Skip to content

3.1.12
Compare
Choose a tag to compare
@henrikplate henrikplate released this 27 May 13:07
· 861 commits to master since this release
3.1.12
bcd5105
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Improvements:

  • Added possibility to exempt vulnerabilities for individual libraries, and simplified the exemption format (#319)
  • Added new flag createLibraryAssessments to report goal in order to print curl commands to the console, which can be used to permanently mark libraries as non-vulnerable (#319)
  • Protected POST and PUT endpoints of the BugController by introducing the dedicated, configurable HTTP header X-Vulas-Client-Token (#380, #388)
  • Added new endpoint to get affected libraries by group and artifact identifier (#381)

Bug fixes:

  • Added @Transactional to two custom repository methods of rest-backend (#367, #375)
  • Excluded traces for constructs of type PACK and CLAS when computing the reachability flags for the vulnerability overview table (#378)
Assets 3
Loading