Skip to content

Releases: stacscan/stacs-ci

Green Fern

04 Mar 21:29
@darkarnium darkarnium
0.1.6
24bcbf5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Green Fern Latest
Marketplace
Latest
Marketplace

Overview

Upgrades to the latest STACS container. See the STACS release notes for the new version for a list of changes in this container. Only changes to STACS-CI will be included below.

🛠️ New Features

  • N/A

🍩 Improvements

  • N/A

🐛 Bug Fixes

  • N/A
Assets 2
Loading

Violet Fern

18 Jan 00:02
@darkarnium darkarnium
0.1.5
6f9e490
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Violet Fern
Marketplace
Marketplace

Overview

PLEASE NOTE: There is a potentially breaking change as part of this update, as the Stripe rule has been relocated under SaaS. This modifies its reference to now be CredentialSaaSStripeAPI. Any previously suppressed findings for this rule will need to be updated to reflect this new identifier.

🛠️ New Features

  • Upgrade to the latest STACS rules, which includes new rules for
    • PyPI Token
    • Slack Token
      • User (xoxp-...)
      • Bot (xoxb-...)
    • NPM
      • authToken
      • password
    • PKCS#12 / PFX
    • DER format RSA keys.
      • Detects keys with exponents 3 / 65537, and modulous sizes 64 / 128 / 256 / 512 / 1024.

🍩 Improvements

  • Minor changes to AWS rule.
  • Simplify matching criteria for a number of rules.

🐛 Bug Fixes

  • N/A
Assets 2
Loading

Orange Fern

11 Jan 01:48
@darkarnium darkarnium
0.1.4
ac4801d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Orange Fern
Marketplace
Marketplace

Overview

🛠️ New Features

  • N/A

🍩 Improvements

  • Pulls in latest STACS rules (r57ce3ce).

🐛 Bug Fixes

  • Fix off-by-one edge case which caused Github pull-request annotation to fail.
    • This was triggered when a new file was added in a pull-request containing a credential on the first line.
Assets 2
Loading

Blue Fern

10 Jan 23:34
@darkarnium darkarnium
0.1.3
26c83f8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Blue Fern
Marketplace
Marketplace

Overview

🛠️ New Features

🍩 Improvements

  • Tweak to STACS-CI deployment pipeline to simplify testing prior to release.

🐛 Bug Fixes

  • N/A
Assets 2
Loading

Red Fern

07 Jan 19:17
@darkarnium darkarnium
0.1.2
dbbb869
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Red Fern
Marketplace
Marketplace

Overview

🛠️ New Features

🍩 Improvements

  • N/A

🐛 Bug Fixes

  • N/A
Assets 2
Loading

Purple Fern

04 Jan 15:06
@darkarnium darkarnium
0.1.1
ef98df6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Purple Fern
Marketplace
Marketplace

Overview

🛠️ New Features

🍩 Improvements

  • N/A

🐛 Bug Fixes

  • Ensures that file with the finding appears in the change set.
    • This prevents attempts to add a review comment for a file which is already in the target branch.
    • In these cases a comment will be added instead.
Assets 2
Loading

Yellow Fern

02 Jan 16:00
@darkarnium darkarnium
0.1.0
c5ee46b
Compare
Choose a tag to compare
Yellow Fern
Marketplace
Marketplace

Overview

Initial release of STACS CI Integrations.

🛠️ New Features

  • Github Actions

    • Fails the build on unsuppressed findings.
    • Automatically annotates pull requests with findings.
    • Automatically loads suppressions from a stacs.ignore.json in the root of the repository.

  • Generic CI Systems

    • Fails the build on unsuppressed findings.
    • Outputs findings to the console in formatted plain-text.
    • Automatically loads suppressions from a stacs.ignore.json in the scan directory.

🍩 Improvements

  • N/A

🐛 Bug Fixes

  • N/A
Assets 2
Loading