Skip to content

Releases: zmaril/Straitjacket

v0.2.3

Choose a tag to compare

@github-actions github-actions released this 04 Jul 12:11
525acc7

Fixed

  • duplication in Markdown now honours straitjacket-allow markers too. A clone inside a doc's fenced code block carries a :<lang> tag on its source id (e.g. docs.md:bash), so the finding's path wasn't a real file — the suppression added in 0.2.2 couldn't open it and the marker was ignored. The :<lang> tag is now stripped, which also tidies the reported path.

Install: curl -fsSL https://raw.githubusercontent.com/zmaril/straitjacket/main/install.sh | sh

Full changelog: v0.2.2...v0.2.3

v0.2.2

Choose a tag to compare

@github-actions github-actions released this 04 Jul 11:25
f72132d

Fixed

  • duplication findings now honour straitjacket-allow markers. The cross-file copy/paste pass runs separately from the per-file rules, so allow-file:duplication (and line-scoped straitjacket-allow) previously had no effect on a clone — you couldn't suppress a genuinely-coincidental duplicate, which blocked gating a repo on duplication. They're now filtered through the same suppression the other rules use.

Install: curl -fsSL https://raw.githubusercontent.com/zmaril/straitjacket/main/install.sh | sh

Full changelog: v0.2.1...v0.2.2

v0.2.1

Choose a tag to compare

@github-actions github-actions released this 03 Jul 22:33
92318d9

Fixed

  • inline-font no longer flags a quoted CSS variable — fontFamily: "var(--mantine-font-family-monospace)" is a token reference just like the bare var(--x) form, so both are allowed now. A quoted font ("Inter") is still a hardcoded literal and stays flagged.

Install: curl -fsSL https://raw.githubusercontent.com/zmaril/straitjacket/main/install.sh | sh

Full changelog: v0.2.0...v0.2.1

v0.2.0

Choose a tag to compare

@github-actions github-actions released this 03 Jul 20:59
7a96d06

Added

  • SARIF output--format sarif emits SARIF 2.1.0 for GitHub code scanning, and --sarif <PATH> writes SARIF to a file alongside the normal stdout report. The GitHub Action now uploads SARIF by default (annotations on the PR diff + Security tab); grant security-events: write to enable the upload. Still gates on findings — no-fail: "true" opts out, sarif: "false" disables the upload.

Changed

  • effect-in-component is now scope-aware: it flags a useEffect only when defined inside a component's body, not merely present in a file that has a component. Effects inside a co-located use* hook are fine.
  • Upgrade the OXC crates from 0.133 to 0.138.

Fixed

  • inline-font no longer flags a font token reference (fontFamily: MONO) or bare generic families (monospace, sans-serif). Only a quoted font or a hardcoded multi-family stack is flagged.

Install: curl -fsSL https://raw.githubusercontent.com/zmaril/straitjacket/main/install.sh | sh

Full changelog: v0.1.0...v0.2.0

v0.1.0

Choose a tag to compare

@github-actions github-actions released this 01 Jul 22:28
d1b712b
v0.1.0 — first release