Skip to content

Patch release 3.0.1

Latest
Latest
Compare
Choose a tag to compare
@goneall goneall released this 12 Dec 23:26
· 5 commits to develop since this release
3.0.1
a745f63

This patch release includes fixes for issues found in the 3.0.0 release and updates required for submission to the OMG and ISO standards.

Changes are described in the changelog.

The SHACL / OWL model file for this release is attached.

Additional release notes from the commit records:

What's Changed

  • Doc: Use new IRIs (spdx.org) in serialization examples by @bact in #725
  • Doc: Update IRI of JSON-LD context file in json-ld.md by @bact in #724
  • Bump actions/checkout from 4.1.2 to 4.1.4 by @dependabot in #729
  • Make Summary and Description consistent. by @vargenau in #734
  • Make Summary and Description consistent. by @vargenau in #732
  • Doc: Fix list and nested list rendering issues in spec webpages + other Markdown format cleanup by @bact in #723
  • Use ASCII characters by @zvr in #731
  • Start the sentence with a capital letter. by @vargenau in #737
  • Doc: Diagram: Fix typo in DatasetPackage; Fix arrow label positions in Licensing; Sort properties by @bact in #722
  • Add .editorconfig and .gitattributes to enforce newline and whitespace consistency by @bact in #739
  • README.md: Remove refs to gh-pages and Ontospy by @bact in #740
  • root Element(s) of a tree of elements contained in a BOM (not SBOM) by @vargenau in #748
  • Formatting: remove extraneous blank line by @edelsohn in #759
  • Use consistent case. by @vargenau in #750
  • Element in upper case as it is a class. by @vargenau in #755
  • Add spacing for better readability. by @vargenau in #757
  • Core: Update ProfileIdentifierType entries by @bact in #742
  • Bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #763
  • Add document to describe how to validate documents by @JPEWdev in #765
  • Be more precise: give the number of the annex. by @vargenau in #756
  • Fix license relationship type by @bact in #779
  • Bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #775
  • Fix spelling: encoding and RDF document --> encoding an RDF document by @vargenau in #774
  • fix all jsonld examples by @maxhbr in #762
  • Relationships: Note class contraints on security types by @puerco in #764
  • Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #784
  • Fix list in NamespaceMap by @bact in #760
  • Remove Software/contentType (duplicative) by @bact in #789
  • Fix broken lines in vocabularies by @zvr in #786
  • Update EpssVulnAssessmentRelationship properties by @bact in #795
  • Bump actions/setup-python from 5.1.0 to 5.1.1 by @dependabot in #798
  • AI: autonomyType: Indicate what yes and no mean by @bact in #741
  • Use a list to make the paragraph more readable. by @vargenau in #753
  • Add link SPDX License List by @bact in #777
  • AI: Energy consumption: Add examples and update desc by @bact in #780
  • trainedOn relationship type desc: "trained by" -> "trained on" by @bact in #791
  • Fix "low" entry of CvssSeverityType by @bact in #793
  • Add SPDX in glossary as its meaning has changed between SPDX 2 and 3 by @vargenau in #801
  • Fix types in Security example snippets by @bact in #794
  • Remove unnecessary restrictions by @zvr in #797
  • Licensing: Move up note on declared vs concluded license disagreement by @bact in #787
  • Remove redundant maxCount of EpssVulnAssessmentRelationship by @bact in #807
  • Update modelExplainability prop description by @bact in #814
  • Change URIs to 3.0.1 by @zvr in #800
  • Update cpe23 link in ExternalIdentifierType by @bact in #806
  • [Core] Add text labels to bare URLs by @bact in #810
  • [Build] Specify v0.2 version number for SLSA Provenance by @bact in #808
  • [Licensing] Add text labels to bare URLs by @bact in #811
  • Fix typos: hasPrerequsite -> hasPrerequisite, and others by @bact in #817
  • AI and Data: Shorten AI and Data profile summaries in README by @bact in #743
  • licenseXml: Link license-list-XML to a specific version (v3.24.0) by @bact in #819
  • Recommend to use licenseXml, instead of Legacy Text Template properties by @bact in #820
  • Add more description to hasDataFile relationship type by @bact in #815
  • [Software] Update ref links/text labels by @bact in #813
  • Make pseudocode indents even - PackageVerificationCode by @bact in #809
  • Add VS Code validation and common errors by @bact in #790
  • [Security] Add text labels to bare URLs by @bact in #812
  • NamespaceMap: fix TODO; "ElementID" -> "Element ID" by @bact in #821
