Workflow

Jake

Latest version: v3.0.11

Safety actively analyzes 641002 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 2 of 23

3.0.1

Not secure
Documentation

* docs: fix -f switch in the examples (126)

Co-authored-by: Dan Rollo <danrollogmail.com> ([`80ac509`](https://github.com/sonatype-nexus-community/jake/commit/80ac50983c6e7e426d84944b31b3d768c7d3517f))

Fix

* fix: handle CWE name suffixed with &39;noinfo&39; (129)

daviskirk suggestion

Co-authored-by: Davis Kirkendall <1049817+daviskirkusers.noreply.github.com> ([`a5d0f11`](https://github.com/sonatype-nexus-community/jake/commit/a5d0f11b9e91e0c00ebd4c227115f38e9eab5eb2))

* fix: CVE-2022-23491 in transitive dependency certifi 2022.5.18.1 by upgrading the version in the lock file. ([`1815487`](https://github.com/sonatype-nexus-community/jake/commit/181548736b0ed0021d78466b2c85413b5b5b6448))

* fix: CVE-2022-23491 in certifi 2022.5.18.1 ([`d964732`](https://github.com/sonatype-nexus-community/jake/commit/d9647329337d5cb47c02eaa884c613228e8b1bec))

* fix: more source file header cleanups ([`261a991`](https://github.com/sonatype-nexus-community/jake/commit/261a9914b019a96c895eb1ad4878d3a0482eb4d5))

* fix: source file header cleanups ([`6ebf12d`](https://github.com/sonatype-nexus-community/jake/commit/6ebf12d87e6966876575524853247dd50dc9b49f))

Unknown

* Merge pull request 141 from sonatype-nexus-community/py7_ci

Drop python 3.6 support, CI fixes ([`4b5b4b7`](https://github.com/sonatype-nexus-community/jake/commit/4b5b4b7901d4c332aa36345650a3f0d5f8403621))

* resolve CVE-2022-42969 ([`4e08241`](https://github.com/sonatype-nexus-community/jake/commit/4e08241ec2ce4607ea8b4def85c646105e0cb370))

* revert ignore ([`2c8f04d`](https://github.com/sonatype-nexus-community/jake/commit/2c8f04d3125d3f28d9dcff834d29d4b3013e4cc2))

* newest poetry ([`eedd043`](https://github.com/sonatype-nexus-community/jake/commit/eedd0432de871652916bd89cd6a2e21970bfa9a0))

* bump min requests ([`2c30049`](https://github.com/sonatype-nexus-community/jake/commit/2c3004937053013363d8ee05a716a2f9c1f5023b))

* bump min importlib-metadata ([`7421a73`](https://github.com/sonatype-nexus-community/jake/commit/7421a73bbce6514af22e0909df3880796d1b6b6c))

* flail3 tox ([`1d2d8c6`](https://github.com/sonatype-nexus-community/jake/commit/1d2d8c67fd02e7a37868fa20fe7416add4558852))

* flail2 tox ([`3b65427`](https://github.com/sonatype-nexus-community/jake/commit/3b65427e6c847d7d13dbec857bc29e7c88e17f8d))

* flail tox ([`9e1e8c3`](https://github.com/sonatype-nexus-community/jake/commit/9e1e8c375722cc0a5908c7fd1a1585ba3db4337d))

* Missing return statement ([`43ba87e`](https://github.com/sonatype-nexus-community/jake/commit/43ba87ec13c43711eca7085fcd45f6e9c01d1865))

* Missing return statement ([`219059b`](https://github.com/sonatype-nexus-community/jake/commit/219059bef8057d030fe91a8634c24e070fa2de70))

* revert poetry ([`edab131`](https://github.com/sonatype-nexus-community/jake/commit/edab131e5bf2530c69e6d623156986001ae5cf82))

* revert poetry ([`798573f`](https://github.com/sonatype-nexus-community/jake/commit/798573fd21c3171ed99b20cadf7b44e3a6bb3288))

* vuln fix ([`5403087`](https://github.com/sonatype-nexus-community/jake/commit/540308701f0ff6d0c73b4667cd6cc8affec7adf3))

* vuln fix ([`d70881f`](https://github.com/sonatype-nexus-community/jake/commit/d70881f739cc318a3ab30b9020917aec725c00b5))

