What's Changed

• chore(deps-dev): bump @types/ora from 3.1.0 to 3.2.0 by @dependabot[bot] in #556
• chore(deps-dev): bump vitest from 4.0.18 to 4.1.4 by @dependabot[bot] in #558
• chore(deps-dev): bump sinon and @types/sinon by @dependabot[bot] in #557
• fix(cli): detect expired CI tokens locally by @facundo-herodevs in #566
• chore(deps): bump @cyclonedx/cdxgen from 12.1.5 to 12.2.0 by @dependabot[bot] in #560
• chore(deps-dev): bump @biomejs/biome from 2.4.12 to 2.4.13 by @dependabot[bot] in #568
• chore(deps): bump @apollo/client from 4.1.7 to 4.1.9 by @dependabot[bot] in #567
• chore: update eol-shared to v0.1.19 by @facundo-herodevs in #575
• chore(deps-dev): bump typescript from 5.9.3 to 6.0.3 by @dependabot[bot] in #559
• chore(auth): migrate keycloak base URL to auth herodevs by @v3nant in #576
• chore(deps): bump @amplitude/analytics-node from 1.5.54 to 1.5.59 by @dependabot[bot] in #579
• chore(deps-dev): bump vitest from 4.1.4 to 4.1.8 by @dependabot[bot] in #577
• chore(deps): bump @cyclonedx/cdxgen from 12.2.0 to 12.5.1 by @dependabot[bot] in #578
• chore(deps-dev): bump @types/terminal-link from 1.1.0 to 1.2.0 by @dependabot[bot] in #570
• chore(deps): bump fast-xml-parser from 5.5.8 to 5.7.1 in the npm_and_yarn group across 1 directory by @dependabot[bot] in #565
• feat(scan): include per-component remediations in saved JSON report by @facundo-herodevs in #581
• chore(deps): bump the npm_and_yarn group across 1 directory with 7 updates by @dependabot[bot] in #588
• chore(deps): bump @oclif/core from 4.10.5 to 4.11.4 by @dependabot[bot] in #586
• chore(deps): bump ora from 9.3.0 to 9.4.0 by @dependabot[bot] in #582
• chore(deps-dev): bump sinon from 21.1.2 to 22.0.0 by @dependabot[bot] in #583
• chore(deps): bump date-fns from 4.1.0 to 4.4.0 by @dependabot[bot] in #591
• chore(deps-dev): bump oclif from 4.23.0 to 4.23.16 by @dependabot[bot] in #592
• chore: replaces idp realm url by @v3nant in #580
• chore: updates apollo-client and graphql to latest by @v3nant in #594
• chore: release 2.0.7 by @v3nant in #595

Full Changelog: v2.0.6...v2.0.7

What's Changed

• fix(cli): avoid second OIDC roundtrip after auth login completion by @facundo-herodevs in #561
• chore: release 2.0.6 by @KLongmuirHD in #563

