Skip to content

Latest commit

 

History

History
151 lines (67 loc) · 6.96 KB

CHANGELOG.md

File metadata and controls

151 lines (67 loc) · 6.96 KB
Raw

0.7.1 (2023-07-11)

Bug Fixes

  • dependabot vulnerability alerts (78eaa62)

0.7.0 (2022-09-15)

Bug Fixes

Features

  • cli: tracker - new command that prints contents of OS vulnerability tracker [#30] (12320f7)
  • scan: include Funtoo bugtracker tickets for detected CVEs [#30] (825c867)

0.6.2 (2022-07-24)

Bug Fixes

  • cpe-tag: errors when package version "0" or "9999" [#54] (cff2ed2)
  • scan: abort on invalid NVD API key (291f60e)
  • scan: don't leak apiKey to ERROR log [#55] (31c2f76)
  • scan: improve error logs related to NVD API throttling (d76aa2d)

0.6.1 (2022-06-17)

Bug Fixes

  • cli: treat API key as a secret (0b08d3e)

0.6.0 (2022-04-12)

Bug Fixes

  • cargo audit fix - drop chrono dependency [#47][#48] (2da3ced)
  • scan: append package report file instead of truncate (997c582)

Features

  • scan: package name as report filename (3f9fa67)

Performance Improvements

  • cpe-tag: avoid compiling the same regex in a loop (e08f29e)
  • scan: allocate 40.8% less memory for cpe feed (7ab77cf)

0.5.0 (2022-03-18)

Bug Fixes

  • scan: chmod 700 for scan results directory (9281be3)

Features

  • cli: default out dir in local config (f014ca7)
  • cli: info as default log level (9a5d613)
  • cli: local config (f7e3c68)
  • cli: support usage of NVD API key [#31] (2168fc9)
  • scan: support recursive scanning of funtoo meta-repo [#29] (4ee8a5e)
  • scan: support scanning the portage tree/kits of ebuilds [#29] (338cbf0)

0.4.0 (2022-02-28)

Features

  • cli: kev - new command for printing known exploited vulnerabilities (96bc9a3)
  • cli: recognize known exploited CVEs (c452ad9)

0.3.1 (2022-02-26)

Bug Fixes

  • adapter for apache http server (e28c04a)

0.3.0 (2022-02-22)

Features

  • cli: allow defining pkg dir for scan [#20] (057eab8)

0.2.0 (2022-02-14)

Bug Fixes

  • cli: dont stop but log on http error (b9494f5)
  • cpe-tag: more verbose error when cpe match feed not found (52f4061)
  • os-adapter: gentoo flavor is gentoo (0e42c43)

Features

  • cli: richer scan reports (23799cc)
  • cli: summary flag for cve command (890f588)
  • os-adapter: support gentoo linux (3fcfce8)

0.1.0 (2022-01-30)

Features

  • cli: allow piping (input from stdin) (790c5f6)
  • cli: init CLI (78b0d8d)
  • cpe - new command for returning valid and existing CPEs (bac30f5)
  • cve - new command for listing CVEs for given CPEs (5b6ca09)
  • lib: reuse python lib for grep patterns (2dfcfcf)
  • scan - new command for CVE scanning (5a96512)
  • sync - new command for fetching NVD CPE match feed (55e053d)

Performance Improvements

  • cpe: deserialize from string only once (47fe076)