* tox ansi ([`7377f7b`](https://github.com/sonatype-nexus-community/jake/commit/7377f7bc0f5a04efaa973881b8f399dddc4b83f3))

* cleanup ([`681ea21`](https://github.com/sonatype-nexus-community/jake/commit/681ea216d3d42799b9d3a7999bd2373348e63e90))

* --no-ansi everywhere we install ([`1970be8`](https://github.com/sonatype-nexus-community/jake/commit/1970be8cdcd93f1a3a53090b5bc625179a5bd54d))

* -vvv --no-ansi ([`289d0d7`](https://github.com/sonatype-nexus-community/jake/commit/289d0d71e27aec55e990ea3242324b20cb6b5613))

* remove obsolete classifier ([`0bff856`](https://github.com/sonatype-nexus-community/jake/commit/0bff8566568c0ae4e43e7ff520808f41612d7d7d))

* revert requests ([`1b8df28`](https://github.com/sonatype-nexus-community/jake/commit/1b8df28f896720b5a98a6b6e5b611fa700d29cc8))

* by lock ([`1e72a3a`](https://github.com/sonatype-nexus-community/jake/commit/1e72a3a1f4fd938111b3fd5f409aa3cb0041c793))

* cache ([`8c94249`](https://github.com/sonatype-nexus-community/jake/commit/8c9424914b00b6324aed8e74a8736b96c54bd50e))

* poetry 1.5 ([`5c6cc2b`](https://github.com/sonatype-nexus-community/jake/commit/5c6cc2b26c618ab3ff7944f82a4026d0175ee4e0))

* flail2 ([`d3f5d4d`](https://github.com/sonatype-nexus-community/jake/commit/d3f5d4d36804738dcbcd9f136b7b1ae99d903bf7))

* flail ([`c90b651`](https://github.com/sonatype-nexus-community/jake/commit/c90b65184906904c47d44c4bab018eeeacdfe472))

* lift rug, sweep ([`838ab88`](https://github.com/sonatype-nexus-community/jake/commit/838ab882b579571609823f6b35b5984804671b4e))

* verbose install ([`71ba3bb`](https://github.com/sonatype-nexus-community/jake/commit/71ba3bb2239c7413cb729b67a1a633a5a0b1a51e))

* verbose install ([`e1fae4d`](https://github.com/sonatype-nexus-community/jake/commit/e1fae4d834824e32e47809338fee769c4e882fd3))

* newer poetry ([`6c23876`](https://github.com/sonatype-nexus-community/jake/commit/6c23876b3be87c817dd9bd71a256552b7e77321b))

* bad lock file? ([`733e02f`](https://github.com/sonatype-nexus-community/jake/commit/733e02f99e869b8cc88b7dabe43534f7ec8884f3))

* try cache busting ([`e1e3439`](https://github.com/sonatype-nexus-community/jake/commit/e1e3439d64b0a7d99213a568ea7c30d18f6579b1))

* remove python 3.6, require minimum python version 3.7. ([`396d806`](https://github.com/sonatype-nexus-community/jake/commit/396d806d0a1110d855d53dcfd701d7785df4de07))

* add missing license header ([`7aad2e2`](https://github.com/sonatype-nexus-community/jake/commit/7aad2e282176293d708c0b21fd293fabb792de24))

* revert fix: CVE-2022-23491 in certifi 2022.5.18.1, need to investigate other failures, waive violation while digging. ([`10ec0e1`](https://github.com/sonatype-nexus-community/jake/commit/10ec0e1f1d13ed678429546a66ae69d4ff6b0196))

3.0.0

Not secure
Feature

* feat: Support for all input formats when running jake ddt or jake iq (125)

* feat: Support for all input formats when running jake ddt or jake iq

closes 104

BREAKING CHANGE: changed iq -t switch to -st, use common `-f` argument for input file

Co-authored-by: Dan Rollo <danrollogmail.com> ([`9a597b5`](https://github.com/sonatype-nexus-community/jake/commit/9a597b59c7f3f042f7188a5cd6a7f6c8c0482f97))

Fix

* fix: restore running jake on jake ([`675b359`](https://github.com/sonatype-nexus-community/jake/commit/675b35927a892755ec5fced019646c043ff3d671))

