From aa5c310a3f024fcb140d2a6ef4c7e627e2cb3b3a Mon Sep 17 00:00:00 2001 From: "Sergey \"Shnatsel\" Davidoff" Date: Sun, 19 Oct 2025 12:26:55 +0100 Subject: [PATCH 1/3] Populate changelog for v0.7.0 --- cargo-auditable/CHANGELOG.md | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/cargo-auditable/CHANGELOG.md b/cargo-auditable/CHANGELOG.md index eee2a1c..b129e0d 100644 --- a/cargo-auditable/CHANGELOG.md +++ b/cargo-auditable/CHANGELOG.md @@ -5,6 +5,17 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.7.0] - 2025-07-04 + +### Added + + - cargo-auditable can now use [Cargo's native SBOM precursor](https://doc.rust-lang.org/cargo/reference/unstable.html#sbom) for more accurate dependency trees. This feature is nightly-only as of this writing. + - Introduced the `format` field to the encoded data, to let the data consumer know how the dependency tree was obtained (e.g. via the SBOM precursor or not) + +### Fixed + + - Procedural macros are no longer erroneously reported as runtime dependencies. If the `format` field is set to 1 higher, they should be assumed to be reported correctly. + ## [0.6.7] - 2025-05-04 ### Changed From 0fbaefb497d47b4eb3dc77e08f254dfe3266e9e4 Mon Sep 17 00:00:00 2001 From: "Sergey \"Shnatsel\" Davidoff" Date: Sun, 19 Oct 2025 12:28:53 +0100 Subject: [PATCH 2/3] Populate changelog for v0.7.1 --- cargo-auditable/CHANGELOG.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/cargo-auditable/CHANGELOG.md b/cargo-auditable/CHANGELOG.md index b129e0d..d67e527 100644 --- a/cargo-auditable/CHANGELOG.md +++ b/cargo-auditable/CHANGELOG.md @@ -5,6 +5,12 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.7.1] - 2025-10-19 + +### Changed + + - Turned a hard error into a warning when `rustc` is called in a compilation command without `--crate-name` or `--out-dir`, for compatibility with exotic proc macros such as `crabtime`. + ## [0.7.0] - 2025-07-04 ### Added From 641fba512926bcded9adc42ee22e60661bd5a696 Mon Sep 17 00:00:00 2001 From: "Sergey \"Shnatsel\" Davidoff" Date: Sun, 19 Oct 2025 12:29:27 +0100 Subject: [PATCH 3/3] bump version --- Cargo.lock | 2 +- cargo-auditable/Cargo.toml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index e814d5a..bdcb52c 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -110,7 +110,7 @@ dependencies = [ [[package]] name = "cargo-auditable" -version = "0.7.0" +version = "0.7.1" dependencies = [ "auditable-info", "auditable-serde", diff --git a/cargo-auditable/Cargo.toml b/cargo-auditable/Cargo.toml index a6ba644..c7eb83a 100644 --- a/cargo-auditable/Cargo.toml +++ b/cargo-auditable/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "cargo-auditable" -version = "0.7.0" +version = "0.7.1" edition = "2021" authors = ["Sergey \"Shnatsel\" Davidoff "] license = "MIT OR Apache-2.0"