Cyclonedx-python-lib

Fix

* fix: properly sort components based on all properties (599)

reverts 587 - as this one introduced errors
fixes 598
fixes 586

---------

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>
Signed-off-by: Paul Horton <paul.hortonowasp.org>
Co-authored-by: Paul Horton <paul.hortonowasp.org> ([`8df488c`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/8df488cb422a6363421fee39714df4e8e8e7a593))

Chore

* chore: semantic-release git commit/sign valid email address

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com> ([`d437c40`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/d437c40caa70071f0fcfe4e3c970370ee32d4aba))

Fix

* fix: include all fields of `Component` in `__lt__` function for 586 (587)

Fixes 586.

Signed-off-by: Paul Horton <paul.hortonowasp.org> ([`d784685`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/d7846850d1ad33184d1d58b59fdf41a778d05900))

Feature

* feat: license factory set `acknowledgement` (593)

add a parameter to `LicenseFactory.make_*()` methods, to set the `LicenseAcknowledgement`.

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com> ([`7ca2455`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/7ca2455018d0e191afaaa2fd136a7e4d5b325ec6))

Feature

* feat: disjunctive license acknowledgement (591)


---------

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com> ([`9bf1839`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/9bf1839859a244e790e91c3e1edd82d333598d60))

Unknown

* tests: add meaningful names to validation tests (588)

When packaging cyclonedx-python-lib for a Linux distribution, it’s
pretty common that some JSON validation tests fail. [1]

Due to the large number of combinations and the fact that these tests
are consecutively numbered, it has been tedious to figure out which
tests are exactly failing and why. This in turn makes it difficult to
decide which tests to disable or report upstream.

Append meaningful names to validation tests so that instead of e.g.:

[…]::TestJsonValidator::test_validate_no_none_001
[…]::TestJsonValidator::test_validate_no_none_002
[…]::TestJsonValidator::test_validate_no_none_003
[…]::TestJsonValidator::test_validate_no_none_004
[…]::TestJsonValidator::test_validate_no_none_005
[…]::TestJsonValidator::test_validate_no_none_006
[…]::TestJsonValidator::test_validate_no_none_007
[…]::TestJsonValidator::test_validate_no_none_008

the tests are named:

[…]::TestJsonValidator::test_validate_no_none_001_valid_component_swid_1_6
[…]::TestJsonValidator::test_validate_no_none_002_valid_machine_learning_considerations_env_1_6
[…]::TestJsonValidator::test_validate_no_none_003_valid_metadata_tool_1_6
[…]::TestJsonValidator::test_validate_no_none_004_valid_patch_1_6
[…]::TestJsonValidator::test_validate_no_none_005_valid_empty_components_1_6
[…]::TestJsonValidator::test_validate_no_none_006_valid_properties_1_6
[…]::TestJsonValidator::test_validate_no_none_007_valid_service_1_6
[…]::TestJsonValidator::test_validate_no_none_008_valid_metadata_author_1_6

[1]: https://aur.archlinux.org/cgit/aur.git/diff/PKGBUILD?h=python-cyclonedx-lib&id=9c6ae556874a633a521407a77a9a85bb31da2047

Signed-off-by: Claudia <clauiusers.noreply.github.com> ([`ae3f79c`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/ae3f79cbaeecda94948bff6a64ab797c5ddd934a))

* doc: poor merge resolved

Signed-off-by: Paul Horton <paul.hortonowasp.org> ([`a498faa`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/a498faaab248d0512bad9e66afbd8fb1d6c42a66))

Documentation

* docs: missing schema support table & update schema support to reflect version 7.0.0 (584)

Signed-off-by: Paul Horton <paul.hortonowasp.org> ([`d230e67`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/d230e67188661a5fb94730e52bf59c11c965c8d7))

Feature

* feat: support `bom.properties` for CycloneDX v1.5+ (585)

Signed-off-by: Paul Horton <paul.hortonowasp.org> ([`1d1c45a`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/1d1c45ac82c7927acc388489228a9b5990f68aa7))

Breaking

* feat!: Support for CycloneDX v1.6

* added draft v1.6 schemas and boilerplate for v1.6

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* re-generated test snapshots for v1.6

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* note `bom.metadata.manufacture` as deprecated

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* work on `bom.metadata` for v1.6

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* Deprecated `.component.author`. Added `.component.authors` and `.component.manufacturer`

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* work to add `.component.omniborid` - but tests deserialisation tests fail due to schema differences (`.component.author` not in 1.6)

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* work to get deserialization tests passing

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* chore(deps): bump `py-serializable` to >=1.0.3 to resolve issues with deserialization to XML

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* imports tidied

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* properly added `.component.swhid`

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* add `.component.cryptoProperties` - with test failures for SchemaVersion < 1.6

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* typing and bandit ignores

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* coding standards

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* test filtering

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* coding standards

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* additional tests to increase code coverage

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* corrected CryptoMode enum

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* coding standards

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* Added `address` to `organizationalEntity`

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* Added `address` to `organizationalEntity`

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* raise `UserWarning` in `.component.version` has length > 1024

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* coding standards and typing

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* add `acknowledgement` to `LicenseExpression` (582)


Signed-off-by: Paul Horton <paul.hortonowasp.org>

* more proper way to filter test cases

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* update schema to published versions

Signed-off-by: Paul Horton <paul.hortonowasp.org>

* fetch schema 1.6 JSON

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* fetch test data for CDX 1.6

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* reformat

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* reformat

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* refactor

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* style

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* refactor

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

* docs

Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>

---------

Signed-off-by: Paul Horton <paul.hortonowasp.org>
Signed-off-by: Jan Kowalleck <jan.kowalleckgmail.com>
Co-authored-by: Jan Kowalleck <jan.kowalleckgmail.com> ([`8bbdf46`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/8bbdf461434ab66673a496a8305c2878bf5c88da))

Chore

* chore(deps-dev): update autopep8 requirement from 2.0.4 to 2.1.0 (573)

Updates the requirements on [autopep8](https://github.com/hhatto/autopep8) to permit the latest version.
- [Release notes](https://github.com/hhatto/autopep8/releases)
- [Commits](https://github.com/hhatto/autopep8/compare/v2.0.4...v2.1.0)

---
updated-dependencies:
- dependency-name: autopep8
dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <supportgithub.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]users.noreply.github.com> ([`35749c6`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/35749c6cd18ebb8911b7cefac8a381d2ee57177a))

* chore(deps-dev): update tox requirement from 4.14.1 to 4.14.2 (574)

Updates the requirements on [tox](https://github.com/tox-dev/tox) to permit the latest version.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](https://github.com/tox-dev/tox/compare/4.14.1...4.14.2)

---
updated-dependencies:
- dependency-name: tox
dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <supportgithub.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]users.noreply.github.com> ([`d60f457`](https://github.com/CycloneDX/cyclonedx-python-lib/commit/d60f4570621246ce3d68e7f2e7f1aa831fb818f0))