Skip to content

Pull requests: CycloneDX/specification

New pull request New
32 Open 325 Closed
32 Open 325 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Implements conditional subschemas based on component type CDX 2.0 related to release v2.0
#774 opened Jan 13, 2026 by stevespringett Loading… 2.0
1
chore(deps-dev): bump org.junit.jupiter:junit-jupiter-api from 5.11.4 to 6.0.2 in /tools dependencies Pull requests that update a dependency file
#773 opened Jan 10, 2026 by dependabot bot Loading…
Extend cryptography-related behaviors cap: cryptography Capability: Cryptography (CBOM)
#772 opened Jan 8, 2026 by bhess Loading…
10
feat(registry): add AES-CTR-HMAC-SHA1-96 suite pattern (RFC 3686) cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#771 opened Jan 7, 2026 by Mehrn0ush Loading…
1
4
CBOM 2.0 features cap: cryptography Capability: Cryptography (CBOM) proposed core enhancement
#769 opened Jan 7, 2026 by bhess Loading… 2.0
@stevespringett
7
feat(registry): add AES-CMAC-PRF-128 (RFC 4615) cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#768 opened Jan 7, 2026 by Mehrn0ush Loading…
1
3
feat(registry): add HPKE (RFC 9180) to Cryptography Registry cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#766 opened Jan 6, 2026 by Mehrn0ush Loading…
1
7
feat(registry): add AES-SIV AEAD variant (RFC 5297) cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#764 opened Jan 6, 2026 by Mehrn0ush Loading…
1
4
fix(registry): correct RFC 3610 DOI reference cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#762 opened Jan 5, 2026 by Mehrn0ush Loading…
1
4
2.0 dev threat modeling petras suggestions
#760 opened Jan 4, 2026 by P3tra-WP Loading…
12
Feat/crypto registry aes gcm siv cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#759 opened Jan 1, 2026 by Mehrn0ush Loading…
1
6
fix(registry): remove duplicate BLAKE2b-HMAC variant (#752) cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#753 opened Dec 30, 2025 by Mehrn0ush Loading…
1
13
chore(deps-dev): bump com.networknt:json-schema-validator from 1.5.5 to 3.0.0 in /tools dependencies Pull requests that update a dependency file
#746 opened Dec 20, 2025 by dependabot bot Loading…
Initial checkin of perspective model. CDX 2.0 related to release v2.0 proposed core enhancement request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration
#745 opened Dec 19, 2025 by stevespringett Loading… 2.0
1
@stevespringett
2
fix: allow multiple entries for ModelCard considerations lists in xml
#744 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
14
fix: add missing modelCard.properties to XML + Protobuf schemas
#743 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
1
chore(deps): bump org.apache.commons:commons-text from 1.12.0 to 1.15.0 in /tools dependencies Pull requests that update a dependency file
#739 opened Dec 13, 2025 by dependabot bot Loading…
chore(deps): bump json-schema-for-humans from 1.3.4 to 1.5.1 in /docgen/json dependencies Pull requests that update a dependency file
#729 opened Nov 22, 2025 by dependabot bot Loading…
chore(deps): bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0 in /tools dependencies Pull requests that update a dependency file
#727 opened Nov 22, 2025 by dependabot bot Loading…
Update ratings descriptions in schema files for clarity on VEX usage
#722 opened Nov 14, 2025 by fahedouch Loading…
1
11
chore(deps): bump commons-io:commons-io from 2.17.0 to 2.21.0 in /tools dependencies Pull requests that update a dependency file
#716 opened Nov 8, 2025 by dependabot bot Loading…
chore: SPDX licenses bump automation
#703 opened Oct 1, 2025 by jkowalleck Loading…
1
4
chore(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.4 in /tools dependencies Pull requests that update a dependency file
#691 opened Sep 13, 2025 by dependabot bot Loading…
1
Adds support for post-quantum ML-DSA algorithms
#682 opened Sep 8, 2025 by prabhu Loading…
1
5
2.0 dev threatmodeling proposed core enhancement prototype
#678 opened Sep 3, 2025 by stevespringett Draft 2.0
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.