chore: Bump version to 1.67.0

semgrep · Mar 28, 2024 · 31a42ec · 31a42ec
1 parent 0db46ad
commit 31a42ec
Show file tree

Hide file tree

Showing 9 changed files with 46 additions and 28 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,6 +6,47 @@
 
 <!-- insertion point -->
 
+## [1.67.0](https://github.com/returntocorp/semgrep/releases/tag/v1.67.0) - 2024-03-28
+
+
+### Added
+
+
+- `--historical-secrets` flag for running Semgrep Secrets regex rules on git
+  history (requires Semgrep Secrets). This flag is not yet implemented for
+  `--experimental`. (scrt-531)
+
+
+### Changed
+
+
+- Files with the `.phtml` extension are now treated as PHP files. (gh-10009)
+- [IMPORTANT] Logged in users running `semgrep ci` will now run the pro engine by default! All `semgrep ci` scans will run with our proprietary languages (Apex and Elixir), as well as cross-function taint within a single file, and other single file pro optimizations we have developed. This is equivalent to `semgrep ci --pro-intrafile`. Users will likely see improved results if they are running `semgrep ci` and did not already have additional configuration to enable pro analysis.
+
+  The current default engine does not include cross-file analysis. To scan with cross-file analysis, turn on the app toggle or pass in the flag `--pro`. We recommend this unless you have very large repos (talk to our support to get help enabling cross-file analysis on monorepos!)
+
+  To revert back to our OSS analysis, pass the flag `--oss-only` (or use `--pro-languages` to continue to receive our proprietary languages).
+
+  Reminder: because we release first to our canary image, this change will only immediately affect you if you are using `semgrep/semgrep:canary`. If you are using `semgrep/semgrep:latest`, it will affect you when we bump canary to latest. (saf-845)
+
+
+### Fixed
+
+
+- Fixed a parsing error in Kotlin when there's a newline between the class name and the primary constructor.
+
+  This could not parse before
+
+  ```
+  class C
+  constructor(arg:Int){}
+  ```
+
+  because of the newline between the class name and the constructor.
+
+  Now it's fixed. (saf-899)
+
+
 ## [1.66.2](https://github.com/returntocorp/semgrep/releases/tag/v1.66.2) - 2024-03-26
 
 

diff --git a/changelog.d/gh-10009.changed b/changelog.d/gh-10009.changed
diff --git a/changelog.d/saf-845.changed b/changelog.d/saf-845.changed
diff --git a/changelog.d/saf-899.fixed b/changelog.d/saf-899.fixed
diff --git a/changelog.d/scrt-531.added b/changelog.d/scrt-531.added
diff --git a/cli/setup.py b/cli/setup.py
@@ -131,7 +131,7 @@ def find_executable(env_name, exec_name):
 
 setuptools.setup(
     name="semgrep",
-    version="1.66.2",
+    version="1.67.0",
     author="Semgrep Inc.",
     author_email="support@semgrep.com",
     description="Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.",

diff --git a/cli/src/semgrep/__init__.py b/cli/src/semgrep/__init__.py
@@ -1 +1 @@
-__VERSION__ = "1.66.2"
+__VERSION__ = "1.67.0"
diff --git a/setup.py b/setup.py
@@ -5,7 +5,7 @@
 
 setup(
     name="semgrep_pre_commit_package",
-    version="1.66.2",
-    install_requires=["semgrep==1.66.2"],
+    version="1.67.0",
+    install_requires=["semgrep==1.67.0"],
     packages=[],
 )
diff --git a/src/core/Version.ml b/src/core/Version.ml
@@ -3,4 +3,4 @@
 
   Automatically modified by scripts/release/bump.
 *)
-let version = "1.66.2"
+let version = "1.67.0"