Skip to content

Latest commit

 

History

History
69 lines (47 loc) · 3.32 KB

CHANGELOG.md

File metadata and controls

69 lines (47 loc) · 3.32 KB

Changelog

1.2.1 (Feb 16, 2023)

  • Improved CveRecordValidationError exception error message.

1.2.0 (Dec 2, 2022)

  • The list and users commands have a new -N/--no-header option that skips printing a header in the table output. (#55).
  • The bundled CNA Published JSON schema is used by default when calling CveRecord.validate() (#57).
  • The jsonschema required dependency was relaxed to an older version (#54).

1.1.0 (Nov 11, 2022)

  • The publish and reject subcommands have a new -f/--cve-json-file option that allows submitting CVE records from a file (#18).
  • Added CVE v5 JSON schema (5.0.0) validation when publishing a CVE record (#39).
  • Full CVE v5 records can now be used when publishing a CVE; the CNA container is parsed from the CVE record automatically (#42).
  • Automatically add providerMetadata from the org used when authenticating against CVE Services if it is missing in the supplied CVE record (#19).
  • Added CVE v5 JSON 5.0.0 schemas under cvelib/schemas along with a script that extracts container-level sub-schemas.
  • cve show --show-record --raw now outputs a valid CVE record only (#44).
  • Dropped support for Python 3.6.

1.0.0 (Oct 3, 2022)

  • Added support for CVE Services 2.1:
    • New subcommands: publish, reject, undo-reject.
    • The show subcommand now includes a --show-record option to view a CVE's record.
    • Added several new methods in the CveApi interface to reflect new CVE Services API endpoints.
  • Fixed sorting by the reserved timestamp when using the list subcommand.

0.7.0 (Feb 6, 2022)

  • Reverted commit c1f5edeb2cb1a39dfbab1813a3bc68ae4c04661d, which is (for now) incompatible with the currently available version of CVE Services.

0.6.0 (Dec 17, 2021)

  • Added prompt for API key if not specified via env var or option (#13).
  • Updated list of environments to include "test".
  • Renamed reset_token subcommand to reset_key.

0.5.0 (Oct 25, 2021)

  • Fixed API key not being returned when creating a new user (#8).

0.4.0 (Jun 15, 2021)

  • Added cve org command.
  • Added cve user command.
  • Refactored Idr interface into a general CveApi interface.
  • Fixed error when showing a CVE that is owned by a different CNA.

0.3.0 (Jan 18, 2021)

  • Fixed incorrect parsing of timestamps when using Python 3.6 (#1).

0.2.0 (Jan 14, 2021)

  • Fixed missing org query parameter when reserving a CVE ID.
  • Improved printing of reserved CVE IDs after they are reserved.
  • Improved quota subcommand documentation and output.

0.1.0 (Dec 23, 2020)

  • Initial public release.