v1.24.0

Changelog

• 3adeffd chore: generate stable rule indices (#1286)
• 088e299 feat(javascript): improve as_expression support (#1287)
• a684dcc fix: disabling of rules using comments (#1284)
• def5f02 fix: reporting of unsupported languages (#1285)
• 4f9beb1 fix: show warning when unsupported languages are detected (#1271)

v1.23.1

Changelog

• 44d7ebd chore(deps): bump aws-actions/configure-aws-credentials from 3 to 4
• 7388513 chore(deps): bump docker/build-push-action from 4 to 5
• 8e5b171 chore(deps): bump docker/login-action from 2 to 3
• ae1e52c chore(deps): bump goreleaser/goreleaser-action from 4 to 5
• 21480a5 fix: issue where in some cases messages where written as part of output (#1279)

v1.23.0

Highlights

• Improved scanning process - this should help with memory issues and overall speed when scanning larger files #1206
• Improved version check and rule downloading - we no longer depend directly on the GitHub API, so this should fix rate limiting issues experienced by some users #1249
• For our cloud users, ignored findings are now uploaded so, they can be managed centrally. See the updated documentation for more information

Changelog

• cb56309 build(notarization): fix osx build failures (#1270)
• 835ca7e chore(deps): bump actions/checkout from 3 to 4 (#1251)
• a91913f chore(deps): bump golang.org/x/net from 0.14.0 to 0.15.0 (#1253)
• caad6bf chore(deps): bump golang.org/x/oauth2 from 0.11.0 to 0.12.0 (#1252)
• b68a392 chore: update binary help message (#1263)
• a096d3a feat: improve version check and rule download cache (#1249)
• 1472058 feat: move log level and debug flags to General (#1257)
• dd34532 feat: send ignored findings to cloud (#1194)
• d047766 fix: add new line to ignore pull messaging (#1268)
• 99c28a3 fix: add toString to js reflexive calls (#1277)
• 3665a73 fix: bearer ignore path when target is a file (#1260)
• bf59e80 fix: default ignore file value (#1269)
• 08da11c fix: hide stale ignore fingerprint warning when running diff scan (#1243)
• b7318ce fix: ignore commands no default file value (#1266)
• 153ea3d fix: ignoring of minified files (#1265)
• 011f6b8 fix: nil client segfault (#1258)
• 9810c01 fix: send status for new ignore file additions (#1267)
• 2c6da6c fix: show cloud notices for any report (#1255)
• 058d751 fix: stale ignores json key (#1262)
• c7c31f8 fix: use local ignores for first scan (#1259)
• 5e0772d perf: remove tree sitter walking (#1206)

v1.22.0

Changelog

• 5966b0b chore(deps): bump github.com/open-policy-agent/opa from 0.55.0 to 0.56.0 (#1238)
• e81aa6b chore(deps): bump github.com/shirou/gopsutil/v3 from 3.23.7 to 3.23.8 (#1239)
• db3b73e feat: add false positive status to bearer ignores (#1233)
• d723dbb feat: add severity computation details (#1195)
• dc4adbc fix: report failure data was incorrect (#1240)

v1.21.0

Highlights

• After user feedback we have improved ignoring findings run bearer ignore to find out more.
• Fixed a long standing bug where the exit code was not set correctly for some report formats. You can override this fixed behaviour using --exit-code=0 if needed.

Changelog

• 57bacfd chore(deps): bump aws-actions/configure-aws-credentials from 2 to 3 (#1214)
• 4ce64d4 chore(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1 (#1216)
• 4678aef chore(deps): bump github.com/zricethezav/gitleaks/v8 from 8.17.0 to 8.18.0 (#1215)
• 9ff5985 feat: add CSV format flag (#1208)
• a21804b feat: add ignore command (#1180)
• 063492b feat: add ignore remove command (#1221)
• d88b1de feat: add path flag for ignore file (#1213)
• 7d3a1b4 feat: check command docs are up to date (#1219)
• 31f75f7 feat: improve ux of add ignore command (#1227)
• e674387 feat: read from config file for ignore migrate (#1223)
• e1d001a feat: show all ignores (#1220)
• 2e4159c fix: add remove subcommand to ignore usage (#1225)
• 911c5c1 fix: bearer-ignore-flag not loaded for scan (#1222)
• 1601958 fix: handle empty list to scan for orchestrator (#1209)
• 2df8353 fix: ignore command CLI interface (#1211)
• 06b5f95 fix: ignore show --all formatting (#1226)
• f024b67 fix: improve output from ignore commands (#1212)
• a8d6567 fix: increase log level for getMeta related functions (#1197)
• 0c3429a fix: privacy formatter (#1224)
• 653d64c fix: remove cold from flu patterns (#1193)
• f5975b1 fix: report passed not being calculated correctly (#1187)
• 5073de8 fix: saas file list (#1188)
• e51e018 refactor: extract report data object and formatters (#1202)