  • Fix link to serialization by @goneall in #823
  • JSON-LD Serialization doc: Fix relationship type name, Add validation info by @bact in #802
  • Add Adler32 to hash algorithms by @goneall in #826
  • Remove spaces from image filenames, put images into its own folder by @bact in #825
  • Fix casing: "package URL" -> "Package URL" at the beginning of sentence by @bact in #828
  • Add 1 missing closing ` for NamespaceMap in serialization/README by @bact in #824
  • Update CHANGELOG 2024-08-10 by @bact in #829
  • Add ISO number to SWHID by @bact in #831
  • Add patch information for specVersion by @bact in #832
  • Make "parameters" singular by @zvr in #836
  • Fixes for PDF generation by @zvr in #834
  • Fix reference to parameter by @goneall in #838
  • Update CHANGELOG for parameters -> parameter by @bact in #839
  • Lowercasing all filename ref to spdx-spec by @bact in #840
  • Revert PackageVerificationCode.md to original algorithm, and improve readability/formatting. by @kestewart in #842
  • Bom and SpdxDocument must have element and rootElement by @zvr in #845
  • Update Lite profile by @zvr in #843
  • SPDXDocument -> SpdxDocument by @bact in #851
  • Change property name imports to import by @goneall in #847
  • RelationshipType: hasInputs/hasOutputs -> hasInput/hasOutput by @bact in #854
  • Revert PR 845 - allow empty Bom and SpdxDocument element lists by @goneall in #853
  • Standardize phrase "each to Element" in RelationshipType by @bact in #856
  • Update Build.md to remove separate definition of properties by @lumjjb in #862
  • Update SPDX License List link to v3.25.0 by @bact in #863
  • Fix model desc inconsistencies; CdxPropertiesExtension mention non-existing class/property by @bact in #859
  • Remove an outdated/duplicative serialization/lite.md by @bact in #858
  • Update diagrams for v3.0.1 by @bact in #852
  • Update RelationshipType.md by @kestewart in #866
  • ExternalMap: Replace "Document" with "SpdxDocument" by @bact in #872
  • Bump actions/setup-python from 5.1.1 to 5.2.0 by @dependabot in #869
  • To be consistent, copy scope.md file from spdx-spec to spdx-3-model by @vargenau in #874
  • Standardised RFC links in model Markdown files by @bact in #877
  • build: Clarify buildType by @JPEWdev in #875
  • Lite: Fix conformance lists rendering; mincount -> minCount by @bact in #878
  • Remove mentions of .md; fix indent in YAML example; fix heading consistency by @bact in #876
  • Update URLs in serialization docs to 3.0.1 by @bact in #849
  • Update contributing doc, updating v3.0-RC-related messages by @bact in #857
  • buildType: Fix broken bullet lists rendering by @bact in #879
  • Add /Core/Individuals/SpdxOrganization by @bact in #880
  • Fix typos, casing, and make SoftwarePurpose entry description consistent by @bact in #885
  • [Diagram] Remove all named individuals by @bact in #884
  • [CHANGELOG] Add changes in buildType and SpdxOrganization by @bact in #881
  • Fix typo: Asbtract -> Abstract by @bact in #888
  • Bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #887
  • Fix typos: an -> a; descendents -> descendants by @bact in #891
  • Bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #894
  • Bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #899
  • Bump actions/setup-python from 5.2.0 to 5.3.0 by @dependabot in #902
  • Fixes typos found by OMG by @zvr in #905
  • Fix typo: NoneLicenseElement -> NoneElement by @bact in #906
  • fix typo by @ilans in #907
  • Add documentation for Markdown headings used in spec generation by @bact in #867
  • Collapse a nested list to a single-level list to avoid rendering issue in MkDocs by @bact in #922
  • Fix grammar in standardName description by @goneall in #925
  • use relative path syntax by @ilans in #913
  • VEX affected cardinalities by @ilans in #908
  • Final change log update for v3.0.1 model by @bact in #889
  • Fixing typos about None and NoAssertion by @bact in #928
  • SoftwareArtifact as range for assessedElement by @ilans in #933
  • Updated diagrams by @zvr in #935
  • Create an IndividualElement class by @goneall in #937
  • Capitalise Profile names by @bact in #939
  • Add individual element class to core diagram by @sbarnum in #941
  • Update CHANGELOG with changes since 2024-11-15 by @bact in #938
  • Reexport Core and Security diagram PNGs for smaller file size by @bact in #942

New Contributors

Full Changelog: 3.0...3.0.1

Contributors

bact, zvr, and 11 other contributors
Assets 3
Loading