CycloneDX
diff --git a/‎.github/ISSUE_TEMPLATE/1-feature.md‎
Lines changed: 4 additions & 4 deletions b/‎.github/ISSUE_TEMPLATE/1-feature.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/2-defect.md‎
Lines changed: 2 additions & 2 deletions b/‎.github/ISSUE_TEMPLATE/2-defect.md‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 4 additions & 4 deletions b/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.github/workflows/build_docs.yml‎
Lines changed: 11 additions & 8 deletions b/‎.github/workflows/build_docs.yml‎
Lines changed: 11 additions & 8 deletions
diff --git a/‎.github/workflows/test_java.yml‎
Lines changed: 5 additions & 2 deletions b/‎.github/workflows/test_java.yml‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎.github/workflows/test_js.yml‎
Lines changed: 8 additions & 4 deletions b/‎.github/workflows/test_js.yml‎
Lines changed: 8 additions & 4 deletions
diff --git a/‎.github/workflows/test_php.yml‎
Lines changed: 5 additions & 2 deletions b/‎.github/workflows/test_php.yml‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎.github/workflows/test_proto.yml‎
Lines changed: 4 additions & 1 deletion b/‎.github/workflows/test_proto.yml‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎README.md‎
Lines changed: 12 additions & 8 deletions b/‎README.md‎
Lines changed: 12 additions & 8 deletions
diff --git a/‎docgen/json/gen.sh‎
Lines changed: 1 addition & 0 deletions b/‎docgen/json/gen.sh‎
Lines changed: 1 addition & 0 deletions
@@ -1,13 +1,13 @@
 ---
 name: Feature request
-about: Request or propose a core enhancement or feature 
+about: Request or propose a core enhancement or feature
 title: "[FEATURE]: <your title here>"
 labels: proposed core enhancement
 
 ---
 
-<!-- 
-THank you for taking the time to file a feature request or core enhancement proposal 
+<!--
+Thank you for taking the time to file a feature request or core enhancement proposal.
 -->
 
 ## Describe the feature
@@ -18,7 +18,7 @@ Please include scopes and out-of-scopes.
 
 ## Possible solutions
 
-Do you have asolution in mind> Please describe.
+Do you have a solution in mind? Please describe.
 What is to be considdered? Any draw-backs?
 
 ## Alternatives
 
@@ -6,8 +6,8 @@ labels: defect
 
 ---
 
-<!-- 
-THank you for taking the time to file a report.  
+<!--
+Thank you for taking the time to file a report.
 -->
 
 ## Describe the defect
 
@@ -3,9 +3,9 @@ contact_links:
   - name: Discussions
     url: https://github.com/CycloneDX/specification/discussions
     about: Please ask and answer questions here.
-  - name: Community slack support channel
+  - name: Community Slack support channel
     url: https://cyclonedx.slack.com/archives/CVA0G10FN
-    about: Community slack channel.
-  - name: Community slack invite
+    about: Community Slack channel.
+  - name: Community Slack invite
     url: https://cyclonedx.org/slack/invite
-    about: Community slack invite.
+    about: Community Slack invite.
@@ -9,6 +9,9 @@ on:
 env:
   PYTHON_VERSION_DEFAULT: "3.10"
 
+# https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
+permissions: {}
+
 jobs:
   docs_xml:
     runs-on: ubuntu-latest
@@ -18,10 +21,10 @@ jobs:
     steps:
     - name: Checkout
       # see https://github.com/actions/checkout
-      uses: actions/checkout@v4
+      uses: actions/checkout@v5
     - name: Set up JDK
       # see https://github.com/actions/setup-java
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: '21'
         distribution: 'zulu'
@@ -30,7 +33,7 @@ jobs:
       run: ./gen.sh
     - name: Archive Schema documentation
       # https://github.com/actions/upload-artifact
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: XML-Schema-documentation
         path: docgen/xml/docs
@@ -43,18 +46,18 @@ jobs:
     steps:
     - name: Checkout
       # see https://github.com/actions/checkout
-      uses: actions/checkout@v4
+      uses: actions/checkout@v5
     - name: Setup Python Environment
       # see https://github.com/actions/setup-python
-      uses: actions/setup-python@v5
+      uses: actions/setup-python@v6
       with:
         python-version: ${{ env.PYTHON_VERSION_DEFAULT }}
         architecture: 'x64'
     - name: Generate Schema documentation
       run: ./gen.sh
     - name: Archive Schema documentation
       # https://github.com/actions/upload-artifact
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: JSON-Schema-documentation
         path: docgen/json/docs
@@ -67,12 +70,12 @@ jobs:
     steps:
     - name: Checkout
       # see https://github.com/actions/checkout
-      uses: actions/checkout@v4
+      uses: actions/checkout@v5
     - name: Generate Schema documentation
       run: ./gen.sh
     - name: Archive Schema documentation
       # https://github.com/actions/upload-artifact
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: PROTO-Schema-documentation
         path: docgen/proto/docs
 