Unknown

* revert add agentLabel ([`9f0bd52`](https://github.com/sonatype-nexus-community/jake/commit/9f0bd5230ce989463af3ad75750ce8fa1708843d))

* add agentLabel: &39;ubuntu-zion-legacy&39; to get build happy for now ([`ba16abe`](https://github.com/sonatype-nexus-community/jake/commit/ba16abe5a4aa87a741978181f0039a831995e75c))

2.1.1

Not secure
Ci

* ci: temporarily removed running `jake` against `jake` as this is blocking release - likely due to OSS Index updates

Signed-off-by: Paul Horton <phortonsonatype.com> ([`88d390c`](https://github.com/sonatype-nexus-community/jake/commit/88d390c629cc1c2260745dabac3eb744f0448ea3))

Unknown

* Merge pull request 120 from sonatype-nexus-community/fix/schema-version-argument-typo-117

fix: removed typo from default value of `--schema-version` argument 117 ([`738a00e`](https://github.com/sonatype-nexus-community/jake/commit/738a00e91897e2673037bb8656481e321cc7b695))

2.1.0

Not secure
Chore

* chore: added unified license headers as per interal Sonatype check

Signed-off-by: Paul Horton <phortonsonatype.com> ([`ccb927b`](https://github.com/sonatype-nexus-community/jake/commit/ccb927b6441002107915cc82461bee80bc7e23c8))

Ci

* ci: temporarily removed running `jake` against `jake` as this is blocking release - likely due to OSS Index updates

Signed-off-by: Paul Horton <phortonsonatype.com> ([`1da3571`](https://github.com/sonatype-nexus-community/jake/commit/1da3571e1cb2105cba7a65b9f2207ffbd741acca))

Feature

* feat: add support for vulnerability whitelist when running `jake ddt` - thanks daviskirk! ([`80e1136`](https://github.com/sonatype-nexus-community/jake/commit/80e113620642a032a767bd064ec317a7f19b7de1))

Fix

* fix: removed typo from default value of `--schema-version` argument 117

Signed-off-by: Paul Horton <phortonsonatype.com> ([`e9e4764`](https://github.com/sonatype-nexus-community/jake/commit/e9e47649ab87eacdd0a98d8ee9798615d8913fdf))

Unknown

* Add whitelisting support

* Add argument to dtt to support whitelisting via json file similar to auditjs ([`c81be03`](https://github.com/sonatype-nexus-community/jake/commit/c81be033052480b41a5bac140ca9885b79080d12))

* verify internal CI build success w/out tox ([`f428002`](https://github.com/sonatype-nexus-community/jake/commit/f428002bb3bb2776e8ae56eb468de980b331ef43))

* happyfy header checker (mostly newline after header, before import) - take 2 ([`84b4e11`](https://github.com/sonatype-nexus-community/jake/commit/84b4e11c64c3d59c8836487142b24a75e8b44f18))

* Revert &34;happyfy header checker (mostly newline after header, before import)&34;

This reverts commit 0afee0f145e0002817740e1345a98253794b251d. ([`9ee6125`](https://github.com/sonatype-nexus-community/jake/commit/9ee6125e47c3a6035bfc1e5a2f222bb43b7e9194))

* Revert &34;happyfy header checker (mostly newline after header, before import)&34;

This reverts commit 6a129a3acfb48c80732635a13f91d228de392fb2. ([`8f2a381`](https://github.com/sonatype-nexus-community/jake/commit/8f2a38168ae4623e4edcbeeb5601a21889e230bd))

* Merge branch &39;main&39; of github.com:sonatype-nexus-community/jake ([`8cfe403`](https://github.com/sonatype-nexus-community/jake/commit/8cfe403f388eaf8200d031cb232dbd1f4866c3e5))

* happyfy header checker (mostly newline after header, before import) ([`6a129a3`](https://github.com/sonatype-nexus-community/jake/commit/6a129a3acfb48c80732635a13f91d228de392fb2))

* happyfy header checker (mostly newline after header, before import) ([`0afee0f`](https://github.com/sonatype-nexus-community/jake/commit/0afee0f145e0002817740e1345a98253794b251d))

