v0.9.0
What's Changed
Tool Improvements
- Add --min-file-level flag to filter out results for uninteresting files by @tstromberg in #112
- terminal output: revert reverse risk sorting by @tstromberg in #86
- Reduce noisy logging messages by @tstromberg in #117
- fix: update usage message by @willswire in #90
Rule Improvements
- Update to YARA Forge Rule Set Release 20240407 by @tstromberg in #108
- Detect __tls_get_addr (xzutils) & avasa-zombie remnants by @tstromberg in #85
- Tune rules based on avasa-zombie analysis by @tstromberg in #84
- Tune rules based on ctop v0.7.7 analysis by @tstromberg in #114
- Tune rules based on rook analysis by @tstromberg in #116
- Reduce "HIGH" rule hits based on initial Wolfi analysis by @tstromberg in #118
- Fix typo by @mattmoor in #113
Development Improvements
- Add
--verbose
flag, hide INFO log messages from stderr by default by @tstromberg in #109 - Fix the top level tests, fix a typo in the name. by @vaikas in #98
- Refactor so that testdata samples are in their own namespace by @tstromberg in #110
- Remove executable bit from samples by @tstromberg in #111
- Add "make lint" rule and golangci-lint config by @tstromberg in #87
- Run gofumpt on Go code by @tstromberg in #88
- Refactor, add tests. by @vaikas in #91
- Add gha for tests, dependabot. Fixes #28, #97. by @vaikas in #100
- add boilerplates and ci jobs for lint by @cpanato in #102
- add chainguard source by @cpanato in #103
- Bump golang.org/x/term from 0.18.0 to 0.19.0 by @dependabot in #101
- Move to clog, plumb context through as necessary. by @vaikas in #104
- Makefile: add 'update-yaraforge' rule by @tstromberg in #105
- Add .wokeignore for third_party code by @tstromberg in #107
New Contributors
- @willswire made their first contribution in #90
- @vaikas made their first contribution in #98
- @cpanato made their first contribution in #102
- @dependabot made their first contribution in #101
Full Changelog: v0.8.0...v0.9.0