v1.7.0

Tool Improvements

• Fix non-tar bz2 extractions by @egibs in #702
• Improve handling of nonexistent symlinks for extractions + programkind by @egibs in #709
• Fix prefix validation edge-case when extracting by @egibs in #715
• Add zlib support to extractGzip by @egibs in #713

Rule Improvements

• Update third-party rules as of 2024-12-12 by @octo-sts in #699
• Improve FontOnLake rule targetting by @tstromberg in #700
• Update third-party rules as of 2024-12-13 by @octo-sts in #703
• Update third-party rules as of 2024-12-16 by @octo-sts in #706
• Add more specific SVG rule by @egibs in #704
• Leverage yr scan --profile to tune slowest rules by @egibs in #708
• ELF malware detection improvements based on Wolfsbane analysis by @tstromberg in #680
• Tune HIGH/CRITICAL findings + disallow "clean" samples from matching by @tstromberg in #712
• Reduce Python CRITICAL false positives (setuptools, keylogger) by @tstromberg in #717
• Address CRITICAL ELF false-positives in trino, rust, and eza by @tstromberg in #718
• Address Sonarqube SonarAnalyzer.CSharp.dll finding by @tstromberg in #719
• Fix false-positives in http_parser.rb-0.8.0/ext/ruby_http_parser/vendor/http-parser/test.c by @tstromberg in #720

Developer Improvements

• Demote additional logs from Info to Debug by @egibs in #701
• Allow find-missing-metadata to be run from other directories by @tstromberg in #710
• Improve extracted archive file clean up by @egibs in #714
• build: reduce binary size by adding -s -w to ldflags by @chenrui333 in #716

New Contributors

• @chenrui333 made their first contribution in #716

Full Changelog: v1.6.0...v1.7.0