Skip to content

oauthlint 0.8.0 — code frames and a bounded scan engine

Latest
Latest

Choose a tag to compare

View all tags
@Mauriceanney Mauriceanney released this 29 Jun 17:40
· 2 commits to main since this release
oauthlint@0.8.0
c2fe8f8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Added

  • Print a code frame under each finding in pretty output, with a line-number gutter and a caret under the matched span; disable with --no-code-frame (#67).
  • Export the SemgrepAdapter timeoutMs and maxOutputBytes options (both off by default) so the MCP server can reuse the scan engine with bounded resources (#65).

Fixed

  • Fix the intermittent exit code 13 from oauthlint list on Node 22 (#64).

Security

  • Reject non-http(s) documentation URLs in the HTML report (--format html), blocking a javascript: URL injected by a custom rule (#64).

Docs: https://oauthlint.dev/docs/cli · Full changelog: https://github.com/Auspeo/oauthlint/compare/oauthlint@0.7.1...oauthlint@0.8.0

Assets 2
Loading