What's Changed
🚓 Security Scanner
- Upgraded gitleaks from v8.29.0 to v8.30.0 @secureCodeBoxBot (#3383, #3394)
- Upgraded nuclei from v3.5.1 to v3.6.0 @secureCodeBoxBot (#3405)
- Upgraded semgrep from 1.143.0 to 1.145.0 @secureCodeBoxBot (#3382, #3404)
- Upgraded subfinder from v2.10.0 to v2.10.1 @secureCodeBoxBot (#3386)
- Upgraded trivy from 0.67.2 to 0.68.1 @secureCodeBoxBot (#3402)
- Upgraded trivy-sbom from 0.67.2 to 0.68.1 @secureCodeBoxBot (#3403)
🐛 Bug Fixes
- Fixes Incompatability with newer Elasticsearch Systems by @conleth in #3391
- Fix secret name in helm template by @yyvfuruta in #3340
📚 Documentation
- Add Link to Blog Post "Automating Penetration Testing with SecureCodeBox on Kubernetes Kind Clusters Using GitHub Actions" by Yasmine Gharbi in #3395
📌 Dependencies
Minor dependency updates (18 pull requests). Click to expand.
- Update dependency helm/helm to v3.19.2 by @renovate[bot] in #3362
- Bump the npm-version-updates group in /documentation with 3 updates by @dependabot[bot] in #3387
- Bump @types/node from 24.10.0 to 24.10.1 in /hook-sdk/nodejs in the npm-version-updates group across 1 directory by @dependabot[bot] in #3388
- Bump the github-actions-version-updates group across 1 directory with 5 updates by @dependabot[bot] in #3389
- Bump the gradle-version-updates group across 1 directory with 2 updates by @dependabot[bot] in #3390
- Update dependency helm-unittest/helm-unittest to v1.0.3 by @renovate[bot] in #3270
- Bump @types/react from 19.2.6 to 19.2.7 in /documentation in the npm-version-updates group by @dependabot[bot] in #3396
- Bump the github-actions-version-updates group across 1 directory with 4 updates by @dependabot[bot] in #3397
- Bump nodemailer from 7.0.7 to 7.0.11 in /hooks/notification/hook by @dependabot[bot] in #3399
- Update golang Docker tag to v1.25.5 by @renovate[bot] in #3400
- Update alpine Docker tag to v3.23 by @renovate[bot] in #3401
- Bump node-forge from 1.3.1 to 1.3.2 in /documentation in the npm-security-updates group across 1 directory by @dependabot[bot] in #3393
- Bump mdast-util-to-hast from 13.2.0 to 13.2.1 in /documentation in the npm-security-updates group across 1 directory by @dependabot[bot] in #3406
- Bump the npm-version-updates group in /documentation with 2 updates by @dependabot[bot] in #3407
- Bump the github-actions-version-updates group across 1 directory with 4 updates by @dependabot[bot] in #3409
- Bump org.sonarqube from 7.1.0.6387 to 7.2.0.6526 in /hooks/persistence-defectdojo/hook in the gradle-version-updates group by @dependabot[bot] in #3408
- Update dependency helm/helm to v4 by @renovate[bot] in #3363
- Update dependency kubernetes/kubernetes to v1.34.3 - autoclosed by @renovate[bot] in #3412
New Contributors
- @yyvfuruta made their first contribution in #3340
- @conleth made their first contribution in #3391
Full Changelog: v5.2.0...v5.3.0