Jake

Latest version: v3.0.14

Safety actively analyzes 710445 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 6 of 24

1.1.0

Not secure
Feature

* feat: add support for conda 66
fix: character encoding issues on Windows 67

Signed-off-by: Paul Horton <phortonsonatype.com> ([`a3495cb`](https://github.com/sonatype-nexus-community/jake/commit/a3495cb55fe835181ae57a1a48b9ff8cbe7b7415))

Unknown

* Merge pull request 70 from sonatype-nexus-community/feat/conda-support

FEATURE: `conda` support + fixes ([`93bc03d`](https://github.com/sonatype-nexus-community/jake/commit/93bc03dee13f941525536005c9dd9de1176d4285))

* doc: typo resolved

Signed-off-by: Paul Horton <phortonsonatype.com> ([`286ea27`](https://github.com/sonatype-nexus-community/jake/commit/286ea276f61b719343a2eaef7fce00ce8d9c7ab5))

* doc: update README to cover updated paramters and conda support

Signed-off-by: Paul Horton <phortonsonatype.com> ([`7d9274f`](https://github.com/sonatype-nexus-community/jake/commit/7d9274fc16d53b0ae9117be77520d66fcd6361b7))

* Updated config.yml ([`b1cfcb4`](https://github.com/sonatype-nexus-community/jake/commit/b1cfcb46796c3c285197d5c2c70d4a0061742b72))

1.0.1

Not secure
Fix

* fix: update to support returning non-zero exit code when issues found (will return 1)
fix: incorrect check for Nexus IQ policy Warnings remediated

Signed-off-by: Paul Horton <phortonsonatype.com> ([`7667bac`](https://github.com/sonatype-nexus-community/jake/commit/7667bacb171803f7963bec12240520985103d06c))

Unknown

* Merge pull request 69 from sonatype-nexus-community/fix/issue-65-exit-code

FIX: Enable non-zero exit code + correct logic in determining Nexus IQ policy warnings ([`7b6122b`](https://github.com/sonatype-nexus-community/jake/commit/7b6122beafa6dec72da793fc9185cbc9b1bd6a33))

1.0.0

Not secure
Breaking

* refactor: re-write to consume new cyclonedx-python-lib

BREAKING CHANGE: `jake` has been re-written in large part to consume two new external libraries:
- `cyclonedx-python-lib` which gives `jake` ability to more easily consume your depenedencies in a variety of manners (environment, Pipfile.lock, poetry.lock, requirements.txt) and support output in both JSON and XML at different schema versions
- `ossindex-lib`: most of the functionallity for talking to OSS Index that was in `jake` has been externalised to this library to allow others to consume it

Signed-off-by: Paul Horton <phortonsonatype.com> ([`e11cb20`](https://github.com/sonatype-nexus-community/jake/commit/e11cb208c215169d6ce24fa8898a5aa2402d8791))

Build

* build: now using officially published version of ossindex-lib

Signed-off-by: Paul Horton <phortonsonatype.com> ([`5241427`](https://github.com/sonatype-nexus-community/jake/commit/5241427ffa542f650c776de3d727759b4c0a1916))

Ci

* ci: attempt to get semantic-release running on CircleCI

Signed-off-by: Paul Horton <phortonsonatype.com> ([`1e610e1`](https://github.com/sonatype-nexus-community/jake/commit/1e610e1795e29102e7b5816124d8cd215d58f49a))

* ci: aligned to previous CircleCI context

Signed-off-by: Paul Horton <phortonsonatype.com> ([`f8e9833`](https://github.com/sonatype-nexus-community/jake/commit/f8e98337ee61134681490d2318d05ec4172d4ea1))

* ci: use CircleCI context for PYPI_TOKEN and re-introduced SSH key to attempt to resolve GitHub connectivity during release

Signed-off-by: Paul Horton <phortonsonatype.com> ([`26621ac`](https://github.com/sonatype-nexus-community/jake/commit/26621ac212cc1b72e76c58f78ebeb58452c52141))

* ci: disable Release Job on CircleCI and move back to GitHub Action

Signed-off-by: Paul Horton <phortonsonatype.com> ([`6ebb6df`](https://github.com/sonatype-nexus-community/jake/commit/6ebb6df80d8813fb92456b9ca500a97f1707bdf6))

* ci: alternative attempt to set Git Author

Signed-off-by: Paul Horton <phortonsonatype.com> ([`5773199`](https://github.com/sonatype-nexus-community/jake/commit/577319906c17ce202d2eb415714f091438c97325))

* ci: alternative attempt to set Git Author

Signed-off-by: Paul Horton <phortonsonatype.com> ([`bdc0931`](https://github.com/sonatype-nexus-community/jake/commit/bdc093171a4aed22489b57cdc0a8e0b4b62f8f1a))

