v0.0.26

What's Changed

• refactor(copyright): streamline detector helpers and speed up scans by @abraemer in #768
• fix(license): treat bare GPL1 as a clue by @mstykow in #771
• fix(arch): verify Arch Linux compare targets by @mstykow in #772
• refactor(tooling): isolate license header checks from xtask by @mstykow in #773
• fix(misc): verify misc recognizers against compare outputs by @mstykow in #774
• fix(cli): align only-findings filtering with ScanCode parity by @mstykow in #775

Full Changelog: v0.0.25...v0.0.26

v0.0.25

What's Changed

• fix(copyright): verify Chef compare targets by @mstykow in #764
• fix(copyright): improve Bower verification attribution coverage by @mstykow in #765
• fix(deps): update rust crate pdf_oxide to 0.3.36 by @renovate[bot] in #767
• docs(haxe): record verification runs by @mstykow in #766
• fix(cli): collect paths-file entries directly by @mstykow in #769
• fix(alpine): verify compare targets and harden package parsing by @mstykow in #770

Full Changelog: v0.0.24...v0.0.25

v0.0.24

What's Changed

• fix(deps): update rust crate pdf_oxide to 0.3.34 by @renovate[bot] in #755
• fix(android-parser): handle textproto adjacent string concatenation by @mstykow in #756
• fix(license): preserve nested detection expressions for Deno verification by @mstykow in #757
• fix(parser): preserve opam metadata after inline descriptions by @mstykow in #758
• fix(hex): verify compare-output targets by @mstykow in #761
• feat(cli): add rooted paths-file scan selection by @mstykow in #760
• feat(parser): add Erlang/OTP parser for app.src, rebar.config, rebar.lock by @mstykow in #762
• fix(deps): update rust crate pdf_oxide to 0.3.35 by @renovate[bot] in #763

Full Changelog: v0.0.23...v0.0.24

v0.0.23

What's Changed

• fix(deps): update rust crate pdf_oxide to 0.3.32 by @renovate[bot] in #742
• fix(bazel): verify compare-output snapshots by @mstykow in #743
• fix(meson): verify compare-output targets by @mstykow in #744
• fix(conan): tighten compare-output parity by @mstykow in #745
• fix(deps): update rust crate pdf_oxide to 0.3.33 by @renovate[bot] in #748
• feat(carthage): add and verify parser coverage by @mstykow in #746
• fix(scanner): preserve diagnostic severity across replay and large rpm scans by @mstykow in #747
• feat: add Yocto/BitBake recipe parser by @mstykow in #750
• chore: adopt DCO contribution policy by @mstykow in #751
• chore: roll out SPDX license headers by @mstykow in #752
• fix(buck): stop defaulting METADATA.bzl package types by @mstykow in #754
• fix(license): keep weak GPL shorthand as clues by @mstykow in #753

Full Changelog: v0.0.22...v0.0.23

v0.0.22

What's Changed

• fix(hackage): verify remaining parser targets by @mstykow in #730
• refactor(debian): DRY and enum improvements by @abraemer in #733
• refactor(python): idiomatic Rust improvements for Python parser module by @abraemer in #732
• fix(scala): verify sbt compare-output targets by @mstykow in #734
• fix(cpan): verify remaining parser targets by @mstykow in #735
• fix(julia): verify compare-output targets and improve author recovery by @mstykow in #736
• fix(structured-metadata): verify row 30 compare targets by @mstykow in #737
• fix(cli): align workflow parity with scancode by @mstykow in #738
• fix(cli): align row 2 imported workflow parity by @mstykow in #740
• fix(cran): improve R parity and verify compare targets by @mstykow in #739
• fix(rpm): complete RPM compare parity verification by @mstykow in #741

