Releases: securesauce/precli
Releases · securesauce/precli
0.5.2
0.5.1
What's Changed
- Add Python requirement to install quick start by @ericwb in #428
- Add rule to use of Cookie with secure flag false by @ericwb in #430
- Fix broken link in rules table by @ericwb in #431
- Add Java rule for insecure java.net.HttpCookie by @ericwb in #432
- Increase size of banner logo by @ericwb in #433
- Create a nicer looking banner logo by @ericwb in #434
- Simplify the README content by @ericwb in #435
- README example with wrong path by @ericwb in #436
- Trim trailing space in README by @ericwb in #437
- Correct the paths given in getting start examples by @ericwb in #438
- Fix traceback raised on an expression list assignment by @ericwb in #439
Full Changelog: 0.5.0...0.5.1
Contributors
ericwb
Assets 4
0.5.0
What's Changed
- Create java parser and example rule with test by @ericwb in #414
- Add more tests for java weak cipher rule by @ericwb in #415
- Add rule for weak hashes in java.security by @ericwb in #416
- Small refactor to parsers by @ericwb in #417
- Make Call class more generic for all supported languages by @ericwb in #418
- Add new Java rule to check for a weak key by @ericwb in #419
- Fix collison in rule wildcards by @ericwb in #420
- Create sub-symbol tables on class and method declaration by @ericwb in #421
- Add more symbol tables for other declarations by @ericwb in #422
- Go and Java docs should have similar headers as Python by @ericwb in #423
- Add rule for detection of weak random algorithm in SecureRandom by @ericwb in #424
- Don't break code with suggested fix by @ericwb in #425
- Weak hash and weak random Java rules need to guard from none by @ericwb in #426
- Handle method calls with field access by @ericwb in #427
Full Changelog: 0.4.6...0.5.0
Contributors
ericwb
Assets 4
0.4.6
0.4.5
0.4.4
What's Changed
- Do update check only if git target or gist output by @ericwb in #401
- Add dependabot checks for PyPI packages by @ericwb in #402
- Add suggested fixes for the hashlib weak hash rule by @ericwb in #403
- Add suggested fixes for weak hashes in hmac function by @ericwb in #404
- Fix traceback from usage of importlib.import_module by @ericwb in #406
- Fix for IndexError in an expression list assignment by @ericwb in #408
Full Changelog: 0.4.3...0.4.4
Contributors
ericwb
Assets 4
0.4.3
What's Changed
- Rule to check for insufficient key size to HMAC by @ericwb in #390
- Small edit to hmac weak key doc by @ericwb in #391
- Fix for cases of a reassignment of a variable by @ericwb in #392
- Correct invalid examples for hmac timing attack by @ericwb in #393
- Add rule to check for improper random generator usage by @ericwb in #394
- Bump tree-sitter to version 0.21.3 by @ericwb in #395
- Check for no action passed in argparse rule by @ericwb in #396
Full Changelog: 0.4.2...0.4.3
Contributors
ericwb
Assets 4
0.4.2
0.4.1
What's Changed
- Embed the copyright as part of the package by @ericwb in #374
- Add --api_key checked in the CLI args by @ericwb in #375
- Check for api-key not api_key by @ericwb in #376
- Pin the dependencies in requirements.txt by @ericwb in #377
- Fix so preignore properly ignores tests by @ericwb in #378
- IgnoreFilterManager always requires relative path by @ericwb in #379
- Add ability to process a byte string value by @ericwb in #380
- Add md5-sha1 to list of hashlib algorithms by @ericwb in #383
- Ensure the tests import hashlib by @ericwb in #385
- Put tokens into a separate module by @ericwb in #386
- More progress indicators by @ericwb in #387
- Distinguish betwen strings and attributes by @ericwb in #388
Full Changelog: 0.4.0...0.4.1
Contributors
ericwb