* ci: defined commit_author for semantic-release

Signed-off-by: Paul Horton <phortonsonatype.com> ([`d0dcf15`](https://github.com/sonatype-nexus-community/jake/commit/d0dcf15d8bc9c21178fb7a739531a79f25fdccd2))

* ci: fix cache key for release CircleCI job

Signed-off-by: Paul Horton <phortonsonatype.com> ([`a730e9e`](https://github.com/sonatype-nexus-community/jake/commit/a730e9e27ba52b1fe27263161296457d57f8b995))

* ci: update CircleCI release to run on every commit to main

Signed-off-by: Paul Horton <phortonsonatype.com> ([`a5fc8b8`](https://github.com/sonatype-nexus-community/jake/commit/a5fc8b899142bc7e8818e07328616c6413553a11))

* ci: disabled GitHub Action for deployment

Signed-off-by: Paul Horton <phortonsonatype.com> ([`daebf39`](https://github.com/sonatype-nexus-community/jake/commit/daebf399b76db27c6d5207ac8ce233878f626b0e))

* ci: remove --noop from semantic-release

Signed-off-by: Paul Horton <phortonsonatype.com> ([`e41a7a2`](https://github.com/sonatype-nexus-community/jake/commit/e41a7a2825b8c6101805c2838709384d86a20a5a))

* ci: further work on CircleCI config

Signed-off-by: Paul Horton <phortonsonatype.com> ([`bc42408`](https://github.com/sonatype-nexus-community/jake/commit/bc424085efc64f9a39a2ed3ee50ba76376f7f5be))

* ci: re-introduce CircleCI with updated implementation

Signed-off-by: Paul Horton <phortonsonatype.com> ([`59c6b62`](https://github.com/sonatype-nexus-community/jake/commit/59c6b62030e37ac74ce997756339833acac0ed1e))

* ci: move from CircleCI to GitHub actions

Signed-off-by: Paul Horton <phortonsonatype.com> ([`6d73b10`](https://github.com/sonatype-nexus-community/jake/commit/6d73b10ef6bd6ccea90f9e1f0e34348b09dfe59f))

Feature

* feat: Sonatype Nexus IQ Lifecycle analysis is now migrated to using cyclonedx-python-lib

Signed-off-by: Paul Horton <phortonsonatype.com> ([`214d182`](https://github.com/sonatype-nexus-community/jake/commit/214d1821fa94ff895a2bfa4eac0f6961df093f46))

* feat: support Poetry for gleaning packages within the current environment to generate an SBOM

Signed-off-by: Paul Horton <phortonsonatype.com> ([`b9a1e5d`](https://github.com/sonatype-nexus-community/jake/commit/b9a1e5d2f38963a033d102399827c5c4dfe786da))

* feat: jake&39;s OSS calls now utilising ossindex-lib and cyclonedx-python-lib

Signed-off-by: Paul Horton <phortonsonatype.com> ([`ec83583`](https://github.com/sonatype-nexus-community/jake/commit/ec83583520aa5ff8180b215b55846ed7a6fd487c))

Fix

* fix: additional whitespace removed

Signed-off-by: Paul Horton <phortonsonatype.com> ([`709f7a2`](https://github.com/sonatype-nexus-community/jake/commit/709f7a2aa752668daba99c04b36ad9b8a6d271f2))

* fix: runtime tweaks to make it more robust

Signed-off-by: Paul Horton <phortonsonatype.com> ([`13c9028`](https://github.com/sonatype-nexus-community/jake/commit/13c902838008377e11e4c47ed619401776b8f782))

* fix: typos noted as updating documentation

Signed-off-by: Paul Horton <phortonsonatype.com> ([`0d65116`](https://github.com/sonatype-nexus-community/jake/commit/0d65116a17757b1ccf4c73bc463ee677eef0d5ff))

Refactor

* refactor: removed unused files

Signed-off-by: Paul Horton <phortonsonatype.com> ([`82492b3`](https://github.com/sonatype-nexus-community/jake/commit/82492b35f20b4da74243890f59a603adb552e7eb))

* refactor: removing old Jake code superseded by cyclonedx-python-lib and ossindex-lib

Signed-off-by: Paul Horton <phortonsonatype.com> ([`d8941f5`](https://github.com/sonatype-nexus-community/jake/commit/d8941f57575ab2cb0d2e334ce546cf11af8ab63a))

Unknown

* revert patch arg ([`58b3aa0`](https://github.com/sonatype-nexus-community/jake/commit/58b3aa024bfc61ac475d5b9ec45e1723d5a53f67))

