·
4 commits
to refs/heads/master
since this release
Changes
- feat: detect + link pathfinding.cloud privilege-escalation paths (37 new detections) @kmcquade (#584)
- feat: enrich example dataset for a high-quality demo report + lock fixtures in sync @kmcquade (#583)
- feat: pathfinding.cloud onboarding skill pipeline + safety tooling @kmcquade (#582)
- fix: detect AttachRolePolicy/PutRolePolicy/UpdateAssumeRolePolicy privesc without sts:AssumeRole @kmcquade (#581)
- use ubuntu-slim where possible @gruebel (#531)
- replace mypy with ty @gruebel (#515)
- add missing tests @gruebel (#505)
- replace make with just @gruebel (#503)
- use uv for docs build @gruebel (#502)
- migrate to uv @gruebel (#494)
- replace pre-commit with prek @gruebel (#493)
- drop Python 3.9 support @gruebel (#492)
🧰 Maintenance
⬆️ Dependencies
67 changes
- Bump idna from 3.13 to 3.15 @dependabot[bot] (#577)
- Bump pymdown-extensions from 10.21.2 to 10.21.3 @dependabot[bot] (#578)
- Bump qs and express @dependabot[bot] (#579)
- Bump extractions/setup-just from 3.1.0 to 4.0.0 @dependabot[bot] (#569)
- Bump release-drafter/release-drafter from 6.2.0 to 7.2.1 @dependabot[bot] (#573)
- Bump j178/prek-action from 1.1.1 to 2.0.3 @dependabot[bot] (#571)
- Update uv-build requirement from ~=0.10.0 to ~=0.11.0 in the uv group @dependabot[bot] (#574)
- Bump astral-sh/setup-uv from 8.0.0 to 8.1.0 @dependabot[bot] (#572)
- Bump @babel/plugin-transform-modules-systemjs from 7.29.0 to 7.29.4 @dependabot[bot] (#576)
- Bump fast-uri from 3.1.0 to 3.1.2 @dependabot[bot] (#575)
- Bump trufflesecurity/trufflehog from 3.94.2 to 3.95.2 @dependabot[bot] (#570)
- Bump pytest from 9.0.2 to 9.0.3 @dependabot[bot] (#567)
- Bump follow-redirects from 1.15.11 to 1.16.0 @dependabot[bot] (#568)
- Bump node-forge from 1.3.3 to 1.4.0 @dependabot[bot] (#555)
- Bump pygments from 2.19.2 to 2.20.0 @dependabot[bot] (#559)
- Bump cryptography from 46.0.5 to 46.0.7 @dependabot[bot] (#566)
- Bump lodash from 4.17.23 to 4.18.1 @dependabot[bot] (#565)
- Bump actions/setup-node from 6.2.0 to 6.3.0 @dependabot[bot] (#561)
- Bump minimatch from 3.1.2 to 3.1.5 @dependabot[bot] (#544)
- Bump requests from 2.32.5 to 2.33.0 @dependabot[bot] (#552)
- Bump svgo from 2.8.0 to 2.8.2 @dependabot[bot] (#549)
- Bump flatted from 3.3.3 to 3.4.2 @dependabot[bot] (#550)
- Bump astral-sh/setup-uv from 7.3.0 to 8.0.0 @dependabot[bot] (#562)
- Bump picomatch from 2.3.1 to 2.3.2 @dependabot[bot] (#551)
- Bump trufflesecurity/trufflehog from 3.93.4 to 3.94.2 @dependabot[bot] (#564)
- Bump yaml @dependabot[bot] (#553)
- Bump extractions/setup-just from 3.0.0 to 3.1.0 @dependabot[bot] (#547)
- update dependencies @gruebel (#545)
- Bump trufflesecurity/trufflehog from 3.92.4 to 3.93.4 @dependabot[bot] (#541)
- Bump astral-sh/setup-uv from 7.1.6 to 7.3.0 @dependabot[bot] (#542)
- Bump j178/prek-action from 1.1.0 to 1.1.1 @dependabot[bot] (#543)
- Bump qs from 6.14.1 to 6.14.2 @dependabot[bot] (#539)
- upgrade uv and ruff @gruebel (#540)
- Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 @dependabot[bot] (#535)
- Bump cryptography from 46.0.4 to 46.0.5 @dependabot[bot] (#538)
- Bump actions/setup-node from 6.1.0 to 6.2.0 @dependabot[bot] (#534)
- Bump release-drafter/release-drafter from 6.1.0 to 6.2.0 @dependabot[bot] (#533)
- Bump actions/checkout from 6.0.1 to 6.0.2 @dependabot[bot] (#536)
- Bump actions/setup-python from 6.1.0 to 6.2.0 @dependabot[bot] (#532)
- update prek to v0.3 and replace boto3-stubs @gruebel (#530)
- update more JS deps and remove markdown/html loader @gruebel (#529)
- upgrade vue to v3 @gruebel (#528)
- Bump urllib3 from 2.6.2 to 2.6.3 @dependabot[bot] (#526)
- Bump werkzeug from 3.1.4 to 3.1.5 @dependabot[bot] (#527)
- Bump lodash from 4.17.21 to 4.17.23 @dependabot[bot] (#525)
- Bump filelock from 3.20.1 to 3.20.3 @dependabot[bot] (#524)
- Bump the uv group with 6 updates @dependabot[bot] (#522)
- Bump astral-sh/setup-uv from 7.1.4 to 7.1.6 @dependabot[bot] (#519)
- Bump peter-evans/create-pull-request from 7.0.9 to 8.0.0 @dependabot[bot] (#517)
- Bump trufflesecurity/trufflehog from 3.91.1 to 3.92.4 @dependabot[bot] (#518)
- Bump actions/setup-node from 6.0.0 to 6.1.0 @dependabot[bot] (#520)
- Bump actions/checkout from 6.0.0 to 6.0.1 @dependabot[bot] (#521)
- Bump the uv group across 1 directory with 2 updates @dependabot[bot] (#516)
- Bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 @dependabot[bot] (#510)
- Bump express from 4.21.1 to 4.22.1 @dependabot[bot] (#514)
- Bump actions/setup-python from 6.0.0 to 6.1.0 @dependabot[bot] (#512)
- Bump trufflesecurity/trufflehog from 3.90.12 to 3.91.1 @dependabot[bot] (#509)
- Bump actions/checkout from 5.0.0 to 6.0.0 @dependabot[bot] (#508)
- Bump astral-sh/setup-uv from 7.1.2 to 7.1.4 @dependabot[bot] (#511)
- Bump js-yaml from 3.14.1 to 3.14.2 @dependabot[bot] (#506)
- Bump trufflesecurity/trufflehog from 3.90.11 to 3.90.12 @dependabot[bot] (#500)
- Bump astral-sh/setup-uv from 7.1.1 to 7.1.2 @dependabot[bot] (#499)
- Bump the uv group with 2 updates @dependabot[bot] (#498)
- Bump trufflesecurity/trufflehog from 3.90.8 to 3.90.11 @dependabot[bot] (#496)
- Bump astral-sh/setup-uv from 7.1.0 to 7.1.1 @dependabot[bot] (#495)
- Bump actions/setup-node from 5.0.0 to 6.0.0 @dependabot[bot] (#497)
- drop node 18 and 22 support @gruebel (#491)
Contributors
kmcquade and gruebel