chore: Bump version to 1.70.0

CHANGELOG.md

@@ -6,6 +6,56 @@
 
 <!-- insertion point -->
 
+## [1.70.0](https://github.com/returntocorp/semgrep/releases/tag/v1.70.0) - 2024-04-24
+
+
+### Added
+
+
+- Added guidance for resolving API token issues in CI environments. (gh-10133)
+- The osemgrep show command supports 2 new options: `dump-ast` `dump-pattern`.
+  See `osemgrep show --help` for more information. (osemgrep_show)
+- Added additional output flags which allow you to write output to multiple files in multiple formats.
+
+  For example, the comand `semgrep ci --text --json-output=result.json --sarif-output=result.sarif.json`
+  Displays text output on stdout, writes the output that would be generated by passing the `--json` flag
+  to `result.json`, and writes the output that would be generated by passing the `--sarif` to `result.sarif.json`. (saf-341)
+- Added an experimental feature for users to use osemgrep to format
+  SARIF output.
+
+  When both the flags --sarif and --use-osemgrep-sarif are specified,
+  semgrep will use the ocaml implementation to format SARIF.
+
+  This flag is experimental and can be removed any time. Users must not
+  rely on it being available. (saf-978)
+
+
+### Changed
+
+
+- The main regex engine is now PCRE2 (was PCRE). While the syntax is mostly
+  compatible, there are some minor instances where updates to rules may be
+  needed, since PCRE2 is slightly more strict in some cases. For example, while
+  we previously accepted `[\w-.]`, such a pattern would now need to be written
+  `[\w.-]` or `[\w\-.]` since PCRE2 rejects the first as having an invalid range. (scrt-467)
+
+
+### Fixed
+
+
+- Semgrep LS now waits longer for users to login (gh-10109)
+- When semgrep ci finishes scanning and uploads findings, it tells the
+  app to mark the scan as completed.
+
+  For large findings, this may take a while and marking the scan as
+  completed may timeout. When a scan is not marked as completed, the app
+  may show that the repo is still processing, and confuses the user.
+
+  This change increases the timeout (previously 20 minutes) to 30
+  minutes. (saf-980)
+- Fix `semgrep ci --oss-only` when secrets product is enabled. (scrt-223)
+
+
 ## [1.69.0](https://github.com/returntocorp/semgrep/releases/tag/v1.69.0) - 2024-04-16
 
 

cli/setup.py

@@ -135,7 +135,7 @@ def find_executable(env_name, exec_name):
 
 setuptools.setup(
     name="semgrep",
-    version="1.69.0",
+    version="1.70.0",
     author="Semgrep Inc.",
     author_email="support@semgrep.com",
     description="Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.",

cli/src/semgrep/__init__.py

@@ -1 +1 @@
-__VERSION__ = "1.69.0"
+__VERSION__ = "1.70.0"

dune-project

@@ -3,7 +3,7 @@
 (using menhir 2.1)
 
 ; set here so the semgrep package below can use it and we can easily bump it
-(version 1.69.0)
+(version 1.70.0)
 ; disable mangling of of workspace root, to preserve debugging information
 ; needed to support earlybird debugger
 ; See https://dune.readthedocs.io/en/stable/dune-files.html#map-workspace-root

setup.py

@@ -5,7 +5,7 @@
 
 setup(
     name="semgrep_pre_commit_package",
-    version="1.69.0",
-    install_requires=["semgrep==1.69.0"],
+    version="1.70.0",
+    install_requires=["semgrep==1.70.0"],
     packages=[],
 )

src/core/Version.ml

@@ -3,4 +3,4 @@
 
   Automatically modified by scripts/release/bump.
 *)
-let version = "1.69.0"
+let version = "1.70.0"