Releases: wneessen/go-hibp
v1.0.7: subscribeddomains/breacheddomain API and bug fixes
This release adds access to the breacheddomain/breacheddomain API endpoints and fixes a potential out of index access.
What's Changed
- Improved test coverage by @wneessen in #30
- Fix possible out of index access by @wneessen in #32
- Add missing API calls for breacheddomain and breacheddomain by @freman in #33
New Contributors
Thanks
Thanks to @KenjiTakahashi for reporting the out of index access error via #34
Full Changelog: v1.0.6...v1.0.7
Contributors
Assets 2
v1.0.6: NTLM hash support
This release introduces support for NTLM hashes in the PwnedPassAPI as announced by Troy Hunt.
To be able to generate NTLM hashes, we needed the ability to calculate MD4 hashes, as NTLM basically is calculated like this: MD4(UTF-16LE(pw)). For this we ported the official golang.org/x/crypto/md4 package, so we can still claim that the module "only depends on Go stdlib".
A new Client option has been introduced: WithPwnedNTLMHash. If the client is initalized with this option, all generic methods (ListHashesPassword and CheckPassword) will operate on NTLM hashes.
Additionally, there are now equivalent methods for checking passwords and listing hashes for NTLM: CheckNTLM and ListHashesNTLM
What's Changed
Full Changelog: v1.0.5...v1.0.6
v1.0.5: Better error handling
This releases overhauls the error handling of the different APIs. Aside of fixing #22, in this release we reworked the general error handling. Errors are no defined via errors.New() and therefore can be checked via errors.Is() accordingly. General code cleanup was also performed. Check the PRs for all details.
What's Changed
- Fix missing HTTP response return in PastedAccount method. by @wneessen in #23
- Fix/24 verify and overhaul the error handling of the different apis by @wneessen in #25
Thanks to @chandru89new for finding the error and raising the error issue.
Full Changelog: v1.0.4...v1.0.5
[BREAKING CHANGE] v1.0.4: Code cleanup with golangci-lint
This release introduces breaking changes
I am currently implementing code standards across all my code bases by introducing a golangci-lint workflow. This release applies this workflow to go-hibp. Unfortunately this introduces a breaking change be renaming all methods and references that previously had Api in it to API and Http to HTTP.
Please update your code accordingly.
What's Changed
- Fixes and test coverage by @wneessen in #18
- Implement a golangci-lint workflow and the accordingly GH action by @wneessen in #19
- Better test coverage by @wneessen in #20
Full Changelog: v1.0.3...v1.0.4
v1.0.3: Hashlists support
This release adds support for retrieving hash lists in the PwnedPass API (See #14). We've added 3 new ListHashes*() methods to get access to all returned hashes:
ListHashesPrefix(): which accepts a 5-character hash as expected by the API endpoint (this is basically the previously privateapiCall()method)ListHashesSHA1(): which retrieves the list based on a given SHA1 checksumListHashesPassword(): which retrieves the list based on a give password string
We've also added length checks for *SHA1() and *Prefix() methods, so that invalid data provided to them will return an error.
Thanks binaek for feature request and the testing.
Changes worth mentioning
v1.0.2: Maintenance release
This is a maintenance release. Since the last release we've introduced code scanning via SonarQube and coverage testing using Codecov. This release addresses some findings and the better testing
Changes worth mentioning
First stable release
This release is the first stable release that implements all provided APIs in the HIBP system
BreachedAccount, better HTTP handling and rate limiting
Merge pull request #4 from wneessen/breaches BreachedAccount, better HTTP handling and rate limiting
New methods for the breaches API
Added BreachByName()
Introducing breaches
Merge pull request #1 from wneessen/breaches v0.1.2: Introducing Breaches