Full Changelog: v2.0.5...v2.0.6

What's Changed

• chore: add table of contents to README by @KLongmuirHD in #532
• chore: update cdxgen by @KLongmuirHD in #533
• chore: update dependabot config to ignore e2e by @KLongmuirHD in #536
• fix(cli): handle 413 payload-too-large errors for SBOM scans by @facundo-herodevs in #545
• fix: classify CI token refresh communication failures by @facundo-herodevs in #546
• chore(deps): bump @apollo/client from 4.1.3 to 4.1.7 by @dependabot[bot] in #538
• chore(deps-dev): bump @types/debug from 4.1.12 to 4.1.13 by @dependabot[bot] in #539
• chore(deps): bump graphql from 16.12.0 to 16.13.2 by @dependabot[bot] in #542
• chore(deps): bump docker/build-push-action from 6 to 7 by @dependabot[bot] in #531
• chore(deps): bump docker/setup-buildx-action from 3 to 4 by @dependabot[bot] in #524
• chore(deps): bump actions/download-artifact from 7 to 8 by @dependabot[bot] in #512
• chore(deps): bump actions/upload-artifact from 6 to 7 by @dependabot[bot] in #511
• chore(deps): bump aws-actions/configure-aws-credentials from 5 to 6 by @dependabot[bot] in #472
• chore(deps-dev): bump @oclif/test from 4.1.16 to 4.1.18 by @dependabot[bot] in #543
• chore(deps): bump the npm_and_yarn group across 1 directory with 6 updates by @dependabot[bot] in #548
• chore(deps): bump @amplitude/analytics-node from 1.5.34 to 1.5.54 by @dependabot[bot] in #544
• chore(deps): bump docker/metadata-action from 5 to 6 by @dependabot[bot] in #554
• chore(deps): bump ora from 9.1.0 to 9.3.0 by @dependabot[bot] in #553
• chore(deps): bump @oclif/plugin-update from 4.7.18 to 4.7.32 by @dependabot[bot] in #552
• chore(deps-dev): bump @biomejs/biome from 2.3.13 to 2.4.12 by @dependabot[bot] in #551
• chore(deps): bump @oclif/core from 4.9.0 to 4.10.5 by @dependabot[bot] in #550
• chore: release 2.0.5 by @KLongmuirHD in #555

Full Changelog: v2.0.4...v2.0.5

What's Changed

• feat: skip ci on workflow updates by @KLongmuirHD in #501
• chore(deps): bump docker/login-action from 3 to 4 by @dependabot[bot] in #516
• feat(gh): enable Trusted Publisher authentication for NPM publishing by @eduardoRoth in #521
• fix(auth): update code/token generation from CLI and redirect to successful page by @eduardoRoth in #518
• fix: use NES user id for cli amplitude events by @facundo-herodevs in #526
• fix: opt out tracking in e2e programmatically by @KLongmuirHD in #520
• chore(deps): bump biomejs/setup-biome from 2.6.0 to 2.7.1 by @dependabot[bot] in #525
• chore: release 2.0.4 by @eduardoRoth in #529

Full Changelog: v2.0.2...v2.0.4

What's Changed

• feat: skip ci on workflow updates by @KLongmuirHD in #501
• chore(deps): bump docker/login-action from 3 to 4 by @dependabot[bot] in #516
• feat(gh): enable Trusted Publisher authentication for NPM publishing by @eduardoRoth in #521

Full Changelog: v2.0.2...v2.0.3

What's Changed

• feat: detect and prevent hd update command in npm installation by @KLongmuirHD in #514
• fix: version flag when running with no args by @KLongmuirHD in #513
• chore: release 2.0.2 by @KLongmuirHD in #515

Full Changelog: v2.0.1...v2.0.2

What's Changed

• fix README typo
• Release 2.0.1 by @KLongmuirHD in #507

Full Changelog: v2.0.0...v2.0.1

What's Changed

• Full rewrite of the HeroDevs CLI
• New features for authenticated EOL scans, powered by the HeroDevs End-of-Life Dataset

See full changelog comparison for more details

New Contributors

• @github-actions[bot] made their first contribution in #122
• @rlmestre made their first contribution in #160
• @KLongmuirHD made their first contribution in #253
• @sunshastry made their first contribution in #352
• @v3nant made their first contribution in #376
• @facundo-herodevs made their first contribution in #377
• @eduardoRoth made their first contribution in #423
• @dannysauer made their first contribution in #494

Full Changelog: v0.3.1...v2.0.0

What's Changed

• fix: removes rs-keyring usage and use encrypted file to store tokens by @sunshastry in #504
• chore: release v2.0.0-beta.18 by @KLongmuirHD in #505

Full Changelog: v2.0.0-beta.17...v2.0.0-beta.18

What's Changed

• feat: change default command to help by @KLongmuirHD in #497
• fix: eol shared global install issue by @KLongmuirHD in #499
• fix: revert cdxgen image by @KLongmuirHD in #503
• chore: release 2.0.0-beta.17 by @KLongmuirHD in #500

Full Changelog: v2.0.0-beta.16...v2.0.0-beta.17