-
Notifications
You must be signed in to change notification settings - Fork 2
Changelog
This page mirrors the project's CHANGELOG.md. For the definitive version history, refer to the main repository file.
Release Date: March 2, 2026
-
Performance Architecture (Phase 2):
- Shared components library (
shared_components/audit_common.py, 2,195 lines) - Intelligent caching with ~50% hit rate across modules
- Parallel module execution (
--parallel,--workers) - Direct /proc filesystem reads; dynamic module discovery from
modules/ - OS-aware functionality (Debian, Red Hat, SUSE, Arch families)
- Performance profiling via
--profile
- Shared components library (
-
Structured Logging (Phase 3.1):
-
logs/directory with hostname-stamped filenames -
--log-level,--log-file,--json-log,--verbose,--quiet - Hybrid
log_and_print()for simultaneous console/file output
-
-
Interactive HTML Report Rewrite (Phase 3.2):
- SVG donut chart, compliance matrix, remediation priority ranking
- Column resizing, in-column filtering, column visibility toggles
- Global search (include/exclude), multi-format export (CSV/Excel/JSON/XML/TXT)
- Row selection, print CSS, Table of Contents, dark/light theme, Garamond typography
-
Compliance Scoring (Phase 3.5):
-
ComplianceScoredataclass: simple, weighted, severity-adjusted methods - Configurable threshold (default 70%), per-module and overall scores
-
-
Dashboard Filtering (Enhancement 1):
- Clickable donut segments, summary cards, severity cards filter all tables
-
IP Address Identification (Enhancement 2):
-
get_system_ip_addresses()with 4 detection methods - Displayed in HTML, console, JSON, XML
-
- Project structure: flat →
modules/+shared_components/+logs/+reports/ - Python 3.6 → 3.7 (dataclasses); check count validated at 1,207
- HTML report: complete rewrite (18+ features); companion JSON auto-generated
See the full CHANGELOG.md for version 1.1 and 1.0 history.
Linux Security Audit Project - Version 3.9 - MIT License
Repository - Releases - Issues - Pull Requests
Changelog - Contributing - Security Policy - License
Frameworks: Core - CIS - CISA - ENISA - ISO 27001 - NIST - NSA - STIG - ACSC - CMMC - DistBaseline - EDR - GDPR - HIPAA - PCI-DSS - SOC2
Coverage: 16 Modules - 2,297 Automated Security Checks - 5 Native Output Formats - Zero External Dependencies
This documentation reflects Linux Security Audit Project v3.9 (cross-framework remediation consistency via the canonical remediation registry, PCI-DSS module rename, compliance-scoring fix, attack-surface assessment, per-framework split reports, cross-module correlation, 18 distribution profiles, rollup metrics, OS-aware remediation library). For older versions, see the release tags.
Version 3.9 - 16 modules - 2,297 checks
Original modules (v2.0 baseline + v3.3 expansion)
Core - CIS - CISA - ENISA - ISO 27001 - NIST - NSA - STIG
New modules (v3.0+ Phase 3)
ACSC - CMMC - DistBaseline - EDR - GDPR - HIPAA - PCI-DSS - SOC2
Output Formats
HTML - JSON - CSV - XML - Console
Status Values
Pass - Fail - Warning - Info - Error
Severity Levels
Critical - High - Medium - Low - Informational