CycloneDX
diff --git a/‎.eslintignore
+6 b/‎.eslintignore
+6
diff --git a/‎HISTORY.md
+19 b/‎HISTORY.md
+19
diff --git a/‎README.md
+1 b/‎README.md
+1
diff --git a/‎examples/node/javascript/example.cjs
+1-1 b/‎examples/node/javascript/example.cjs
+1-1
diff --git a/‎examples/node/javascript/example.mjs
+1-1 b/‎examples/node/javascript/example.mjs
+1-1
diff --git a/‎examples/node/typescript/example.cjs/src/example.ts
+1-1 b/‎examples/node/typescript/example.cjs/src/example.ts
+1-1
diff --git a/‎examples/node/typescript/example.mjs/src/example.ts
+1-1 b/‎examples/node/typescript/example.mjs/src/example.ts
+1-1
diff --git a/‎examples/web/parcel/src/app.js
+1-1 b/‎examples/web/parcel/src/app.js
+1-1
diff --git a/‎examples/web/webpack/src/index.js
+1-1 b/‎examples/web/webpack/src/index.js
+1-1
diff --git a/‎res/schema/README.md
+4-2 b/‎res/schema/README.md
+4-2
diff --git a/‎res/schema/bom-1.5.SNAPSHOT.xsd
+1-1 b/‎res/schema/bom-1.5.SNAPSHOT.xsd
+1-1
@@ -5,10 +5,16 @@
 /dist/**
 /dist.*/**
 /docs/api/**
+/docs/_build/**
+/docs/.venv/**
 /examples/**/dist/**
 
 
 !/src/**
 !/libs/**
 
 !/tools/schema-downloader/**
+
+
+**/.idea/**
+**/.vscode/**
@@ -6,6 +6,25 @@ All notable changes to this project will be documented in this file.
 
 <!-- add unreleased items here -->
 
+Added support for [_CycloneDX_ Specification-1.6](https://github.com/CycloneDX/specification/releases/tag/1.6).
+
+* Changed
+  * Normalizers support _CycloneDX_ Specification-1.6 ([#1039] via [#1041])
+  * Validators support _CycloneDX_ Specification-1.6 ([#1039] via [#1041])
+* Added
+  * Existing `Enums` got the new members and values for _CycloneDX_ Specification-1.6 ([#1039] via [#1041])
+    * `Enums.ComponentType.CryptographicAsset`
+    * `Enums.ExternalReferenceType.SourceDistribution`
+    * `Enums.ExternalReferenceType.ElectronicSignature`
+    * `Enums.ExternalReferenceType.DigitalSignature`
+    * `Enums.ExternalReferenceType.RFC9116`
+  * Namespace `Spec` was enhanced for _CycloneDX_ Specification-1.6 ([#1039] via [#1041])
+    * `Spec.Spec1dot6`
+    * `Spec.Version.v1dot6`
+
+[#1039]: https://github.com/CycloneDX/cyclonedx-javascript-library/issues/1039
+[#1041]: https://github.com/CycloneDX/cyclonedx-javascript-library/pull/1041
+
 ## 6.4.2 -- 2024-03-21
 
 * Build
 
@@ -82,6 +82,7 @@ written in _TypeScript_ and compiled for the target.
 * Builders for the following use cases:
   * Specific to _Node.js_: create deep data models `Tool` or `Component` from PackageJson-like data structures
 * Implementation of the [_CycloneDX_ Specification][CycloneDX-spec] for the following versions:
+  * `1.6`
   * `1.5`
   * `1.4`
   * `1.3`
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -46,7 +46,7 @@ componentA.purl = purlFac.makeFromComponent(componentA)
 bom.components.add(componentA)
 bom.metadata.component.dependencies.add(componentA.bomRef)
 
-const serializeSpec = CDX.Spec.Spec1dot5
+const serializeSpec = CDX.Spec.Spec1dot6
 
 const jsonSerializer = new CDX.Serialize.JsonSerializer(
   new CDX.Serialize.JSON.Normalize.Factory(serializeSpec))
 
@@ -1,10 +1,10 @@
 # Resources: Schema files
 
 some schema for offline use as download via [script](../../tools/schema-downloader/download.js). 
-original sources: <https://github.com/CycloneDX/specification/blob/1.5>
+original sources: <https://github.com/CycloneDX/specification/blob/master>
 
 Currently using version
-[c320fc0f0b46873864927d9d5684eea7ba439728](https://github.com/CycloneDX/specification/commit/c320fc0f0b46873864927d9d5684eea7ba439728)
+[9899d5cb13e3f380cc35c36829525188472f5ce3](https://github.com/CycloneDX/specification/commit/9899d5cb13e3f380cc35c36829525188472f5ce3)
 
 | file | note |
 |------|------|
@@ -14,10 +14,12 @@ Currently using version
 | [`bom-1.3.SNAPSHOT.xsd`](bom-1.3.SNAPSHOT.xsd) | applied changes: 1 |
 | [`bom-1.4.SNAPSHOT.xsd`](bom-1.4.SNAPSHOT.xsd) | applied changes: 1 |
 | [`bom-1.5.SNAPSHOT.xsd`](bom-1.5.SNAPSHOT.xsd) | applied changes: 1 |
+| [`bom-1.6.SNAPSHOT.xsd`](bom-1.6.SNAPSHOT.xsd) | applied changes: 1 |
 | [`bom-1.2.SNAPSHOT.schema.json`](bom-1.2.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`bom-1.3.SNAPSHOT.schema.json`](bom-1.3.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`bom-1.4.SNAPSHOT.schema.json`](bom-1.4.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`bom-1.5.SNAPSHOT.schema.json`](bom-1.5.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
+| [`bom-1.6.SNAPSHOT.schema.json`](bom-1.6.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`bom-1.2-strict.SNAPSHOT.schema.json`](bom-1.2-strict.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`bom-1.3-strict.SNAPSHOT.schema.json`](bom-1.3-strict.SNAPSHOT.schema.json) | applied changes: 2,3,4,5 |
 | [`spdx.SNAPSHOT.xsd`](spdx.SNAPSHOT.xsd) | |
 
@@ -474,7 +474,7 @@ limitations under the License.
                     <xs:documentation>Specifies a description for the component</xs:documentation>
                 </xs:annotation>
             </xs:element>
-            <xs:element name="scope" type="bom:scope" minOccurs="0" maxOccurs="1">
+            <xs:element name="scope" type="bom:scope" minOccurs="0" maxOccurs="1" default="required">
                 <xs:annotation>
                     <xs:documentation>Specifies the scope of the component. If scope is not specified, 'required'
                         scope SHOULD be assumed by the consumer of the BOM.</xs:documentation>