0.5.4

What's Changed

• Fix action failure to release binary by @ericwb in #453

Full Changelog: 0.5.3...0.5.4

0.5.3

What's Changed

• Recenter the text and logo in the banner image by @ericwb in #441
• Enhance the Node class with convenient functions by @ericwb in #447
• Add Node convenient function utf8_text by @ericwb in #448
• Use child_by_type for all parsers by @ericwb in #449
• Fix how scoped variables accessed in symbol table by @ericwb in #450
• Update some tests so they are runnable by @ericwb in #451
• Add attestation to build artifacts by @ericwb in #452

Full Changelog: 0.5.2...0.5.3

0.5.2

What's Changed

• Add start_time to SARIF output by @ericwb in #440

Full Changelog: 0.5.1...0.5.2

0.5.1

What's Changed

• Add Python requirement to install quick start by @ericwb in #428
• Add rule to use of Cookie with secure flag false by @ericwb in #430
• Fix broken link in rules table by @ericwb in #431
• Add Java rule for insecure java.net.HttpCookie by @ericwb in #432
• Increase size of banner logo by @ericwb in #433
• Create a nicer looking banner logo by @ericwb in #434
• Simplify the README content by @ericwb in #435
• README example with wrong path by @ericwb in #436
• Trim trailing space in README by @ericwb in #437
• Correct the paths given in getting start examples by @ericwb in #438
• Fix traceback raised on an expression list assignment by @ericwb in #439

Full Changelog: 0.5.0...0.5.1

0.5.0

What's Changed

• Create java parser and example rule with test by @ericwb in #414
• Add more tests for java weak cipher rule by @ericwb in #415
• Add rule for weak hashes in java.security by @ericwb in #416
• Small refactor to parsers by @ericwb in #417
• Make Call class more generic for all supported languages by @ericwb in #418
• Add new Java rule to check for a weak key by @ericwb in #419
• Fix collison in rule wildcards by @ericwb in #420
• Create sub-symbol tables on class and method declaration by @ericwb in #421
• Add more symbol tables for other declarations by @ericwb in #422
• Go and Java docs should have similar headers as Python by @ericwb in #423
• Add rule for detection of weak random algorithm in SecureRandom by @ericwb in #424
• Don't break code with suggested fix by @ericwb in #425
• Weak hash and weak random Java rules need to guard from none by @ericwb in #426
• Handle method calls with field access by @ericwb in #427

Full Changelog: 0.4.6...0.5.0

0.4.6

What's Changed

• Resolve a call argument that is a call to its identifier by @ericwb in #412

Full Changelog: 0.4.5...0.4.6

0.4.5

What's Changed

• Add more detail to the --version output by @ericwb in #410
• Add extensions to the version output by @ericwb in #411

Full Changelog: 0.4.4...0.4.5

0.4.4

What's Changed

• Do update check only if git target or gist output by @ericwb in #401
• Add dependabot checks for PyPI packages by @ericwb in #402
• Add suggested fixes for the hashlib weak hash rule by @ericwb in #403
• Add suggested fixes for weak hashes in hmac function by @ericwb in #404
• Fix traceback from usage of importlib.import_module by @ericwb in #406
• Fix for IndexError in an expression list assignment by @ericwb in #408

Full Changelog: 0.4.3...0.4.4

0.4.3

What's Changed

• Rule to check for insufficient key size to HMAC by @ericwb in #390
• Small edit to hmac weak key doc by @ericwb in #391
• Fix for cases of a reassignment of a variable by @ericwb in #392
• Correct invalid examples for hmac timing attack by @ericwb in #393
• Add rule to check for improper random generator usage by @ericwb in #394
• Bump tree-sitter to version 0.21.3 by @ericwb in #395
• Check for no action passed in argparse rule by @ericwb in #396

Full Changelog: 0.4.2...0.4.3

0.4.2

What's Changed

• importlib.import_module also needs to handle string types by @ericwb in #389

Full Changelog: 0.4.1...0.4.2