In this new version we had the separation of the repositories between the horusec web platform and the CLI to see more details see the article published on the zup blog.
In this new version, in addition to the code migration, we implemented some new features:
- Only possible vulnerabilities of the type
Vulnerabilitywill be presented in the output, if you want to view other types such asFalse Positive,Risk Accepted, among others just use the new option:show-vulnerabilities-types; - We have updated the hash generation to contain the author of the commit, it may happen that some pipelines are blocked due to vulnerabilities, just update the hashes in your configuration file or if you are using only the dealings via the web application just run the migration in your environment.
- We removed some options that were depreciated, such as:
- Ignore tool using the
tools-ignoreflag;- Remembering that you can still ignore security tools using the
horusecCliToolsConfigconfiguration file option;
- Remembering that you can still ignore security tools using the
- Create a
filter-pathdirectory filter;
- Ignore tool using the
- We fixed some bugs in the option
workDirandcommitAuthors.