Skip to content

Pull requests: CycloneDX/specification

New pull request New
26 Open 351 Closed
26 Open 351 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

chore(deps): bump actions/download-artifact from 5 to 7 dependencies Pull requests that update a dependency file
#819 opened Feb 14, 2026 by dependabot bot Loading…
chore(deps): bump actions/upload-artifact from 4 to 6 dependencies Pull requests that update a dependency file
#818 opened Feb 14, 2026 by dependabot bot Loading…
chore(deps): bump actions/checkout from 5 to 6 dependencies Pull requests that update a dependency file
#817 opened Feb 14, 2026 by dependabot bot Loading…
schema: refactor data/threat models and refresh bundles
#777 opened Jan 17, 2026 by P3tra-WP Loading…
17
Refactors role-specific properties into entities breaking-changes CDX 2.0 related to release v2.0 promote to tc54 Promote to Ecma Technical Committee 54 request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration RFC vote accepted
#776 opened Jan 15, 2026 by stevespringett Loading… 2.0
1
@stevespringett
18
Implements conditional subschemas based on component type CDX 2.0 related to release v2.0
#774 opened Jan 13, 2026 by stevespringett Loading… 2.0
1
7
chore(deps-dev): bump org.junit.jupiter:junit-jupiter-api from 5.11.4 to 6.0.2 in /tools dependencies Pull requests that update a dependency file
#773 opened Jan 10, 2026 by dependabot bot Loading…
2.0 dev threat modeling petras suggestions
#760 opened Jan 4, 2026 by P3tra-WP Loading…
12
chore(deps-dev): bump com.networknt:json-schema-validator from 1.5.5 to 3.0.0 in /tools dependencies Pull requests that update a dependency file
#746 opened Dec 20, 2025 by dependabot bot Loading…
Initial checkin of perspective model. CDX 2.0 related to release v2.0 promote to tc54 Promote to Ecma Technical Committee 54 proposed core enhancement request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration RFC vote accepted
#745 opened Dec 19, 2025 by stevespringett Loading… 2.0
1
@stevespringett
6
fix: allow multiple entries for ModelCard considerations lists in xml CDX 1.5 related to release v1.5 CDX 1.6 related to release v1.6 CDX 1.7 related to release v1.7 defect format: XML
#744 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
22
fix: add missing modelCard.properties to XML + Protobuf schemas CDX 1.5 related to release v1.5 CDX 1.6 related to release v1.6 CDX 1.7 related to release v1.7 defect format: ProtoBuf format: XML validated
#743 opened Dec 17, 2025 by wiebe-vandendriessche Loading…
1
12
chore(deps): bump org.apache.commons:commons-text from 1.12.0 to 1.15.0 in /tools dependencies Pull requests that update a dependency file
#739 opened Dec 13, 2025 by dependabot bot Loading…
chore(deps): bump json-schema-for-humans from 1.3.4 to 1.5.1 in /docgen/json dependencies Pull requests that update a dependency file
#729 opened Nov 22, 2025 by dependabot bot Loading…
chore(deps): bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0 in /tools dependencies Pull requests that update a dependency file
#727 opened Nov 22, 2025 by dependabot bot Loading…
chore(deps): bump commons-io:commons-io from 2.17.0 to 2.21.0 in /tools dependencies Pull requests that update a dependency file
#716 opened Nov 8, 2025 by dependabot bot Loading…
chore(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.4 in /tools dependencies Pull requests that update a dependency file
#691 opened Sep 13, 2025 by dependabot bot Loading…
1
Adds support for post-quantum ML-DSA algorithms
#682 opened Sep 8, 2025 by prabhu Loading…
1
5
2.0 dev threatmodeling proposed core enhancement prototype
#678 opened Sep 3, 2025 by stevespringett Draft 2.0
[WIP] CycloneDX v2.0 Specification -- requirement schema
#663 opened Jul 23, 2025 by anthonyharrison Draft
2
[WIP] CycloneDX v2.0 Specification CDX 2.0 related to release v2.0
#652 opened Jun 15, 2025 by stevespringett Draft 2.0
1
@stevespringett
27
feat: licenses acknowledgement SHOULD be unique proposed core enhancement ready for review request for comment RFC notice sent A public RFC notice was distributed to the CycloneDX mailing list for consideration RFC vote accepted
#626 opened Apr 14, 2025 by jkowalleck Loading… 1.7
1
11
chore(deps): bump lib.slf4j.api from 2.0.16 to 2.0.17 in /tools dependencies Pull requests that update a dependency file
#607 opened Mar 1, 2025 by dependabot bot Loading…
XML Schema HTML viewer generator script supports generating for one particular CDX version
#508 opened Aug 29, 2024 by Nicolas-Peiffer Loading…
fix: align XML schema with JSON schema for Dependency type #146 format: XML
#158 opened Sep 13, 2022 by madpah Loading…
1
5
ProTip! Exclude everything labeled bug with -label:bug.