Sobelow changelog

Changelog History

Page 2

• v0.9.3 Changes

  December 18, 2019

  • Enhancements

    • Improved checks for all aliased functions

  • Bug Fixes

    • JSON output for Raw findings is now properly normalized
    • send_download correctly flags aliased function calls
    • send_download now correctly flags piped functions

• v0.9.2 Changes

  November 13, 2019

  • Bug Fixes
    • Fix error that resulted from redefining imported functions

• v0.9.1 Changes

  October 14, 2019

  • Bug Fixes
    • Revert umbrella app recursion

• v0.9.0 Changes

  • Enhancements

    • Add --mark-skip-all and --clear-skip flags
    • New CSRF via action reuse checks
    • Sobelow can now be run in umbrella apps

  • Bug Fixes

    • Fix an error when printing some kinds of variables

• v0.8.0 Changes

  June 21, 2019

  • Enhancements

    • Improve output consistency
      • All JSON findings contain type, file, and line keys
      • "Line" output now refers directly to the vulnerable line
      • Default output headers have been normalized

    Note: If you depend on the structure of the output, this may be a breaking change. More information can be found at https://sobelow.io.

• v0.7.8 Changes

  June 21, 2019

  • Enhancements

    • Add --threshold flag
    • Add module names to finding output

  • Deprecations

    • File/Path check has been deprecated
      

  • Bug Fixes

    • Fix inaccurate CSRF details

• v0.7.7 Changes

  June 21, 2019

  • Enhancements

    • Add check for insecure websocket settings

  • Bug Fixes

    • Accept module attributes for application name

• v0.7.6 Changes

  June 21, 2019

  • Bug Fixes
    • Fix issue that suppressed output options when config files were in use

• v0.7.5 Changes

  June 21, 2019

  • Misc
    • Sobelow will now only halt when --exit flag is used

• v0.7.4 Changes

  June 21, 2019

  • Bug Fixes
    • Log hardcoded secrets for txt output

• « First
• ‹ Prev
• 1
• 2
• 3
• 4
• Next ›
• Last »