Changelog

v31.1.0 (unreleased)

  • Improve the performances of the project details view to load faster by deferring the the charts rendering. This is especially noticeable on projects with a large amount of codebase resources and discovered packages. https://github.com/nexB/scancode.io/issues/193

  • Add support for filtering by “Other” values when filtering from the charts in the Project details view. https://github.com/nexB/scancode.io/issues/526

  • CodebaseResource.for_packages now returns a list of DiscoveredPackage.package_uid or DiscoveredPackage.package_url if DiscoveredPackage.package_uid is not present. This is done to reflect the how scancode-toolkit’s JSON output returns package_uid``s in the ``for_packages field for Resources.

  • Add the model DiscoveredDependency. This represents Package dependencies discovered in a Project. The scan_codebase and scan_packages pipelines have been updated to create DiscoveredDepdendency objects. The Project API has been updated with new fields:

    • dependency_count - The number of DiscoveredDependencies associated with the project.

    • discovered_dependencies_summary - A mapping that contains following fields:

      • total - The number of DiscoveredDependencies associated with the project.

      • is_runtime - The number of runtime dependencies.

      • is_optional - The number of optional dependencies.

      • is_resolved - The number of resolved dependencies.

    These values are also available on the Project view. https://github.com/nexB/scancode.io/issues/447

  • The dependencies field has been removed from the DiscoveredPackage model.

  • Create directory CodebaseResources in the rootfs pipeline. https://github.com/nexB/scancode.io/issues/515

  • Add ProjectErrors when the DiscoveredPackage could not be fetched using the provided package_uid during the assemble_package step instead of failing the whole pipeline. https://github.com/nexB/scancode.io/issues/525

  • Escape paths before using them in regular expressions in CodebaseResource.walk(). https://github.com/nexB/scancode.io/issues/525

  • Disable multiprocessing and threading by default on macOS (“spawn” start method). https://github.com/nexB/scancode.io/issues/522

v31.0.0 (2022-08-25)

v30.2.0 (2021-12-17)

v30.1.1 (2021-11-23)

v30.1.0 (2021-11-22)

  • Synchronize QUEUED and RUNNING pipeline runs with their related worker jobs during worker maintenance tasks scheduled every 10 minutes. If a container was taken down while a pipeline was running, or if pipeline process was killed unexpectedly, that pipeline run status will be updated to a FAILED state during the next maintenance tasks. QUEUED pipeline will be restored in the queue as the worker redis cache backend data is now persistent and reloaded on starting the image. Note that internaly, a running job emits a “heartbeat” every 60 seconds to let all the workers know that it is properly running. After 90 seconds without any heartbeats, a worker will determine that the job is not active anymore and that job will be moved to the failed registry during the worker maintenance tasks. The pipeline run will be updated as well to reflect this failure in the Web UI, the REST API, and the command line interface. https://github.com/nexB/scancode.io/issues/130

  • Enable redis data persistence using the “Append Only File” with the default policy of fsync every second in the docker-compose. https://github.com/nexB/scancode.io/issues/130

  • Add a new tutorial chapter about license policies and compliance alerts. https://github.com/nexB/scancode.io/issues/337

  • Include layers in docker image data. https://github.com/nexB/scancode.io/issues/175

  • Fix a server error on resource details view when the compliance alert is “missing”. https://github.com/nexB/scancode.io/issues/344

  • Migrate the ScanCodebase pipeline from scancode.run_scancode subprocess to scancode.scan_for_application_packages and scancode.scan_for_files. https://github.com/nexB/scancode.io/issues/340

v30.0.1 (2021-10-11)

v30.0.0 (2021-10-8)

v21.9.6

v21.8.2

v21.6.10

v21.5.12

  • Adds a new way to fetch docker images using skopeo provided as a plugin using docker:// reference URL-like pointers to a docker image. The syntax is docker://<docker image> where <docker image> is the string that would be used in a “docker pull <docker image>” command. Also rename scanpipe.pipes.fetch.download() to fetch_http() https://github.com/nexB/scancode.io/issues/174

  • Pipeline status modals are now loaded asynchronously and available from the project list view.

  • Fix an issue accessing codebase resource content using the scan_codebase and load_inventory pipelines. https://github.com/nexB/scancode.io/issues/147

v21.4.28

v21.4.14

v21.4.5

v1.1.0 (2021-02-16)

v1.0.7 (2021-02-01)

v1.0.6 (2020-12-23)

v1.0.5 (2020-12-07)

v1.0.4 (2020-11-17)

v1.0.3 (2020-09-24)

v1.0.2 (2020-09-18)

v1.0.1 (2020-09-12)

v1.0.0 (2020-09-09)

  • Initial release