Scancodeio

--------------------

- Add pipeline step selection for a run execution.
This allows to run a pipeline in an advanced mode allowing to skip some steps,
or restart from a step, like the last failed step.
The steps can be edited from the Run "status" modal using the "Select steps" button.
This is an advanced feature and should we used with caution.
https://github.com/nexB/scancode.io/issues/1303

- Display the resolved_to_package as link in the dependencies tab.
https://github.com/nexB/scancode.io/pull/1314

- Add support for multiple instances of a PackageURL in the CycloneDX outputs.
The `package_uid` is now included in each BOM Component as a property.
https://github.com/nexB/scancode.io/issues/1316

- Add administration interface. Can be enabled with the SCANCODEIO_ENABLE_ADMIN_SITE
setting.
Add ``--admin`` and ``--super`` options to the ``create-user`` management command.
https://github.com/nexB/scancode.io/pull/1323

- Add ``results_url`` and ``summary_url`` on the API ProjectSerializer.
https://github.com/nexB/scancode.io/issues/1325

--------------------

- Add all "classify" plugin fields from scancode-toolkit on the CodebaseResource model.
https://github.com/nexB/scancode.io/issues/1275

- Refine the extraction errors reporting to include the resource path for rendering
link to the related resources in the UI.
https://github.com/nexB/scancode.io/issues/1273

- Add a ``flush-projects`` management command, to Delete all project data and their
related work directories created more than a specified number of days ago.
https://github.com/nexB/scancode.io/issues/1289

- Update the ``inspect_packages`` pipeline to have an optional ``StaticResolver``
group to create resolved packages and dependency relationships from lockfiles
and manifests having pre-resolved dependencies. Also update this pipeline to
perform package assembly from multiple manifests and files to create
discovered packages. Also update the ``resolve_dependencies`` pipeline to have
the same ``StaticResolver`` group and mode the dynamic resolution part to a new
optional ``DynamicResolver`` group.
See https://github.com/nexB/scancode.io/pull/1244

- Add a new attribute ``is_direct`` to the DiscoveredDependency model and two new
attributes ``is_private`` and ``is_virtual`` to the DiscoveredPackage model.
Also update the UIs to show these attributes and show the ``package_data`` field
contents for CodebaseResources in the ``extra_data`` tab.
See https://github.com/nexB/scancode.io/pull/1244

- Update scancode-toolkit to version ``32.2.1``. For the complete list of updates
and improvements see https://github.com/nexB/scancode-toolkit/releases/tag/v32.2.0
and https://github.com/nexB/scancode-toolkit/releases/tag/v32.2.1

- Add support for providing pipeline "selected_groups" in the ``run`` entry point.
https://github.com/nexB/scancode.io/issues/1306

--------------------

- Use the ``--option=value`` syntax for args entries in place of ``--option value``
for fetching Docker images using skopeo through ``run_command_safely`` calls.
https://github.com/nexB/scancode.io/issues/1257

- Fix an issue in the d2d JavaScript mapper.
https://github.com/nexB/scancode.io/pull/1274

- Add support for a ``ignored_vulnerabilities`` field on the Project configuration.
https://github.com/nexB/scancode.io/issues/1271

--------------------

- Store SBOMs headers in the `Project.extra_data` field during the load_sboms
pipeline.
https://github.com/nexB/scancode.io/issues/1253

- Add support for fetching Git repository as Project input.
https://github.com/nexB/scancode.io/issues/921

- Enhance the logging and reporting of input fetch exceptions.
https://github.com/nexB/scancode.io/issues/1257

--------------------

- Remove print statements from migration files.
- Display full traceback on error in the ``execute`` management command.
- Log the Project message creation.
- Refactor the ``get_env_from_config_file`` to support empty config file.

--------------------

- Add a new ``scan_for_virus`` add-on pipeline based on ClamAV scan.
Found viruses are stored as "error" Project messages and on their related codebase
resource instance using the ``extra_data`` field.
https://github.com/nexB/scancode.io/issues/1182

- Add ability to filter by tag on the resource list view.
https://github.com/nexB/scancode.io/issues/1217

- Use "unknown" as the Package URL default type when no values are provided for that
field. This allows to create a discovered package instance instead of raising a
Project error message.
https://github.com/nexB/scancode.io/issues/1249

- Rename DiscoveredDependency ``resolved_to`` to ``resolved_to_package``, and
``resolved_dependencies`` to ``resolved_from_dependencies`` for clarity and
consistency.
Add ``children_packages`` and ``parent_packages`` ManyToMany field on the
DiscoveredPackage model.
Add full dependency tree in the CycloneDX output.
https://github.com/nexB/scancode.io/issues/1066

- Add a new ``run`` entry point for executing pipeline as a single command.
https://github.com/nexB/scancode.io/pull/1256

- Generate a DiscoveredPackage.package_uid in create_from_data when not provided.
https://github.com/nexB/scancode.io/issues/1256