Pipenv.lock` files (#261)
+ * feat: support `-r` flag in `requirements.txt` files (#260)
+ * chore(deps): update workflows (#242)
+ * fix: avoid panic when parsing `file:` dependencies in `pnpm`
+ lockfiles (#259)
+ * More specific cyclone dx parsing (#258)
+ * Parse nested CycloneDX components correctly (#251)
+ * fix: support yarn locks with quoted properties (#250)
+ * Update renovate.json (#248)
+ * fix(deps): update golang.org/x/exp digest to c95f2b4 (#241)
+ * govulncheck integration (#198)
+ * Create draft release first in goreleaser (#236)
+ * Adding additional installation instructions (#235)
+
+-------------------------------------------------------------------
Old:
----
osv-scanner-1.2.0.tar.gz
New:
----
osv-scanner-1.3.0.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ osv-scanner.spec ++++++
--- /var/tmp/diff_new_pack.fpyY7d/_old 2023-03-28 17:50:50.219400897 +0200
+++ /var/tmp/diff_new_pack.fpyY7d/_new 2023-03-28 17:50:50.223400917 +0200
@@ -19,7 +19,7 @@
%define __arch_install_post export NO_BRP_STRIP_DEBUG=true
Name: osv-scanner
-Version: 1.2.0
+Version: 1.3.0
Release: 0
Summary: Vulnerability scanner written in Go
License: Apache-2.0
++++++ _service ++++++
--- /var/tmp/diff_new_pack.fpyY7d/_old 2023-03-28 17:50:50.259401090 +0200
+++ /var/tmp/diff_new_pack.fpyY7d/_new 2023-03-28 17:50:50.267401129 +0200
@@ -3,7 +3,7 @@
<param name="url">https://github.com/google/osv-scanner</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v1.2.0</param>
+ <param name="revision">v1.3.0</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
@@ -16,7 +16,7 @@
<param name="compression">gz</param>
</service>
<service name="go_modules" mode="disabled">
- <param name="archive">osv-scanner-1.2.0.tar.gz</param>
+ <param name="archive">osv-scanner-1.3.0.tar.gz</param>
</service>
</services>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.fpyY7d/_old 2023-03-28 17:50:50.291401245 +0200
+++ /var/tmp/diff_new_pack.fpyY7d/_new 2023-03-28 17:50:50.295401264 +0200
@@ -1,6 +1,6 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/google/osv-scanner</param>
- <param
name="changesrevision">9647b493034ab334e071921becde06bad8de059e</param></service></servicedata>
+ <param
name="changesrevision">cfe6d7502821f60c09be0f6de2548ac952b01696</param></service></servicedata>
(No newline at EOF)
++++++ osv-scanner-1.2.0.tar.gz -> osv-scanner-1.3.0.tar.gz ++++++
++++ 19304 lines of diff (skipped)
++++++ vendor.tar.gz ++++++
++++ 59892 lines of diff (skipped)