* make publish a manual process for now. update circleci docs. ([`f5b2d42`](https://github.com/sonatype-nexus-community/jake/commit/f5b2d42afa8a6b179c674a1a4642e90f514c7ad4))

* try patch publish ([`28dd92f`](https://github.com/sonatype-nexus-community/jake/commit/28dd92f47f7c57d69bef8af85008466d54bd082f))

* Merge pull request 64 from madpah/feature/update-to-use-cyclonedx-python-lib

Migrate `jake` to utilise external CycloneDX and OSSIndex libraries ([`2fff773`](https://github.com/sonatype-nexus-community/jake/commit/2fff773c8d130ebb2bf87c2f1e2ea59c362678a3))

* doc: README updated to cater for refactorings

Signed-off-by: Paul Horton <phortonsonatype.com> ([`7ed4f4e`](https://github.com/sonatype-nexus-community/jake/commit/7ed4f4eb7a37adc90770fe7ff6f5a7e97be0af5f))

* wip: migrating Jake to use cyclonedx-python-lib and ossindex-lib

Signed-off-by: Paul Horton <phortonsonatype.com> ([`23f6412`](https://github.com/sonatype-nexus-community/jake/commit/23f6412a3655ed19b0aed2ead21d6c35535e3fd1))

0.2.77

Not secure
Fix

* fix: CVE-2021-33503 in urllib3 == 1.26.4 (62) ([`9dfbb1c`](https://github.com/sonatype-nexus-community/jake/commit/9dfbb1c18831a1456803299e2f98a95ba95ea2b8))

Unknown

* 0.2.77

[skip ci] ([`fc2ecb1`](https://github.com/sonatype-nexus-community/jake/commit/fc2ecb17303943cd9dba28383fc062f5700028c3))

0.2.76

Not secure
Fix

* fix: &34;ModuleNotFoundError: No module named &39;typing_extensions&39;&34;, occurring in &39;python3.7/site-packages/tinydb/queries.py&34;, line 28&39; on Jenkins CI (61) ([`a747750`](https://github.com/sonatype-nexus-community/jake/commit/a7477505a0e6d1b198461a75ef8d755cc37dfe12))

Unknown

* 0.2.76

[skip ci] ([`029cbb4`](https://github.com/sonatype-nexus-community/jake/commit/029cbb4b71553c3954e346bc475bb4d6ccd92b2f))

* Revert &34;attempt to fix: ModuleNotFoundError: No module named &39;typing_extensions&39;, occurring in &39;python3.7/site-packages/tinydb/queries.py&34;, line 28&39; on Jenkins CI [skip ci]&34;

This reverts commit e867ec78 ([`135b675`](https://github.com/sonatype-nexus-community/jake/commit/135b67559c8c3ecfc9cf3162391e00b9495d0043))

* attempt to fix: ModuleNotFoundError: No module named &39;typing_extensions&39;, occurring in &39;python3.7/site-packages/tinydb/queries.py&34;, line 28&39; on Jenkins CI [skip ci] ([`e867ec7`](https://github.com/sonatype-nexus-community/jake/commit/e867ec78237e9b5cd58c95aa06adbd385e3acbc0))

* Revert &34;attempt to fix: ModuleNotFoundError: No module named &39;typing_extensions&39;, occurring in &39;python3.7/site-packages/tinydb/queries.py&34;, line 28&39; on Jenkins CI [skip ci]&34;

This reverts commit 1e25b8ea ([`83d948f`](https://github.com/sonatype-nexus-community/jake/commit/83d948f6485dad8bb1419e6e26bc3d191a010007))

* attempt to fix: ModuleNotFoundError: No module named &39;typing_extensions&39;, occurring in &39;python3.7/site-packages/tinydb/queries.py&34;, line 28&39; on Jenkins CI [skip ci] ([`1e25b8e`](https://github.com/sonatype-nexus-community/jake/commit/1e25b8ea5778321da1602c9536fd0995a01803e2))

0.2.75

Not secure
Unknown

* 0.2.75

[skip ci] ([`fcdfe57`](https://github.com/sonatype-nexus-community/jake/commit/fcdfe573b7cf78559ea8a0d03abfe857d44ab7d5))

* call ci-setup.sh before publishing to ensure non-dev virtual env exists. ([`1e1c6b0`](https://github.com/sonatype-nexus-community/jake/commit/1e1c6b0be032d5c1dac8c93bc3a8b15bacf2ecd3))

* move dev dependencies out of requirements.txt (59)

* move more dev requirements ([`171e440`](https://github.com/sonatype-nexus-community/jake/commit/171e440a9468331026a55e43dc42561e0761609a))

Page 6 of 24

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.