Releases: Bearer/bearer
Releases · Bearer/bearer
v0.22.0
Changelog
- 1913f8e chore(deps): bump docker/setup-qemu-action from 1 to 2 (#323)
- 52fee1e chore(deps): bump github.com/go-git/go-git/v5 from 5.5.1 to 5.5.2 (#342)
- 6e9de91 chore(deps): bump github.com/open-policy-agent/opa from 0.47.3 to 0.47.4 (#324)
- 005343d chore(deps): bump github.com/schollz/progressbar/v3 from 3.12.2 to 3.13.0 (#340)
- 210a550 chore(deps): bump golang.org/x/oauth2 from 0.3.0 to 0.4.0 (#339)
- b09fc30 chore(deps): bump google.golang.org/api from 0.105.0 to 0.106.0 (#341)
- 82b89a6 chore(deps): bump liquidjs and @11ty/eleventy in /docs (#315)
- a5ff604 chore(deps): bump luxon from 3.1.1 to 3.2.1 in /docs (#351)
- d70efdf chore: Update dependabot.yml (#347)
- d09331a chore: debug brew publish
- b479ae0 ci: add discord announce to goreleaser config (#386)
- f83f735 ci: add docker login (#394)
- f421b2b ci: add missing env for ghcr (#392)
- 2087e63 ci: add missing login for ghcr (#390)
- 0413c58 ci: go releaser refactor (#355)
- fcaad31 doc(readme): update typo
- 795d07e feat(doc): Update message for policy with detailed context (#356)
- cc92f9d feat(doc): improve message when report dataflow is suggested (#373)
- 1d92154 feat(policies): Add support for secret leaks (#350)
- fd7aeb8 feat(recipes): add exclusion patterns when wildcard is used (#372)
- b926704 feat: Extend Ruby file custom detector to cover IO.open (#325)
- bdaf5fd feat: Support installation via the most common Linux package managers (#338)
- 1c23f93 feat: add curio ascii logo using ansi escape codes (#376)
- 2d63f2b feat: add dirs for loading custom detectors and policies (#322)
- bab0ef6 feat: enhance policy report for detailed context (#357)
- 474e064 fix: Do not report leakage policy breaches for unique identifiers (#326)
- 4eacf08 fix: Do not report policy breaches for encrypted Rails cookies (#333)
- 4b6a260 fix: Hide --workers CLI option and configuration file key (#327)
- 554a73e fix: Only reuse cached detections if the cached run completed (#348)
- e22109c fix: validate policy display IDs in policy options (#345)
Release v0.21.1
What's Changed
- fix: use correct archives for brew by @cfabianski in #321
Full Changelog: v0.21.0...v0.21.1
Release v0.21.0
What's Changed
- chore: publish docker by @cfabianski in #312
- chore: use qemu to release by @cfabianski in #313
- feat: Do not visit Git-ignored files by @spdawson in #309
- docs: update datatype generation to handle parents by @markmichon in #307
- chore: separate publish and release process by @cfabianski in #314
- feat: Use encrypted_ column prefix to mark SQL detections encrypted by @spdawson in #302
- fix: keep existing release by @cfabianski in #320
Full Changelog: v0.20.1...v0.21.0
v0.20.1
What's Changed
- docs: updating README.md by @gmontard in #260
- chore: make install script work by @cfabianski in #265
- doc: remove license for now by @cfabianski in #267
- doc: remove warning from readme by @cfabianski in #268
- docs: fix policy id slugs for anchor links by @markmichon in #269
- docs: remove install warning from quickstart by @markmichon in #270
- fix: Temp file path on Linux is missing separator by @spdawson in #271
- chore: separate integration and unit tests by @cfabianski in #272
- chore: Add a wrapper script for running the tests by @spdawson in #275
- chore: fix typo for devise and improve test coverage by @cfabianski in #273
- feat: add homebrew tap by @cfabianski in #282
- docs: remove financial data from type list by @markmichon in #277
- feat: Add database information to policies report placeholder output by @spdawson in #274
