Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Language-agnostic; integrates with 20+ build systems.
--without-default-filters
: disables default path filters (#1396).
Resolves an issue where vendored-dependencies
were rescanned locally, but not in the FOSSA service, when forceRescans
was set to true
(#1423).
Poetry: Adds partial support for dependency groups. (https://github.com/fossas/fossa-cli/pull/1420).
Change TLS to a version that takes advantage of but does not require 1.2 with EMS. This will be reverted in six months. On-prem users should upgrade their servers to support either TLS 1.2 with EMS or TLS 1.3. SAAS customers are unaffected. (#1418).
--detect-dynamic
: Fix deb tatic parsing (#1401).tgz
, taz
, txz
, tbz
, tbz2
, and tz2
files for --unpack-archives
(#1402)fossa test
: improves diagnostic message (#1403)fossa release-group
: Adds commands to interact with FOSSA release-groups (fossa release-group add-projects
, fossa release-group create
, fossa release-group delete
, fossa release-group delete-release
) #1399.