ChangelogBomly CLI

Bomly CLI v0.15.3

Bomly CLI v0.15.3 release notes: Bump github.com/anchore/syft from 1.45.1 to 1.46.0; Bump golang.org/x/vuln from 1.4.0 to 1.5.0; Bump github.com/mark3labs/mcp-go from 0.5… — 12 changes.

What's Changed

Full Changelog: https://github.com/bomly-dev/bomly-cli/compare/v0.15.2...v0.15.3


Release artifacts

  • Full builtin bomly archives for Linux, macOS, and Windows.
  • Alternate bomly-lite archives for users who prefer external Syft and Grype binaries.
  • Linux packages for Debian, RPM, Alpine, and Arch-compatible package managers.
  • Homebrew, Scoop, and WinGet package-manager manifests or publishing pull requests.
  • SHA256SUMS for release artifact verification, signed keylessly with cosign (SHA256SUMS.sigstore.json).
  • SLSA Build Level 3 provenance (multiple.intoto.jsonl) generated by slsa-github-generator.

Each archive includes LICENSE, NOTICE, and a licenses/ directory with third-party license texts. See Verify release checksums for signature and provenance verification commands.