- feat: harden integration tests by @vjerci in #276
- docs: add scan video to readme by @markmichon in #299
- chore(deps): bump goreleaser/goreleaser-action from 3 to 4 by @dependabot in #287
- chore(deps): bump google.golang.org/api from 0.103.0 to 0.105.0 by @dependabot in #288
- chore(deps): bump github.com/zricethezav/gitleaks/v8 from 8.15.1 to 8.15.2 by @dependabot in #293
- chore(deps): bump golang.org/x/net from 0.2.0 to 0.4.0 by @dependabot in #289
- chore(deps): bump github.com/open-policy-agent/opa from 0.46.1 to 0.47.3 by @dependabot in #290
- chore(deps): bump golang.org/x/oauth2 from 0.2.0 to 0.3.0 by @dependabot in #291
- chore(deps): bump github.com/schollz/progressbar/v3 from 3.12.1 to 3.12.2 by @dependabot in #292
- fix: Password reported by application-level encryption policy by @spdawson in #295
- feat: add static compilation flag to release by @vjerci in #298
- fix: Improve policy placeholder for empty scan results by @spdawson in #304
- feat: AMA-3307-fix-scan-usage-showing-on-error-vjeran by @vjerci in #305
- docs: update quickstart and readme w/ homebrew by @markmichon in #300
- docs: remove blocking from docs and set up sitemap by @markmichon in #301
New Contributors
Full Changelog: v0.19.0...v0.20.1
Release v0.19.0
What's Changed
- docs: update policy names, descriptions, doc output, and fix IDs by @markmichon in #251
- fix: update policy link by @elsapet in #255
- fix: Disable policy report entirely unless Ruby language detected by @spdawson in #262
- fix(policies): Update severity for CR-021 by @elsapet in #261
- feat: run integration tests with binary by @vjerci in #250
- feat(scan): cache and reuse the latest report to produce the dataflow… by @cfabianski in #243
- feat: Add external service count to policies report placeholder output by @spdawson in #259
- fix: fix bad flag examples by @elsapet in #263
- fix(policies): Expand encryption detectors by @elsapet in #264
Full Changelog: v0.18.0...v0.19.0
Release v0.18.0
What's Changed
- docs: add supported language page to docs by @markmichon in #253
- docs: clean up theme styles by @markmichon in #252
- fix(policies): update filtering to use policy display IDs by @elsapet in #254
- chore: limit time spent on Tests by @cfabianski in #256
- fix: add test for policy flags by @elsapet in #257
- feat: Consolation message for codebases where no policies supported by @spdawson in #258
Full Changelog: v0.17.0...v0.18.0
Release v0.17.0
Release v0.16.0
What's Changed
- chore: Re-order option groups in CLI scan help output by @spdawson in #240
- feat(policies): add password encryption policy by @elsapet in #215
- docs: quickstart rewrite by @markmichon in #235
- docs: remove mention of financial data by @markmichon in #233
- docs: theme updates by @markmichon in #232
- fix: update help copy by @markmichon in #231
- chore: show rule pattern when omit_parent is true by @cfabianski in #245
- fix: dont show config load when no config given by @gotbadger in #242
- fix: rename "Sensitive personal data" to "Personal Data (Sensitive)" by @elsapet in #248
- feat: improve scan progress logs by @gotbadger in #246
Full Changelog: v0.15.5...v0.16.0
Release v0.15.5
What's Changed
- chore: Rename policy breach -> policy failure by @spdawson in #239
- fix: ensure ids are added to detections for policy reports by @didroe in #241
Full Changelog: v0.15.4...v0.15.5
Release v0.15.4
What's Changed
- fix: Include correct indentation in first line of policy breach context by @spdawson in #237
- fix: performance on large repositories by @cfabianski in #220
- chore: sign darwin binaries by @cfabianski in #238
Full Changelog: v0.15.3...v0.15.4