@@ -14,16 +14,19 @@ defaults:
   run:
     working-directory: tools
 
+# https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
+permissions: {}
+
 jobs:
   test:
     runs-on: ubuntu-latest
     steps:
     - name: Checkout
       # see https://github.com/actions/checkout
-      uses: actions/checkout@v4
+      uses: actions/checkout@v5
     - name: Set up JDK
       # see https://github.com/actions/setup-java
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: '8'
         distribution: 'zulu'
 
@@ -16,20 +16,24 @@ defaults:
   run:
     working-directory: tools/src/test/js
 
+# https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
+permissions: {}
+
 jobs:
   test:
     timeout-minutes: 30
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
         # see https://github.com/actions/checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Setup Node.js
         # see https://github.com/actions/setup-node
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
-          node-version: '20.x'
-      - name: Install Depenencies
+          node-version: '24.x'
+          package-manager-cache: false
+      - name: Install Dependencies
         run: npm install
       - name: Run test 
         run: npm test
@@ -16,19 +16,22 @@ defaults:
   run:
     working-directory: tools/src/test/php
 
+# https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
+permissions: {}
+
 jobs:
   test:
     timeout-minutes: 30
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
         # see https://github.com/actions/checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Setup PHP
         # see https://github.com/shivammathur/setup-php
         uses: shivammathur/setup-php@v2
         with:
-          php-version: "8.1"
+          php-version: "8.4"
           tools: composer:v2
       - name: Install Depenencies
         run: composer install
 
@@ -16,13 +16,16 @@ defaults:
   run:
     working-directory: tools/src/test/proto
 
+# https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
+permissions: {}
+
 jobs:
   test:
     timeout-minutes: 30
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
         # see https://github.com/actions/checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Run test
         run: ./test.sh
@@ -1,17 +1,20 @@
-[![Build Docs](https://github.com/CycloneDX/specification/actions/workflows/build_docs.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/build_docs.yml)
-[![CT Java](https://github.com/CycloneDX/specification/actions/workflows/test_java.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_java.yml)
-[![CT JavaScript](https://github.com/CycloneDX/specification/actions/workflows/test_js.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_js.yml)
-[![CT PHP](https://github.com/CycloneDX/specification/actions/workflows/test_php.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_php.yml)
-[![CT ProtoBuf](https://github.com/CycloneDX/specification/actions/workflows/test_proto.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_proto.yml)  
+
+# CycloneDX Bill of Materials Specification (ECMA-424)
+
 [![License][license-image]][license-url]
+[![ECMA TC54](https://img.shields.io/badge/ECMA-TC54-FC7C00?labelColor=404040)](https://tc54.org) 
 [![Website](https://img.shields.io/badge/https://-cyclonedx.org-blue.svg)](https://cyclonedx.org/)
 [![Slack Invite](https://img.shields.io/badge/Slack-Join-blue?logo=slack&labelColor=393939)](https://cyclonedx.org/slack/invite)
 [![Group Discussion](https://img.shields.io/badge/discussion-groups.io-blue.svg)](https://groups.io/g/CycloneDX)
-[![Twitter](https://img.shields.io/twitter/url/http/shields.io.svg?style=social&label=Follow)](https://twitter.com/CycloneDX_Spec)
-[![ECMA TC54](https://img.shields.io/badge/ECMA-TC54-FC7C00?labelColor=404040)](https://tc54.org)
+[![Twitter](https://img.shields.io/twitter/url/http/shields.io.svg?style=social&label=Follow)](https://twitter.com/CycloneDX_Spec)  
+[![Build Docs](https://github.com/CycloneDX/specification/actions/workflows/build_docs.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/build_docs.yml)
+[![CT Java](https://github.com/CycloneDX/specification/actions/workflows/test_java.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_java.yml)
+[![CT JavaScript](https://github.com/CycloneDX/specification/actions/workflows/test_js.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_js.yml)
+[![CT PHP](https://github.com/CycloneDX/specification/actions/workflows/test_php.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_php.yml)
+[![CT ProtoBuf](https://github.com/CycloneDX/specification/actions/workflows/test_proto.yml/badge.svg)](https://github.com/CycloneDX/specification/actions/workflows/test_proto.yml)    
 
+----
 
-# CycloneDX Bill of Materials Specification (ECMA-424)
 OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for 
 cyber risk reduction. CycloneDX is an [Ecma International](https://ecma-international.org/) standard published as 
 [ECMA-424](https://ecma-international.org/publications-and-standards/standards/ecma-424/). 
@@ -74,6 +77,7 @@ Alternatively, files that match the glob pattern below are also recognized:
 
 | Version           | Release Date    |
 |-------------------|-----------------|
+| CycloneDX 1.7     | 21 October 2025 |
 | CycloneDX 1.6     | 09 April 2024   |
 | CycloneDX 1.5     | 26 June 2023    |
 | CycloneDX 1.4     | 12 January 2022 |
 
@@ -2,6 +2,7 @@
 set -eu
 
 declare -a CDX_VERSIONS=(
+  '1.7'
   '1.6'
   '1.5'
   '1.4'
-Original file line number
+Diff line change
 set -eu
 declare -a CDX_VERSIONS=(
 +  '1.7'
   '1.6'
   '1.5'
   '1.4'