v0.1.1

What's Changed

• Update README to have latest version by @GeekMasher in #131
• Bump js-yaml from 3.14.1 to 3.14.2 by @dependabot[bot] in #141
• Bump js-yaml from 3.14.1 to 3.14.2 in /test in the npm_and_yarn group across 1 directory by @dependabot[bot] in #142
• Bump brace-expansion from 1.1.11 to 1.1.12 by @dependabot[bot] in #140
• Unescape the locationsFoundAt paths by @lxop in #137
• Bump the actions-dependencies group across 1 directory with 3 updates by @dependabot[bot] in #138
• Bump the npm-dependencies group across 1 directory with 13 updates by @dependabot[bot] in #139
• Fix build failure from deprecated @types/glob package by @Copilot in #149
• Bump the npm-dependencies group across 1 directory with 6 updates by @dependabot[bot] in #148
• Bump tar from 6.2.1 to 7.5.3 in /test in the npm_and_yarn group across 1 directory by @dependabot[bot] in #150
• Bump tar from 7.5.2 to 7.5.3 by @dependabot[bot] in #151
• Bump @babel/preset-env from 7.28.5 to 7.28.6 in the npm-dependencies group by @dependabot[bot] in #153
• Bump the actions-dependencies group with 2 updates by @dependabot[bot] in #152
• Bump tar from 7.5.3 to 7.5.4 by @dependabot[bot] in #154
• Bump tar from 7.5.3 to 7.5.4 in /test in the npm_and_yarn group across 1 directory by @dependabot[bot] in #155

New Contributors

• @GeekMasher made their first contribution in #131
• @lxop made their first contribution in #137
• @Copilot made their first contribution in #149

Full Changelog: v0.1.0...v0.1.1

v0.1.0

What's Changed

• Remove Leading Slash From Root Manifests by @ljones140 in #125

Full Changelog: v0.0.7...v0.1.0

v0.0.7

What's Changed

• Add DetectorCategories input So we can run by ecosystem by @ljones140 in #117
• Add Snapshot inputs by @ljones140 in #118
• Fix Direct Dependencies Marked as Indirect by @ljones140 in #120
• Use explicitlyReferencedComponentIds to determine which packages are direct by @juxtin in #121
• Exclude self from referrers in transitive path calculation by @juxtin in #121

New Contributors

• @adrienpessu made their first contribution in #116
• @ljones140 made their first contribution in #117

Full Changelog: v0.0.6...v0.0.7

v0.0.6

• Handle failure scenario for recent component detection updates with DotNet detector not reporting a package url for all dependencies see: #107

• Maintenance update to newer dependency versions - fixes unit tests and linter after node 20 upgrade.

What's Changed

• Bump the npm-dependencies group across 1 directory with 9 updates by @dependabot in #111
• Potential fix for alerts: Workflow does not contain permissions by @felickz in #112
• Bump actions/setup-node from 4.2.0 to 4.4.0 in the actions-dependencies group by @dependabot in #105
• Improve missing package URL handling by @felickz in #109

Full Changelog: v0.0.5...v0.0.6

Updated to node20 and newer versions of dependencies

Maintenance update, to Node 20 and newer dependency versions.

Added snapshot correlator Action input.

What's Changed

• Bump the actions-dependencies group with 4 updates by @dependabot in #73
• Remove CodeQL config since we use Default Setup by @brrygrdn in #100
• Remove the workflow not the config by @brrygrdn in #101
• Add snapshot correlator action input by @gitulisca in #102
• Bump the npm-dependencies group across 1 directory with 13 updates by @dependabot in #98
• Bump actions/setup-node from 4.1.0 to 4.2.0 in the actions-dependencies group by @dependabot in #95
• Bump the npm_and_yarn group with 2 updates by @dependabot in #93
• Bump the npm_and_yarn group across 1 directory with 2 updates by @dependabot in #92
• Bump the npm_and_yarn group across 1 directory with 5 updates by @dependabot in #103

New Contributors

• @brrygrdn made their first contribution in #100
• @gitulisca made their first contribution in #102

Full Changelog: v0.0.4...v0.0.5

v0.0.4

What's Changed

• Update README.md for v0.0.3 by @juxtin in #71
• Fix dependabot config and CODEOWNERS by @lseppala in #72
• Upgrade dependency-submission-toolkit to 2.0.4 by @hmaurer in #82

New Contributors

• @hmaurer made their first contribution in #82

Full Changelog: v0.0.3...v0.0.4

v0.0.3

This is primarily a bugfix release that allows this action to work properly on GHES 3.13.

What's Changed

• Fix encoding of PURL qualifiers by @lseppala in #14
• Add support for releaseServerUrl by @jhutchings1 and @juxtin in #70

New Contributors

• @lseppala made their first contribution in #14
• @juxtin made their first contribution in #70

Full Changelog: v0.0.2...v0.0.3

v0.0.2

What's Changed

• Add Windows support ( closes #19) by @felickz in #20
• Bump eslint from 8.38.0 to 8.40.0 by @dependabot in #22
• Bump @types/jest from 29.5.0 to 29.5.1 by @dependabot in #15

New Contributors

• @felickz made their first contribution in #20

Full Changelog: v0.0.1...v0.0.2

v0.0.1

Initial release in the advanced-security organization.