Skip to content

Pull requests: CycloneDX/specification

New pull request New
27 Open 332 Closed
27 Open 332 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

schema: refactor data/threat models and refresh bundles
#777 opened Jan 17, 2026 by P3tra-WP Loading…
1
Refactors role-specific properties into entities breaking-changes CDX 2.0 related to release v2.0 request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration
#776 opened Jan 15, 2026 by stevespringett Draft 2.0
1
@stevespringett
6
Implements conditional subschemas based on component type CDX 2.0 related to release v2.0
#774 opened Jan 13, 2026 by stevespringett Loading… 2.0
1
3
chore(deps-dev): bump org.junit.jupiter:junit-jupiter-api from 5.11.4 to 6.0.2 in /tools dependencies Pull requests that update a dependency file
#773 opened Jan 10, 2026 by dependabot bot Loading…
feat(registry): add AES-SIV AEAD variant (RFC 5297) cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#764 opened Jan 6, 2026 by Mehrn0ush Loading…
1
7
2.0 dev threat modeling petras suggestions
#760 opened Jan 4, 2026 by P3tra-WP Loading…
12
Feat/crypto registry aes gcm siv cap: cryptography Capability: Cryptography (CBOM) cap: cryptography-registry Capability: Cryptography Registry
#759 opened Jan 1, 2026 by Mehrn0ush Loading…
1
9
chore(deps-dev): bump com.networknt:json-schema-validator from 1.5.5 to 3.0.0 in /tools dependencies Pull requests that update a dependency file
#746 opened Dec 20, 2025 by dependabot bot Loading…
Initial checkin of perspective model. CDX 2.0 related to release v2.0 proposed core enhancement request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration
#745 opened Dec 19, 2025 by stevespringett Loading… 2.0
1
@stevespringett
2
fix: allow multiple entries for ModelCard considerations lists in xml
#744 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
19
fix: add missing modelCard.properties to XML + Protobuf schemas
#743 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
4
chore(deps): bump org.apache.commons:commons-text from 1.12.0 to 1.15.0 in /tools dependencies Pull requests that update a dependency file
#739 opened Dec 13, 2025 by dependabot bot Loading…
chore(deps): bump json-schema-for-humans from 1.3.4 to 1.5.1 in /docgen/json dependencies Pull requests that update a dependency file
#729 opened Nov 22, 2025 by dependabot bot Loading…
chore(deps): bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0 in /tools dependencies Pull requests that update a dependency file
#727 opened Nov 22, 2025 by dependabot bot Loading…
Update ratings descriptions in schema files for clarity on VEX usage
#722 opened Nov 14, 2025 by fahedouch Loading…
1
13
chore(deps): bump commons-io:commons-io from 2.17.0 to 2.21.0 in /tools dependencies Pull requests that update a dependency file
#716 opened Nov 8, 2025 by dependabot bot Loading…
chore: SPDX licenses bump automation
#703 opened Oct 1, 2025 by jkowalleck Loading…
1
4
chore(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.4 in /tools dependencies Pull requests that update a dependency file
#691 opened Sep 13, 2025 by dependabot bot Loading…
1
Adds support for post-quantum ML-DSA algorithms
#682 opened Sep 8, 2025 by prabhu Loading…
1
5
2.0 dev threatmodeling proposed core enhancement prototype
#678 opened Sep 3, 2025 by stevespringett Draft 2.0
[WIP] CycloneDX v2.0 Specification -- requirement schema
#663 opened Jul 23, 2025 by anthonyharrison Draft
2
[WIP] CycloneDX v2.0 Specification CDX 2.0 related to release v2.0
#652 opened Jun 15, 2025 by stevespringett Draft 2.0
1
@stevespringett
27
feat: licenses acknowledgement SHOULD be unique proposed core enhancement ready for review request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration RFC vote accepted
#626 opened Apr 14, 2025 by jkowalleck Loading… 1.7
1
11
chore(deps): bump lib.slf4j.api from 2.0.16 to 2.0.17 in /tools dependencies Pull requests that update a dependency file
#607 opened Mar 1, 2025 by dependabot bot Loading…
XML Schema HTML viewer generator script supports generating for one particular CDX version
#508 opened Aug 29, 2024 by Nicolas-Peiffer Loading…
ProTip! Type g i on any issue or pull request to go back to the issue listing page.