v1.19.2

Changelog

• 4408f5e fix: hashing of scanners in scan id (#1186)

v1.19.1

Changelog

• b093a94 chore(deps): bump github.com/go-git/go-git/v5 from 5.7.0 to 5.8.1 (#1176)
• 7e98f5f chore(deps): bump github.com/shirou/gopsutil/v3 from 3.23.6 to 3.23.7 (#1175)
• 5927aa1 chore(deps): bump golang.org/x/net from 0.12.0 to 0.14.0 (#1177)
• f710723 fix: fixes from testing diff scan (#1181)
• 1428548 fix: support github authentication (#1179)
• a8d2ecb fix: use correct base in diff (#1178)

v1.19.0

Changelog

• 1aab99d feat: memory soft limit (#1171)
• 7cf44b7 fix: listing of files in sass report (#1174)

v1.18.0

Changelog

• 3aa17a6 chore(deps): bump github.com/go-git/go-git/v5 from 5.8.0 to 5.8.1 (#1151)
• 46ef8f9 chore(deps): bump github.com/hhatto/gocloc from 0.5.0 to 0.5.1 (#1154)
• 056d8a3 chore(deps): bump github.com/open-policy-agent/opa from 0.54.0 to 0.55.0 (#1153)
• 2c11eba chore(deps): bump github.com/rs/zerolog from 1.29.1 to 1.30.0 (#1152)
• 3d9ebac chore: update detector type when classification (#1149)
• 48bae74 docs(rules): fix broken source link (#1165)
• 489f454 docs(rules): update rules page (#1157)
• 02ce920 feat(output): show outdated fingerprints (#1147)
• 6c36304 feat: add flag to ignore report failures (#1145)
• 2fa6faa feat: add sign-up link to report output (#1159)
• e756629 feat: base branch diff (#1158)
• 8ff548f feat: show rule count per language (#1156)
• f8c0e00 fix: fetching and checkout of base branch (#1167)
• cd3e7ec fix: honor quiet flag in diff logic (#1168)
• f7f1dad fix: repository lookup errors and diff git file scanning (#1163)
• fed0bea fix: typo in sign up url in security report message (#1161)

v1.17.0

Changelog

• 56a6919 chore(deps): bump actions/upload-pages-artifact from 1 to 2 (#1124)
• 3618d59 chore(deps): bump github.com/dustin/go-humanize from 1.0.0 to 1.0.1 (#1115)
• 327b83f chore(deps): bump github.com/go-git/go-git/v5 from 5.7.0 to 5.8.0 (#1138)
• 997099e chore(deps): bump github.com/weppos/publicsuffix-go from 0.30.0 to 0.30.1 (#1123)
• 6017ffa chore(deps): bump golang.org/x/mod from 0.11.0 to 0.12.0 (#1117)
• 4eae0c6 feat(output): add fingerprints info (#1143)
• e96d808 feat: improve code extract to be consistent (#1137)
• f3f96fa feat: improve local development (#1142)
• b075a89 feat: scan profiling (#1112)
• 032af85 feat: show warnings in html summary (#1140)
• 917da47 fix: improve memory usage (#1113)
• fc5f2e3 fix: missing cached data warning for security and privacy reports (#1121)
• a4b6b5a fix: respect gitignore syntax in skip-path (#1134)
• d76fd1f fix: update telephone classification (#1139)
• 0401ded perf: use a single tree sitter query per language (#1141)