Full Changelog: v0.0.21...v0.0.22

v0.0.21

What's Changed

• docs(pixi): record verification benchmarks by @mstykow in #728
• refactor(python): split monolithic python.rs into nested submodules by @abraemer in #725
• refactor(nuget): split nuget.rs into nested submodule per ADR 0009 by @abraemer in #726
• refactor(debian): split flat debian.rs into directory module per ADR 0009 by @abraemer in #727
• fix(build): remove sandbox-dependent generated overlay paths by @mstykow in #729

Full Changelog: v0.0.20...v0.0.21

v0.0.20

What's Changed

• refactor(copyright): decompose detector into sub-modules by @abraemer in #704
• fix(scanner): verify Helm compare targets by @mstykow in #703
• fix(progress): remove duplicate 'Post-processing scan results...' log by @abraemer in #705
• fix(post-processing): stop resolving local references via ancestors by @mstykow in #706
• ci: run binary unit tests in rust-library-tests by @mstykow in #707
• fix(post-processing): follow explicit source-tree root licenses by @mstykow in #708
• fix(conda): preserve environment build strings separately by @mstykow in #710
• fix(scanner): enforce license-stage timeout deadlines by @mstykow in #711
• feat(license-detection): add exportable custom license datasets by @mstykow in #709
• refactor(copyright): replace #[path] submodules with directory modules by @abraemer in #714
• perf(legalese): replace LazyLock with build.rs-generated rkyv BTreeMap artifact by @abraemer in #712
• fix(conda): verify Conda compare targets by @mstykow in #713
• refactor(cli): move CLI orchestration from main.rs into cli::run module by @abraemer in #715
• fix(license-detection): curate downstream ScanCode rule overlays by @mstykow in #720
• fix(license-detection): add downstream CAL and MIT rule curations by @mstykow in #724

Full Changelog: v0.0.19...v0.0.20

v0.0.19

What's Changed

• fix(package-detection): verify Docker compare targets by @mstykow in #692
• fix(parsers): reuse scan license engine during finalization by @mstykow in #693
• feat(progress): add verbose-mode step logging for post-scan and finalize phases by @abraemer in #694
• perf(scan-result-shaping): replace O(D×N) directory scans with O(N) bottom-up tree traversal by @abraemer in #696
• refactor: replace lazy_static and once_cell with std::sync::LazyLock by @abraemer in #698
• fix(parsers): apply ADR 0004 security hardening across 10 parsers by @abraemer in #695
• fix(assembly): keep sibling CocoaPods podspecs separate by @mstykow in #699
• fix(copyright): stop directive absorption and support single-file compare targets by @mstykow in #700
• feat(license-detection): make Rule/License rkyv-compatible, drop rmp_serde from cache by @abraemer in #697
• refactor(license-detection): replace rmp_serde with postcard for embedded artifact by @abraemer in #702
• fix(output): preserve hoisted SPDX license data by @mstykow in #701

