ZupIT/horusec v2.9.0-rc.1

on GitHub

Changelog

Features

• 5efcc7a: java:feature - Add Rule for CVE-2022-21724 (#1033) (@wiliansilvazup)
• d309b63: docs:feat - Security Policies (#1052) (@lucasbrunozup)
• e5a7fd0: rules:feat - adding rule to spring framework rce (#1053) (@nathanmartinszup)
• 602e40a: roadmap:feat - Public Roadmap (#1055) (@wiliansilvazup)

Bug fixes

• 3b6822c: sarif:bugfix - removing version prefix (#1019) (@nathanmartinszup)
• f6bfb74: goreleaser:bugfix - adding release auto (#1027) (@nathanmartinszup)
• dcdcdf8: utils/file:fix - missing {HORUSEC_CLI} prefix and typo on log debug (#1025) (@matheusalcantarazup)
• f4d13a6: docker:fix - missing image name on debug log (#1026) (@matheusalcantarazup)
• 4ff44db: horusec:fix - Errors reported in v2.8.0-beta.1 (#1050) (@wiliansilvazup)
• 39d4c9c: analyzer:fix - Fixing details wrong (#1054) (@wiliansilvazup)

Hotfixes

• 8fb0125: e2e:hotfix - Fixing problems on e2e and github files (#1084) (@wiliansilvazup)

Chores

• d1be5f9: formatters:chore - normalize not found files warn message (#1023) (@matheusalcantarazup)
• 358fd4a: formatters/ruby:chore - removing unnecessary error messages (#1024) (@nathanmartinszup)
• a3efede: csharp:chore - Improvements on safe and unsafe code in csharp (#1037) (@wiliansilvazup)
• 71b07db: dart:chore - Adding improvements on dart rules (#1038) (@wiliansilvazup)
• 630a870: javascript::chore - Adding improvements on javascript rules (#1043) (@wiliansilvazup)
• 7e5a606: k8s:chore - Adding improvements on k8s rules (#1039) (@wiliansilvazup)
• ae78215: leaks:chore - Adding improvements on leaks rules (#1040) (@wiliansilvazup)
• 6184e55: swift:chore - Adding improvements on swift rules (#1042) (@wiliansilvazup)
• 08734c1: nginx:chore - Adding improvements on nginx rules (#1041) (@wiliansilvazup)
• 6fa62e4: custom_rules:chore - Refactored tests for custom_rules to table tests (#1049) (@Adam88morris)
• 2d9d7e7: java:chore - Adding improvements on Java Rules (#1048) (@wiliansilvazup)

Others

• 940debf: scs: bugfix - att outdated chsharp sdk on horusec-engine-csharp (#1022) (@iancardosozup)
• c7af3b3: This commit implements vulnerable and safe samples for the javascript rules. (#1051) (@lucasbrunozup)
• 38d249d: Increased all XXE severities in Java Rules to High (#1056) (@gustavomarinhozup)
• 68a999b: Added CAPEC and CWE to Clipboard findings (#1060) (@gustavomarinhozup)
• a8aab11: feat:deps - Update dependancy files (#1085) (@wiliansilvazup)
• 00bcca1: fixing pipeline (@guilhermepaulozup)
• 2101949: fixing build pipeline (@guilhermepaulozup)
• b532d4b: fixing releases pipelines (@guilhermepaulozup)
• c38d1c5: fixing release-alpha pipeline (@guilhermepaulozup)
• f807fde: fixing releases pipelines (@guilhermepaulozup)

Docker images

• docker pull horuszup/horusec-cli:v2.9.0-rc.1

Full Changelog: v2.8.0-rc.1...v2.9.0-rc.1