Scanning and Automated Discovery
This release includes the following enhancements to Code Insight scans and the automated analysis techniques used to discover and report inventory during scans.
Support for Python pyproject.toml Files
Code Insight now reports top-level inventory items, direct dependencies, and transitive dependencies from the pyproject.toml files (pre-build artifacts) in a PyPI ecosystem.
For more information, see Supported Ecosystems in the Code Insight User Guide.
Enhanced Dependency Classification in PyPI Ecosystems
Previously, Code Insight classified transitive dependencies—retrieved by scanning both pre-build artifacts (requirements.txt and setup.py files) and post-build artifacts (.whl, .egg, and .dist-info files)—as direct (first-level) dependencies.
Starting in this release, Code Insight improves the classification logic by accurately identifying transitive dependencies from both pre-build and post-build artifacts. These dependencies are no longer marked as direct (first-level) dependencies and are correctly categorized as transitive, providing a more accurate and meaningful representation of your project’s dependency structure.
For more information, see Supported Ecosystems in the Code Insight User Guide.
Support for Directory.Packages.props Files
Code Insight now supports scanning Directory.Packages.props manifest files in the .NET ecosystem, retrieving both direct and transitive dependencies defined in these files.
For more information, see Supported Ecosystems in the Code Insight User Guide.