ChangelogBomly Guard
v1.0.1
Bomly Guard v1.0.1 release notes.
Bomly is going open source
This release prepares bomly-guard for public availability as part of Bomly’s move toward open source. The goal is to make Bomly easier to inspect, adopt, and contribute to as we continue building developer-friendly software supply chain security tools.
What's Changed
- Convert review action to composite by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/1
- Support private CLI release downloads by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/2
- Fallback to repo token for CLI release access by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/3
- Improve review action logging and SARIF upload by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/4
- Fix job summary publishing by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/5
- Skip unsupported SARIF uploads cleanly by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/6
- Prepare dependency review action for public release by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/7
- Document release tag creation & Change action name by @bomly-guy in https://github.com/bomly-dev/bomly-guard/pull/12
- Bump actions/checkout from 5 to 6 by @dependabot[bot] in https://github.com/bomly-dev/bomly-guard/pull/11
- Bump actions/setup-node from 5 to 6 by @dependabot[bot] in https://github.com/bomly-dev/bomly-guard/pull/10
- Bump ossf/scorecard-action from 2.4.1 to 2.4.3 by @dependabot[bot] in https://github.com/bomly-dev/bomly-guard/pull/9
- Bump actions/upload-artifact from 4 to 7 by @dependabot[bot] in https://github.com/bomly-dev/bomly-guard/pull/8
New Contributors
- @bomly-guy made their first contribution in https://github.com/bomly-dev/bomly-guard/pull/1
- @dependabot[bot] made their first contribution in https://github.com/bomly-dev/bomly-guard/pull/11
Full Changelog: https://github.com/bomly-dev/bomly-guard/commits/v1.0.0