Common Release Notes Format

 

Standardizes release notes unlocking new workflows for software publishers and consumers

Software Bill of Materials
Software-as-a-Service BOM
Vulnerability Exploitability Exchange
Hardware Bill of Materials
Operations Bill of Materials
Vulnerability Disclosure Report
Javascript Object Notation
Extensible Markup Language
Protocol Buffers

CycloneDX standardizes release notes into a common, machine-readable format. This capability unlocks new workflow potential for software publishers and consumers alike. This functionality works with or without the Bill of Materials capabilities of the spec.

  • Provides a common format in which to consume or publish release notes
  • Every component and service may optionally contain release notes
  • Helps reduce risk and operational expense by providing upgrade and security information to consumers
  • Release notes include everything necessary for publishing into multiple formats, including:
    • Version information
    • Multilingual descriptions
    • Tags to aid search engines
    • Issues (defects, enhancements, and security) resolved in a release
    • Featured and social images

High-Level Object Model

CycloneDX Object Model Swimlane

See also

Additional Capabilities

CycloneDX Supporters

Apiiro
Contrast Security
Ecma International
Fortress Information Security
IBM
IonChannel
Kondukto
Lockheed Martin
NowSecure
OWASP
Rezilion
ServiceNow
Sonatype