* doc: added OSS authentication configuration to documentation

Signed-off-by: Paul Horton <phortonsonatype.com> ([`1230079`](https://github.com/sonatype-nexus-community/jake/commit/1230079b781a745f655ab2eb6ece7abcf895cb2e))

2.0.0

Not secure
Breaking

* chore: bump to latest `cyclonedx-python`

BREAKING CHANGE: Notion of default schema version has been removed by upstream library and replaced with latest supported schema version

Signed-off-by: Paul Horton <phortonsonatype.com> ([`e437bb4`](https://github.com/sonatype-nexus-community/jake/commit/e437bb41ddbb84d7844f40b213878c67c071cc23))

Feature

* feat: typing as per PEP-561 and other refactors (114)

* feat: typing of `jake` WIP

Signed-off-by: Paul Horton <phortonsonatype.com>

* port of fix for 112

Signed-off-by: Paul Horton <phortonsonatype.com>

* resolved a bunch of typing issues

Signed-off-by: Paul Horton <phortonsonatype.com>

* ci: fixed parameter references

Signed-off-by: Paul Horton <phortonsonatype.com>

* ci: fixed parameter references

Signed-off-by: Paul Horton <phortonsonatype.com>

* ci: fixed mypy

Signed-off-by: Paul Horton <phortonsonatype.com>

* fix: updated `ossindex-lib` to latest RC which now appears to properly resolve caching issues 100

Signed-off-by: Paul Horton <phortonsonatype.com>

* defined lowest dependencies and aligned

Signed-off-by: Paul Horton <phortonsonatype.com>

* defined lowest dependencies and aligned

Signed-off-by: Paul Horton <phortonsonatype.com>

* defined lowest dependencies and aligned

Signed-off-by: Paul Horton <phortonsonatype.com>

* defined lowest dependencies and aligned

Signed-off-by: Paul Horton <phortonsonatype.com>

* WIP: JSON output updated to use JSON serialisation
- All tests passing locally

Signed-off-by: Paul Horton <phortonsonatype.com> ([`a0ab7ee`](https://github.com/sonatype-nexus-community/jake/commit/a0ab7eecac96ea9dd1324117651556493247eb98))

Fix

* fix: resolve historic oss index caching issues

feat: support for oss index authentication
Signed-off-by: Paul Horton <phortonsonatype.com> ([`dc03aa9`](https://github.com/sonatype-nexus-community/jake/commit/dc03aa923cf2a8c48d0ad9e7e30cb188fb3a5a96))

Unknown

* Merge pull request 109 from sonatype-nexus-community/dev

BREAKING CHANGE: Feature Release ([`398e70d`](https://github.com/sonatype-nexus-community/jake/commit/398e70d27113f82f82ad87f9e85480c6f9af204b))

* Merge branch &39;main&39; into dev ([`e2702ae`](https://github.com/sonatype-nexus-community/jake/commit/e2702aeb0857d116359603256d19f572318b975e))

* prevent manual_release job on non-main branches. partial fix for 108 (115) ([`6a5fe46`](https://github.com/sonatype-nexus-community/jake/commit/6a5fe466696981d276d215b06707b379790af38b))

1.4.5

Not secure
Chore

* chore: bumped dependencies (107)

Signed-off-by: Paul Horton <phortonsonatype.com> ([`2ee98fe`](https://github.com/sonatype-nexus-community/jake/commit/2ee98fea6453003b4581dbd02127009ae5b91a82))

Feature

* feat: support for Python 3.10 (110)

Signed-off-by: Paul Horton <phortonsonatype.com> ([`671c8c4`](https://github.com/sonatype-nexus-community/jake/commit/671c8c4bb682b4b944568198ecf381818d49f3ac))

Fix

* fix: pin some upstream dependencies to prevent 112 (113)

Signed-off-by: Paul Horton <phortonsonatype.com> ([`8a43e0a`](https://github.com/sonatype-nexus-community/jake/commit/8a43e0af074f797abaddcc0a542b5e08d8a75b36))

Unknown

* doc: first pass at docs for RTD (111)

Signed-off-by: Paul Horton <phortonsonatype.com> ([`223978f`](https://github.com/sonatype-nexus-community/jake/commit/223978f94e43f69ee47a9db80e9542accc2646fe))

Page 2 of 23

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.