Skip to content

feat!: finalize PEP639, auto-enable it, remove CLI switch environment --PEP-639 #928

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jkowalleck merged 52 commits into from
Jul 14, 2025
Merged

feat!: finalize PEP639, auto-enable it, remove CLI switch environment --PEP-639 #928

jkowalleck merged 52 commits into from
Jul 14, 2025

Conversation

@jkowalleck
Copy link
Member

@jkowalleck jkowalleck commented Jul 7, 2025
edited
Loading

BREAKING Changes

  • Handling of PEP 639 changed, as the specification changed during finalization.
  • Handling of PEP 639 is always enabled, as Python Packing specification 2.4 recognizes it.
  • CLI parameter environment --PEP-639 was removed.

Changed

  • License texts from files are always Base64-encoded. In the past, we did best-effort text decoding; this was dropped for interoperability.
    This is considered a non-breaking change, as no data was removed, it was just transformed according to CycloneDX specification.
  • License text gathering was streamlined across PEP639 and PEP621.

Added

  • Finalized implementation of PEP 639.

TODO/ DONE

  • implement
  • add tests

@jkowalleck
feat: finalize PEP639
7e95a90 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck jkowalleck added enhancement New feature or request breaking change labels Jul 7, 2025
@jkowalleck jkowalleck changed the title [WIP] feat: finalize PEP639 [WIP] feat!: finalize PEP639 Jul 7, 2025
@jkowalleck jkowalleck changed the title [WIP] feat!: finalize PEP639 [WIP] feat!: finalize PEP639, auto-enable it, remove CLI switch environment --pep639 Jul 7, 2025
@jkowalleck jkowalleck changed the title [WIP] feat!: finalize PEP639, auto-enable it, remove CLI switch environment --pep639 [WIP] feat!: finalize PEP639, auto-enable it, remove CLI switch environment --PEP-639 Jul 7, 2025
jkowalleck added 24 commits July 7, 2025 13:48
@jkowalleck
docs
4cd95f1 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
fix
1deafce 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
fa9072e 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
06762b8 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
b9d65d2 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
810c54a 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
6e64c3a 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
06b729a 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
acaa562 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
11f6584 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
49acd6f 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
b8de27d 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
9bc8fc8 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
59dd16e 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
59fd13d 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
345241c 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
ea44f50 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
2a58f13 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
Merge remote-tracking branch 'origin/main' into feat/pep639_finalized
b50294c
@jkowalleck
Merge remote-tracking branch 'origin/main' into feat/pep639_finalized
7dfb249
@jkowalleck
Merge remote-tracking branch 'origin/main' into feat/pep639_finalized
1616d98
@jkowalleck
wip
c214019 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
eacf6e8 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
fa35e89 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
jkowalleck added 2 commits July 9, 2025 11:47
@jkowalleck
wip
d5b7a0d 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
9895412 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck jkowalleck marked this pull request as ready for review July 9, 2025 10:07
@jkowalleck jkowalleck requested a review from a team as a code owner July 9, 2025 10:07
@jkowalleck jkowalleck changed the title [WIP] feat!: finalize PEP639, auto-enable it, remove CLI switch environment --PEP-639 feat!: finalize PEP639, auto-enable it, remove CLI switch environment --PEP-639 Jul 9, 2025
chore(release): 7.0.0-alpha.1
0655f00 
Automatically generated by python-semantic-release

Signed-off-by: semantic-release <semantic-release@bot.local>
@jkowalleck
Copy link
Member Author

jkowalleck commented Jul 9, 2025

a preview is available as of https://pypi.org/project/cyclonedx-bom/7.0.0a1/

jkowalleck added 8 commits July 9, 2025 12:29
@jkowalleck
revert history
79a9f0c 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
tests for #931
65eeba1 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
fix for #931
0d6215c 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
94d56d1 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
c3a12b4 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
d8eb4dd 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
wip
e29f842 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
docs
9c8ef97 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
Copy link
Member Author

jkowalleck commented Jul 9, 2025

fixes #931 via https://pypi.org/project/cyclonedx-bom/7.0.1a2/

jkowalleck and others added 3 commits July 9, 2025 18:30
@jkowalleck
chore: enable prerelease
161648a 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
chore(release): 7.0.1-alpha.2
2dd48dd 
Automatically generated by python-semantic-release

Signed-off-by: semantic-release <semantic-release@bot.local>
@jkowalleck
revert history
99e8608 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck jkowalleck force-pushed the feat/pep639_finalized branch from 9e8cdd8 to 99e8608 Compare July 9, 2025 16:30
@jkowalleck
docs
9ccfc73 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
cov
b0cf217 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
docs
571d0dd 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
docs
95ea661 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
cov
e82e737 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
docs
611a5f6 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck
docs
c4422c5 
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
@jkowalleck jkowalleck merged commit 6b81028 into main Jul 14, 2025
37 checks passed
@jkowalleck jkowalleck deleted the feat/pep639_finalized branch July 14, 2025 08:50
@jkowalleck
Copy link
Member Author

jkowalleck commented Jul 14, 2025

this has been released as of https://github.com/CycloneDX/cyclonedx-python/releases/tag/v7.0.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

breaking change enhancement New feature or request

Projects

None yet

Milestone

No milestone

2 participants

@jkowalleck