diff --git a/CHANGELOG.md b/CHANGELOG.md index d6101eb..31d1206 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,20 @@ All notable changes to CVE Lite CLI will be documented in this file. +## [1.1.0] - 2026-04-04 + +### Added +- Local SQLite advisory database foundation for offline advisory lookups +- `cve-lite advisories sync` command to download the official OSV npm dump and build the local advisory DB +- Offline scanning with `--offline` using the default local advisory DB +- Explicit local DB selection with `--offline-db ` +- Progress reporting during advisory DB sync, including download and ingest progress + +### Changed +- CLI output now reports when offline mode is enabled and when the local advisory DB is being used as the advisory source +- README now highlights offline advisory DB support, offline workflows, and scheduled DB refresh guidance more prominently +- Coverage notes now clarify that offline scans do not make outbound advisory API calls + ## [1.0.6] - 2026-04-02 ### Added @@ -18,4 +32,4 @@ All notable changes to CVE Lite CLI will be documented in this file. - Configurable OSV endpoint support ### Changed -- README updates and documentation fixes \ No newline at end of file +- README updates and documentation fixes diff --git a/package-lock.json b/package-lock.json index 1d25781..8458511 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "cve-lite-cli", - "version": "1.0.6", + "version": "1.1.0", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "cve-lite-cli", - "version": "1.0.6", + "version": "1.1.0", "license": "MIT", "dependencies": { "better-sqlite3": "^12.8.0", diff --git a/package.json b/package.json index f4b0177..3680375 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "cve-lite-cli", - "version": "1.0.6", + "version": "1.1.0", "description": "Developer-friendly CLI for scanning JS/TS projects for dependency vulnerabilities using local lockfiles and OSV", "type": "module", "bin": {