v0.5.0
This version lands support for ignoring OVS both via a CLI flag and via config files - by default the detector will look for either an .osv-detector.yml
or .osv-detector.yaml
in the directory of each lockfile it's checking, which can contain an ignore
array.
The detector also now supports parsing pom.xml
for the Maven ecosystem.
What's Changed
- support parsing pom.xml / maven / java (#81)
- support ignoring vulnerabilities (#91)
- support config files (#95)
Full Changelog: v0.4.1...v0.5.0