Server Version 0.41.0

Changes in this Release

• New: User defined labels in scan configuration which are available in report
• Replaced sechub-sarif with sarif-java library
• Several smaller fixes and improvements
• Documentation improved

For more details please look at Milestone 83

Client Version 0.35.0

Changes in this Release

• improved exclude handling (when using data section, relative exclude pathes did not work)
• SecHub client now recognizes immediately when a job was cancelled on the server
• sechub-api.sh: Condensed output of server_status; it's now a table
• updated SecHub's sechub.json so it uses now data section

For more details please look at Milestone 78

OWASP-ZAP Wrapper Version 1.0.0

This is the first independent release of the OWASP-ZAP wrapper.
(Until now it was bundled with PDS releases.)

For more details please look at Milestone 84

Checkmarx Wrapper Version 1.0.0

This is the first independent release of the Checkmarx wrapper.
(Until now it was bundled with PDS releases.)

For more details please look at Milestone 85

Server Version 0.40.0

Changes in this Release

• LocalDateTime is now correctly handled by the JsonConverter in sechub-commons-model
• Improved output of jobs waiting when calling server_status
• Target audience was added to the Developer Quickstart Guide
• Replaced Objectmapper inside JsonConverter with JsonMapper
• Some minor changes on SecHub server implementation

For more details please look at Milestone 79

Server Version 0.39.1

Changes in this Release

• HTML reports from a secretscan now include details and call stack
• ResolveStrategy can now use a second strategy
• Some minor changes on SecHub server implementation

For more details please look at Milestone 82

Server Version 0.39.0

Changes in this Release:

• new features for uri resolver strategies:
  • new uri resolver strategy: "intranet-hostname-starts-with:" (#2017)
  • possibility to concatenate multiple strategies (#2018)
• S3 storage options added to SecHub server Helm chart
• the call hierarchy is now visible for type secretScan
• several smaller fixes and improvements
• documentation improved (especially the getting-started guide thanks to @expp121)

For more details please look at Milestone 81

PDS Version 0.36.0

Changes in this Release

• New ScanType secretScan has been implemented
• Some minor changes

For more details please look at Milestone 77

Server Version 0.38.0

Changes in this Release

• new scheduler policy introduced: OnlyOneScanPerProjectAndModuleGroupAtSameTimeStrategy
  This enables e.g. SAST and DAST scan jobs in parallel for the same SecHub project.
• cloc integration done (now statistics about uploaded code are available in db tables)
• S3 timeout settings are now configurable (helpful with unresponsive S3 servers)
• The Helm chart now works with Docker server images from sechub-solution
• The adapters for Nessus and Netsparker are now marked as deprecated and will be removed in future releases
• several smaller fixes and improvements
• documentation improved

For more details please look at Milestone 76

Client Version 0.34.0

Changes in this Release

• New action listJobs: Users now can list the recent scan jobs of their project:
  

• getStatus no more needs the -jobUUID parameter: it defaults to the latest job
  This is helpful for asynchronous scans.

• getReport no more needs the -jobUUID parameter: it defaults to the latest finished job

• The client now fully supports the ANT syntax for exclude pattern

• minor improvements (#1603, #1968)

• documentation updated (e.g. data section for code scans)

For more details please look at Milestone 68

New contributors

We welcome @jplewa as a new contributor. 🥇
Every contribution is very much appreciated!