Releases: Bearer/bearer
Releases · Bearer/bearer
Release v0.12.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 5032b69 chore: update snapshots (#192)
- a9f52d4 feat(policies): expand data category grouping structure (#194)
- fcea3bb feat: Ruby policy for insecure FTP when sensitive data is processed (#193)
- ffcb0b1 feat: Ruby policy for insecure communication (SSL not enforced) (#187)
- 0174c2c feat: some config fields are not loading (#185)
- 9b4e1f9 fix(policies): improve sensitive data check (#191)
- aa131b7 fix: pluralize category groups (#196)
Release v0.11.1
What's Changed
- feat(policies): add support for SSL verification disabled by @elsapet in #189
- chore: address random failures by @cfabianski in #190
Full Changelog: v0.11.0...v0.11.1
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
Contributors
cfabianski and elsapet
Assets 7
Release v0.11.0
What's Changed
- fix(temp): remove parents from report by @elsapet in #186
- feat: Policy for Rails insecure SMTP communication by @spdawson in #181
- feat: policy for sending data in HTTP GET requests by @didroe in #188
- docs: autogenerate data type docs by @markmichon in #183
- fix: use parent from the location not from the datatype by @cfabianski in #184
Full Changelog: v0.10.0...v0.11.0
Contributors
cfabianski, spdawson, and 3 other contributors
Assets 7
Release v0.10.0
What's Changed
- feat: add support for variable reconciliation by @vjerci in #174
- feat(policies): add rails sessions policy by @elsapet in #173
- docs: theme updates & revamped nav by @markmichon in #178
- feat(policies): initial Rails JWT leaks by @elsapet in #182
- refactor: merge rails and ruby logger detector by @cfabianski in #180
Full Changelog: v0.9.0...v0.10.0
Contributors
cfabianski, markmichon, and 2 other contributors
Assets 7
Release v0.9.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 4564134 chore: Run classifier for schema detections (#165)
- 01d7aa3 feat(policies): return exit status 1 when policy breaches have been detected (#169)
- 16c548b feat: add net http rule (#172)
- d5a6e41 fix(report): fix filename for dataflow report (#171)
- fd22b9f fix: Use full file paths in dataflow report (#175)
- 9cf39d2 refactor: remove ellipsis support from Ruby (#176)
Release v0.8.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 595b59b chore: clean up curio from Operations (#163)
- 989fdcb chore: excerpt investigation (#162)
- 4f3d2cc chore: improve battle tests (#159)
- b9c4f0e feat(policies): add summary with counts to policy report (#168)
- 8ee6c95 feat(policies): disable color in policy report when writing to file (#170)
- 10e2312 feat(policies): display policy breaches in tabulated form (#158)
- b4e7fa9 feat(policies): group policy breaches by severity (#156)
- 977b62f feat(policies): include code excerpt in policy breach display (#164)
- ea8b692 feat: add support for ellipsis (#167)
- 80b550f feat: application level encryption (#157)
- ff51229 feat: write policy for application level missing encryption (#166)
- 9437d97 fix(policies): policy determines severity of policy breach (#152)
- 9a46bff fix: fix battle test workflow (#160)
- 8f47958 fix: fix battle tests workflow (#161)
Release v0.7.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 644b7ff chore: improve dataflow report for component (#151)
- 67e0bd9 chore: include yaml option to struct (#154)
- 9b47154 docs(chore): update readme links (#150)
- cf4e966 feat: Add UUIDs to recipes and include these in the report (#148)
- f7fc96a feat: Backport remaining framework classifiers from Bearer Rails app (#155)
- 6a9e591 feat: Include classified frameworks in dataflow report (#153)
Release v0.6.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 2e4f676 chore(deps): bump docker/login-action from 1 to 2 (#144)
- 480c6a6 chore(deps): bump github.com/zricethezav/gitleaks/v8 from 8.15.0 to 8.15.1 (#145)
- 088f307 chore: clean up and add data category UUID to data type (#141)
- bf05dfe feat: stop exporting object-level data types (#147)
- 22b891c chore(deps): bump docker/build-push-action from 2 to 3 (#143)
- 553f23e chore(deps): bump github.com/go-enry/go-enry/v2 from 2.8.2 to 2.8.3 (#137)
- a045eb8 chore(deps): bump github.com/schollz/progressbar/v3 from 3.11.0 to 3.12.1 (#140)
- 9450210 chore(deps): bump github.com/spf13/viper from 1.13.0 to 1.14.0 (#138)
- 5ab99fb chore(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#136)
- 8cd06ea chore(deps): bump github.com/zricethezav/gitleaks/v8 from 8.13.0 to 8.15.0 (#139)
- ec1175e chore(deps): bump golang.org/x/mod from 0.6.0 to 0.7.0 (#135)
- 2d41350 chore(deps): bump mathieudutour/github-tag-action from 6.0 to 6.1 (#134)
- 21f31c0 chore: More minor output stream consolidation (#122)
- fe84ae0 chore: add license.txt (#130)
- 5d0dbc5 chore: make concurrent number dynamic (#149)
- 4ebe3cd ci: add dependabot to the project (#131)
- 0ab09c1 feat(classification): backport Ruby and C# test cases and KPIs (#101)
- 94d7c7e feat(policies): add policy flags to CLI (#129)
- aecc710 feat(policies): add risk severity via data category (#124)
- 7067247 feat: Backport Rails framework classification (#133)
- f6780b2 feat: implement battle tests (#128)
- 8be0e07 feat: implement rego from dataflow (#123)
- 7e097a2 fix(classification): include classification errors as debug rather than report errors (#146)
Release v0.5.0
What's Changed
- fix: update classification patterns by @elsapet in #120
- feat: add status output by @cfabianski in #110
Full Changelog: v0.4.0...v0.5.0
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
Contributors
cfabianski and elsapet
Assets 7
Release v0.3.1
What's Changed
🚀 Features
🎄 Enhancements
🎠 Community
New Contributors
Code Diff
Changelog
- 34e6e26 ci(docs): fix site output dir (#96)
- d576866 ci(docs): working dir fix (#95)
- 1d6247f fix(classification): add data type to classification (#91)
- cba816b fix(detectors): handle arrays when checking for openapi and swagger (#87)
- b483eb7 fix(detectors): handle dirs that are not dirs for dotnet (#88)
- 3931e8d fix: Omit Commit SHA from detection output when empty (#92)
- 3d6b474 fix: correct handling of ./ scan target prefix (#93)
- 610e056 fix: typo ouput -> output (#89)