Releases: XmirrorSecurity/OpenSCA-cli
Releases · XmirrorSecurity/OpenSCA-cli
v3.0.9
What's Changed
- 更新漏洞风险等级描述 & bomsw导出说明 by @luotianqi777 in #317
- fix: remove pull request trigger from OpenSCA scan workflow by @cyberchen1995 in #318
- fix: mvn direct dependecy scope by @luotianqi777 in #321
- chore: remove unused min func by @cargoedit in #322
- feat: bomsw hash check by @luotianqi777 in #330
- fix: sarif level by @damoasis in #331
- feat: add dynamic option by @luotianqi777 in #333
- feat: rm setup.py dynamic parse by @luotianqi777 in #334
- Update Go version from 1.20 to 1.25 by @cyberchen1995 in #335
New Contributors
- @cargoedit made their first contribution in #322
- @damoasis made their first contribution in #331
Full Changelog: v3.0.8...v3.0.9
Contributors
damoasis, luotianqi777, and 2 other contributors
Assets 14
- 7.29 MB
2026-01-15T03:38:29Z - 65 Bytes
2026-01-15T03:38:30Z - 6.79 MB
2026-01-15T03:38:36Z - 65 Bytes
2026-01-15T03:38:38Z - 6.83 MB
2026-01-15T03:38:21Z - 65 Bytes
2026-01-15T03:38:22Z - 7.18 MB
2026-01-15T03:38:35Z - 65 Bytes
2026-01-15T03:38:36Z - 6.55 MB
2026-01-15T03:30:52Z - 65 Bytes
2026-01-15T03:30:53Z -
2026-01-15T03:27:52Z -
2026-01-15T03:27:52Z - Loading
v3.0.8
What's Changed
- chore: Ignore winget packaging by @cyberchen1995 in #310
- fix: support bash jar by @luotianqi777 in #311
- docs: Update installation instructions, add multiple installation met… by @cyberchen1995 in #313
- feat: support bomsw by @luotianqi777 in #314
- fix: correct config file copy path in Dockerfile by @cyberchen1995 in #315
- fix: update contact email to opensca@xmirror.cn across multiple documents by @cyberchen1995 in #316
Full Changelog: v3.0.7...v3.0.8
Contributors
luotianqi777 and cyberchen1995
Assets 14
v3.0.7
What's Changed
- chore: Modify the return type of Statis() to optimize the output style when there is no vulnerability. by @cyberchen1995 in #308
- feat: support db version range format: [version] by @luotianqi777 in #309
Full Changelog: v3.0.6...v3.0.7
Contributors
luotianqi777 and cyberchen1995
Assets 14
v3.0.6
What's Changed
- fix: dsdx nil pointer panic by @luotianqi777 in #302
- chore: Fix typo in install.sh and SBOM doc by @cyberchen1995 in #304
- docs: 强调漏洞库version必须为范围 by @luotianqi777 in #305
- 支持Dpsbom by @luotianqi777 in #307
Full Changelog: v3.0.5...v3.0.6
Contributors
luotianqi777 and cyberchen1995
Assets 14
v3.0.5
What's Changed
- feat: update to sha256 checksum by @SuperChen-CC in #257
- update: fix syntax errors by @SuperChen-CC in #258
- fix: js lock error by @luotianqi777 in #259
- fix: mvn indirect dependency not inderit dependencies in parent by @luotianqi777 in #260
- fix: delete package.js resolutions by @luotianqi777 in #261
- update: winget identifier by @SuperChen-CC in #262
- fix: npm lock v1 dev depdencies by @luotianqi777 in #263
- update: add Github Actions documentation by @SuperChen-CC in #264
- update: docker container WORKDIR & methods for generating appName by @SuperChen-CC in #265
- update English CICD doc by @Qiuyue1111 in #266
- fix: saas proxy by @luotianqi777 in #267
- Add install script for powershell by @SuperChen-CC in #268
- update: Add installation instructions for Windows users by @SuperChen-CC in #269
- feat: db version range support set format by @luotianqi777 in #270
- feat: set range mix by @luotianqi777 in #271
- fix: readme by @luotianqi777 in #272
- Gomod by @luotianqi777 in #273
- fix: dsdx projectName by @luotianqi777 in #274
- feat: gitlab scanner init by @luotianqi777 in #275
- feat: update support file type by @luotianqi777 in #278
- feat: update by @luotianqi777 in #279
- fix: javascript test example by @luotianqi777 in #280
- feat: task report log by @luotianqi777 in #281
- fix: csv report by @luotianqi777 in #282
- 调整仅保留漏洞组件生效范围 by @yutons in #277
- feat: add package manager support by @SuperChen-CC in #284
- feat: Add ASCII art logo by @SuperChen-CC in #285
- java gradle 编译方式下扫描的路径不在当前目录时, 无法执行gradle命令生成依赖信息 by @hrc8 in #286
- Revert "update: gradle scan dep exists" by @luotianqi777 in #287
- update: Fix the docker build-arg cannot be correctly passed in by @SuperChen-CC in #288
- feat: support war by @luotianqi777 in #289
- update html template & fix mvn bug by @luotianqi777 in #290
- fix: mvn by @luotianqi777 in #292
- Fix mvn by @luotianqi777 in #293
- feat: add OpenSCA Scan Action by @SuperChen-CC in #294
- fix: modify incorrect parameter use by @SuperChen-CC in #295
- fix: mvn download by @luotianqi777 in #297
- fix: check out invalid npm components by @luotianqi777 in #298
- fix: parse dsdx empty by @luotianqi777 in #300
- fix: json2excel by @luotianqi777 in #301
- update: docs by @SuperChen-CC in #276
New Contributors
Full Changelog: v3.0.4...v3.0.5
Contributors
yutons, luotianqi777, and 3 other contributors
Assets 14
v3.0.4
Merge pull request #248 from luotianqi777/sarif feat: support sarif
v3.0.3
fix bug: rar and tar file not result
v3.0.2
Bug fix;
Support sync with OpenSCA SaaS.
v3.0.1
Fix special case parsing of Python/Java/JS in windows
Better support for Gradle
v3.0.0
Refactored and upgraded the detection logic;
Allow outputting vulnerability & license info via SBOM;
Support DSDX standard SBOM;
Added interactive UI in CMD/CRT;
Simplified the parameters.