Add changelog for v4.14.1

docs/_posts/2026-04-03-v4.14.1.md

@@ -0,0 +1,81 @@
+---
+title: v4.14.1
+type: patch
+---
+
+**Features:**
+
+* Add support for NuGet versioning scheme - [apiserver/#5958]
+* Add support for Composer versioning scheme - [apiserver/#5963]
+* Document age and version distance operational policy criteria - [apiserver/#5964]
+* Use ecosystem-aware version comparison for latest version detection - [apiserver/#5995]
+* Support Sonatype Guide tokens for OSS Index analyzer - [apiserver/#5996]
+* Improve Chinese translations - [frontend/#1490]
+
+**Fixes:**
+
+* Fix PURL-specific version matching being bypassed for components with CPE - [apiserver/#5959]
+* Fix wasteful existence queries - [apiserver/#5960]
+* Fix potentially wrong version being used for CPE comparison - [apiserver/#5962]
+* Fix scheduled notification query failing when ID columns are not of type BIGINT - [apiserver/#5979]
+* Avoid NPE when computing Trivy pkgType - [apiserver/#5987]
+* Remove leading whitespace from vulnerability badge SVG template - [apiserver/#6000]
+* Fix Japanese Trivy analyzer strings - [frontend/#1489]
+
+For a complete list of changes, refer to the respective GitHub milestones:
+
+* [API server milestone 4.14.1](https://github.com/DependencyTrack/dependency-track/milestone/50?closed=1)
+* [Frontend milestone 4.14.1](https://github.com/DependencyTrack/frontend/milestone/35?closed=1)
+
+We thank all organizations and individuals who contributed to this release, from logging issues to taking part in discussions on GitHub & Slack to testing of fixes.
+
+Special thanks to everyone who contributed code to implement enhancements and fix defects:
+
+[@Zureno], [@jonbally], [@retanoj], [@shayFoo], [@stohrendorf]
+
+###### dependency-track-apiserver.jar
+
+| Algorithm | Checksum |
+|:----------|:---------|
+| SHA-1     | TBD      |
+| SHA-256   | TBD      |
+
+###### dependency-track-bundled.jar
+
+| Algorithm | Checksum |
+|:----------|:---------|
+| SHA-1     | TBD      |
+| SHA-256   | TBD      |
+
+###### frontend-dist.zip
+
+| Algorithm | Checksum                                                         |
+|:----------|:-----------------------------------------------------------------|
+| SHA-1     | a08b4280aad4e9946908ca6fd05e1fbc0ad0f1af                         |
+| SHA-256   | e13d9b729d2082fcfb440bc1deb6f373290d1ead414447d8834368b4dbceec27 |
+
+###### Software Bill of Materials (SBOM)
+
+* API Server: [bom.json](https://github.com/DependencyTrack/dependency-track/releases/download/4.14.1/bom.json)
+* Frontend: [bom.json](https://github.com/DependencyTrack/frontend/releases/download/4.14.1/bom.json)
+
+[apiserver/#5958]: https://github.com/DependencyTrack/dependency-track/pull/5958
+[apiserver/#5959]: https://github.com/DependencyTrack/dependency-track/pull/5959
+[apiserver/#5960]: https://github.com/DependencyTrack/dependency-track/pull/5960
+[apiserver/#5962]: https://github.com/DependencyTrack/dependency-track/pull/5962
+[apiserver/#5963]: https://github.com/DependencyTrack/dependency-track/pull/5963
+[apiserver/#5964]: https://github.com/DependencyTrack/dependency-track/pull/5964
+[apiserver/#5979]: https://github.com/DependencyTrack/dependency-track/pull/5979
+[apiserver/#5987]: https://github.com/DependencyTrack/dependency-track/pull/5987
+[apiserver/#5995]: https://github.com/DependencyTrack/dependency-track/pull/5995
+[apiserver/#5996]: https://github.com/DependencyTrack/dependency-track/pull/5996
+[apiserver/#6000]: https://github.com/DependencyTrack/dependency-track/pull/6000
+
+[frontend/#1489]: https://github.com/DependencyTrack/frontend/pull/1489
+[frontend/#1490]: https://github.com/DependencyTrack/frontend/pull/1490
+
+[@Zureno]: https://github.com/Zureno
+[@jonbally]: https://github.com/jonbally
+[@retanoj]: https://github.com/retanoj
+[@shayFoo]: https://github.com/shayFoo
+[@stohrendorf]: https://github.com/stohrendorf