Releases: stacscan/stacs
Releases · stacscan/stacs
Burning Cavern
Overview
Minor fixes to handle edge-cases in ZIP handling, as well as adding support for more archive types 🎉
🛠️ New Features
- Support for
iso
,rpm
, and7z
archive types - vialibarchive
.
🍩 Improvements
- N/A
🐛 Bug Fixes
- Gracefully handle encrypted ZIPs and ZIPs with invalid members.
Blood Moon
🛠️ New Features
- N/A
🍩 Improvements
- Moving
stacs
tostacs.scan
for improved interoperability with other STACS components.
🐛 Bug Fixes
- A few non-impacting updates to docstrings
Wind Mountain
Thunder Mountain
🛠️ New Features
- Recursive archive scanning (
tar
,gz
,xz
,bz2
,zip
formats).- Based on identified file formats, rather than file suffix.
- Able to support formats based on these types - such as
apk
,jar
, etc.
- Composable ignore lists.
- Composable from local files.
- Composable rule packs.
- Composable from local files.
- SARIF format output.
- 20-byte "Context" for findings.
- Provides information about lines / bytes before and after the finding.
- CLI support.
- Docker container support.
- Scan results are sent to
STDOUT
and log messages toSTDERR
.
- Scan results are sent to
🍩 Improvements
- N/A
🐛 Bug Fixes
- Fixes binary context encoding issue during SARIF output.