Full Changelog: v0.0.18...v0.0.19

v0.0.18

What's Changed

• fix(parsers): verify Dart and Pub compare targets by @mstykow in #658
• fix: finalize Swift verification runs by @mstykow in #659
• fix(parsers): leave unproven dependency booleans unset by @mstykow in #663
• fix(ruby): verify remaining Ruby compare targets by @mstykow in #662
• fix(parsers): ADR 0004 security compliance batch 1 — npm, cargo, python, ruby, alpine + utils by @abraemer in #664
• fix(ci): ignore yanked core2 v0.4.0 transitive dep in cargo-deny by @abraemer in #668
• fix(output): keep schema-backed party nulls on the wire by @mstykow in #667
• fix(deps): update rust crate pdf_oxide to 0.3.24 by @renovate[bot] in #670
• fix(parsers): ADR 0004 batch 2 — swift_show_dependencies, sbt, pylock_toml, pnpm_lock, npm_lock by @abraemer in #665
• fix(parsers): ADR 0004 security compliance — batch 4 (bun_lockb, bazel, yarn_pnp, yarn_lock, vcpkg) by @abraemer in #669
• feat(skills): add opencode AI agent skills by @abraemer in #657
• fix(package-detection): close vcpkg verification deltas by @mstykow in #671
• fix(parsers): ADR 0004 security compliance for uv_lock, rpm_yumdb, rpm_specfile, rpm_parser, rpm_mariner_manifest by @abraemer in #672
• fix(deps): update rust crate pdf_oxide to 0.3.28 by @renovate[bot] in #686
• fix(parsers): ADR 0004 security compliance batch 6 — rpm_db, requirements_txt, podspec_json, pipfile_lock, nuget by @abraemer in #673
• fix(parsers): ADR 0004 batch 7 — npm_workspace, maven, julia, hackage, gradle_module by @abraemer in #674
• fix(xtask): keep .gitmodules in compare-outputs scans by @mstykow in #685
• fix(parsers): ADR 0004 security compliance for gradle_lock, gradle, go_mod_graph, go, deno_lock by @abraemer in #675
• fix(parsers): ADR 0004 batch 14 — cpan, cpan_dist_ini, cpan_makefile_pl, conda, conda_meta_json by @abraemer in #681
• fix(parsers): ADR 0004 security compliance — batch 15 by @abraemer in #682
• fix(parsers): ADR 0004 security compliance for deno, dart, conan, cargo_lock, bun_lock by @abraemer in #676
• fix(parsers): ADR 0004 security compliance for buck, bower, arch, windows_executable, swift_resolved by @abraemer in #677
• fix(parsers): ADR 0004 batch 11 - swift_manifest_json, bdb, readme, poetry_lock, podspec by @abraemer in #678
• fix(parsers): ADR 0004 batch 12 - podfile_lock, podfile, pixi, opam, microsoft_update_manifest by @abraemer in #679
• fix(parsers): ADR 0004 batch 13 — helm, gitmodules, freebsd, docker, cran by @abraemer in #680
• fix(parsers): ADR 0004 security compliance — batch 16 by @abraemer in #683
• fix(parsers): ADR 0004 security compliance — batch 17 by @abraemer in #684
• fix(parsers): apply ADR 0004 security hardening for batch 18 by @abraemer in #687
• docs(skills): add ADR 0004 reference, security utilities, and parser pattern details to add-parser skill by @abraemer in #688
• fix(parsers): ADR 0004 security compliance — batch 3 (nix, meson, hex_lock, debian, clojure) by @abraemer in #666
• chore: remove accidentally committed docs/parser-audit directory by @abraemer in #689
• fix(debian): complete row 10 verification by @mstykow in #690
• chore: upgrade libflate 2.2.1 → 2.3.0, remove core2 yanked ignore by @abraemer in #691

Full Changelog: v0.0.17...v0.0.18

v0.0.17

What's Changed

• fix(parsers): align cargo compare-output verification by @mstykow in #643
• docs(benchmarks): add curl autotools verification snapshot by @mstykow in #644
• docs(benchmarks): add NuGet verification snapshots by @mstykow in #645
• fix(composer): verify remaining PHP compare targets by @mstykow in #646
• fix(progress): quiet non-tty verbose success output by @mstykow in #647
• fix(parsers): finish Gradle verification comparisons by @mstykow in #649
• refactor(scanner): split process module responsibilities by @mstykow in #648
• perf(license-detection): add rkyv-based license index cache by @abraemer in #651
• fix(parsers): verify Buck compare targets by @mstykow in #650
• perf(license-detection): add content-based cache fingerprinting and CLI flags by @abraemer in #652
• fix(output): preserve declared license rule identifiers by @mstykow in #653
• fix(license-detection): require positional overlap in surround merge by @abraemer in #655
• fix(licenses): canonicalize generated SPDX operand order by @mstykow in #654
• fix(cache): unify persistent cache behavior by @mstykow in #656

Full Changelog: v0.0.16...v0.0.17