Releases: securesauce/precli
Releases · securesauce/precli
0.3.14
What's Changed
- Keep SARIF output as minimal as possible by @ericwb in #333
- Create a code of conduct by @ericwb in #334
- Create a security policy by @ericwb in #335
- Bump softprops/action-gh-release from 1 to 2 by @dependabot in #336
- Add more details to README by @ericwb in #337
- Skip build for changes to README by @ericwb in #338
- Add new rule to check for no context being passed to FTP_TLS by @ericwb in #346
- Use guards instead of nested if conditionals by @ericwb in #347
- Add new rule to check for no context being passed to IMAP4_SSL by @ericwb in #348
- Reorganize the paths of the testcases and examples by @ericwb in #349
- Add new rule to check for context=None in nntp.starttls or NNTP_SSL by @ericwb in #350
- Add new rule to check for context=None in stls or POP3_SSL by @ericwb in #351
- Add new rule to check for context=None in smtp.starttls or SMTP_SSL by @ericwb in #352
- Add rule on argparse to check for an argument of password by @ericwb in #353
- Rename function to be more clear by @ericwb in #355
- Add new rule for secrets insufficient token length by @ericwb in #356
- Add secrets_weak_token to rules table by @ericwb in #357
- Change category name to insufficient_token_length by @ericwb in #358
- Refactor the docs by @ericwb in #359
- More consistent naming of docs by @ericwb in #360
- Add logo to README by @ericwb in #361
- Drop support of Windows by @ericwb in #363
- New rule for socket based unrestricted bind by @ericwb in #362
- Add rule for socketserver unrestricted bind by @ericwb in #364
- SocketServer doc needs example and refs for socketserver by @ericwb in #365
- Add new rule for http.server unrestricted bind by @ericwb in #366
- Nit: rename file for consistency by @ericwb in #367
- Add rule for xmlrpc.server unrestricted bind by @ericwb in #368
- Fix wrong examples in docstring of xmlrpc by @ericwb in #369
- Add new rule to detect regex denial-of-service patterns by @ericwb in #372
Full Changelog: 0.3.13...0.3.14
Contributors
ericwb and dependabot
Assets 4
0.3.13
What's Changed
- Add security-severity property to sarif rules by @ericwb in #323
- Rename tool name to Precaution by @ericwb in #324
- Fix the schema version to not be the uri by @ericwb in #325
- security severity should be str not float by @ericwb in #326
- Switch docs to use mkdocs by @ericwb in #327
- Nit: use single ticks not double by @ericwb in #328
- Add rule descriptions to SARIF output by @ericwb in #329
- Better short and long rule descriptions by @ericwb in #330
- Add help text and markdown for rule by @ericwb in #331
- Clean up the description text for rules by @ericwb in #332
Full Changelog: 0.3.12...0.3.13
Contributors
ericwb
Assets 4
0.3.12
0.3.11
0.3.10
0.3.9
0.3.8
What's Changed
- Slight refactoring of symtab and base parser by @ericwb in #309
- Rework how a typed parameter is handled by @ericwb in #311
- Finish up the assert rule by @ericwb in #312
- Add assert rule to docs by @ericwb in #313
- Add assert rule to doc table by @ericwb in #314
- Fix up the output to adhere to SARIF schema by @ericwb in #316
Full Changelog: 0.3.7...0.3.8
Contributors
ericwb
Assets 4
0.3.7
Contributors
ericwb
Assets 4
0.3.6
0.3.5
What's Changed
- New renderer to output in markdown format by @ericwb in #291
- Use rich console capture of printed text by @ericwb in #292
- Add an output to a file CLI argument by @ericwb in #294
- Fix up the renderer outputs by @ericwb in #295
- Add option to output the results to Gist by @ericwb in #297
- Fix traceback on unsupported files by @ericwb in #299
- Add more details to getting started in README by @ericwb in #300
- Fix traceback when parsing with without as by @ericwb in #302
Full Changelog: 0.3.4...0.3.5
Contributors
ericwb