diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 6a779ef3db..7190858503 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,6 +5,38 @@ Changelog - Drop support for Python3.10 and Python3.11 +v37.1.0 (2026-04-01) +-------------------- + +- feat: display scio and toolkit versions in place of django version + https://github.com/aboutcode-org/scancode.io/pull/2101 + +- feat: display layers information (created_by, comment) in tree view + https://github.com/aboutcode-org/scancode.io/pull/2102 + +- feat: enhance the global HTML structure + https://github.com/aboutcode-org/scancode.io/pull/2103 + +- feat: remove the need for context processor and improve base template + https://github.com/aboutcode-org/scancode.io/pull/2106 + +- fix: XSS and duplicate file detection in file upload UI + https://github.com/aboutcode-org/scancode.io/pull/2129 + +- fix: incomplete URL sanitization for Slack webhook detection + https://github.com/aboutcode-org/scancode.io/pull/2130 + +- feat: is_safe_url to mitigate SSRF in URL requests + https://github.com/aboutcode-org/scancode.io/pull/2131 + +- feat: add search to resource tree + https://github.com/aboutcode-org/scancode.io/pull/2114 + +- feat!: use uv and uv.lock for reproducible builds in Docker image + https://github.com/aboutcode-org/scancode.io/pull/2134 + +- feat!: convert Dockerfile to multi-stage build + v37.0.0 (2026-03-11) -------------------- diff --git a/RELEASE.md b/RELEASE.md index 5a3eebe990..a13579fb25 100644 --- a/RELEASE.md +++ b/RELEASE.md @@ -7,7 +7,8 @@ - `pyproject.toml` - `scancodeio/__init__.py` - `CHANGELOG.rst` (set date) -- Commit and push this branch +- Run `$ uv lock` to update the version in the `uv.lock` file +- Commit and push this branch: "chore: bump version to vx.x.x for release" - Create a PR and merge once approved - Tag and push that tag. This will trigger the `pypi-release.yml` GitHub workflow that takes care of building the dist release files and upload those to pypi: diff --git a/pyproject.toml b/pyproject.toml index 8a7281cf8f..70f736b864 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta" [project] name = "scancodeio" -version = "37.0.0" +version = "37.1.0" description = "Automate software composition analysis pipelines" readme = "README.rst" requires-python = ">=3.12,<3.15" diff --git a/scancodeio/__init__.py b/scancodeio/__init__.py index af281b87fa..44fc128513 100644 --- a/scancodeio/__init__.py +++ b/scancodeio/__init__.py @@ -28,7 +28,7 @@ import git -VERSION = "37.0.0" +VERSION = "37.1.0" PROJECT_DIR = Path(__file__).resolve().parent ROOT_DIR = PROJECT_DIR.parent diff --git a/uv.lock b/uv.lock index f0b92d46f7..c1f7254f69 100644 --- a/uv.lock +++ b/uv.lock @@ -2884,7 +2884,7 @@ packages = [ [[package]] name = "scancodeio" -version = "37.0.0" +version = "37.1.0" source = { editable = "." } dependencies = [ { name = "aboutcode-api-auth" },