git: ccc5db8a438a - main - security/py-lib4sbom: Update 0.8.7 => 0.9.4
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Tue, 10 Feb 2026 14:52:58 UTC
The branch main has been updated by vvd:
URL: https://cgit.FreeBSD.org/ports/commit/?id=ccc5db8a438a218ab8114cade037445e814846ba
commit ccc5db8a438a218ab8114cade037445e814846ba
Author: Tuukka Pasanen <tuukka.pasanen@ilmi.fi>
AuthorDate: 2026-02-10 14:48:43 +0000
Commit: Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2026-02-10 14:48:43 +0000
security/py-lib4sbom: Update 0.8.7 => 0.9.4
Fixes and features:
* improved service component processing for CycloneDX
* convert sbom types between SPDX and CycloneDX
* update licence list
* distributionConstraints
* default licence type
* update suported Python version
* add SBOM validation debug
* Invalid CycloneDX SHA algorithm specified (fixes #73)
* add support for CycloneDX 1.7
* add support for parsing SPDX documents in in-toto statements
* optimised CycloneDX JSON schema validation
* CycloneDX validation fails (fixes #70)
* detect CBOM
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.8.8
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.9.0
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.9.1
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.9.2
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.9.3
https://github.com/anthonyharrison/lib4sbom/releases/tag/v0.9.4
While here:
- Lowercase "yes" in NO_ARCH.
- Merge MVs in post-patch.
PR: 293084
---
security/py-lib4sbom/Makefile | 13 +++++++------
security/py-lib4sbom/distinfo | 6 +++---
2 files changed, 10 insertions(+), 9 deletions(-)
diff --git a/security/py-lib4sbom/Makefile b/security/py-lib4sbom/Makefile
index b4a0f5a61a6d..77982663293f 100644
--- a/security/py-lib4sbom/Makefile
+++ b/security/py-lib4sbom/Makefile
@@ -1,6 +1,6 @@
PORTNAME= lib4sbom
DISTVERSIONPREFIX= v
-DISTVERSION= 0.8.7
+DISTVERSION= 0.9.4
CATEGORIES= security python
PKGNAMEPREFIX= ${PYTHON_PKGNAMEPREFIX}
@@ -14,10 +14,12 @@ LICENSE_FILE= ${WRKSRC}/LICENSE
BUILD_DEPENDS= ${PY_SETUPTOOLS} \
${PYTHON_PKGNAMEPREFIX}wheel>=0:devel/py-wheel@${PY_FLAVOR}
RUN_DEPENDS= ${PYTHON_PKGNAMEPREFIX}defusedxml>0:devel/py-defusedxml@${PY_FLAVOR} \
- ${PYTHON_PKGNAMEPREFIX}pyyaml>0:devel/py-pyyaml@${PY_FLAVOR} \
+ ${PYTHON_PKGNAMEPREFIX}pyyaml>=5.4:devel/py-pyyaml@${PY_FLAVOR} \
${PYTHON_PKGNAMEPREFIX}requests>=2.32:www/py-requests@${PY_FLAVOR} \
${PYTHON_PKGNAMEPREFIX}semantic-version>=2.8<3:devel/py-semantic-version@${PY_FLAVOR} \
- ${PYTHON_PKGNAMEPREFIX}xmlschema>0:textproc/py-xmlschema@${PY_FLAVOR}
+ ${PYTHON_PKGNAMEPREFIX}xmlschema>0:textproc/py-xmlschema@${PY_FLAVOR} \
+ ${PYTHON_PKGNAMEPREFIX}jsonschema>0:devel/py-jsonschema@${PY_FLAVOR} \
+ ${PYTHON_PKGNAMEPREFIX}fastjsonschema>0:devel/py-fastjsonschema@${PY_FLAVOR}
USES= python
USE_GITHUB= yes
@@ -63,15 +65,14 @@ PYTEST_IGNORED_TESTS= test_store test_getBOM test_generateTime \
test_parse_spdx_rdf test_parse_spdx_yaml \
test_parse_spdx_xml
-NO_ARCH= YES
+NO_ARCH= yes
PORTEXAMPLES= *
OPTIONS_DEFINE= EXAMPLES
post-patch:
- ${MV} ${WRKSRC}/test ${WRKSRC}/${PORTNAME}
- ${MV} ${WRKSRC}/tools ${WRKSRC}/${PORTNAME}
+ ${MV} ${WRKSRC}/test ${WRKSRC}/tools ${WRKSRC}/${PORTNAME}
post-patch-EXAMPLES-off:
@${RM} -r ${WRKSRC}/examples
diff --git a/security/py-lib4sbom/distinfo b/security/py-lib4sbom/distinfo
index 5fe6d1866858..4bb2e9320679 100644
--- a/security/py-lib4sbom/distinfo
+++ b/security/py-lib4sbom/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1752670734
-SHA256 (anthonyharrison-lib4sbom-v0.8.7_GH0.tar.gz) = 20b4dec06a8d1bd917cf9ebcf9858d53981073e161a0a0d77f9c1704ecde784e
-SIZE (anthonyharrison-lib4sbom-v0.8.7_GH0.tar.gz) = 1848916
+TIMESTAMP = 1770636739
+SHA256 (anthonyharrison-lib4sbom-v0.9.4_GH0.tar.gz) = 272a12023d0c87845024530afc90dc3e6fd9987753f585d986d63b2e86416345
+SIZE (anthonyharrison-lib4sbom-v0.9.4_GH0.tar.gz) = 1974992