Release notes - SonarIac - 1.33

SONARIAC-1541 Docker parser should parse file with comments only

SONARIAC-1542 Docker parser should not crash on empty interpolation or other formats

SONARIAC-1543 Docker parser should not crash when heredoc is connected to another program

SONARIAC-1545 Docker parser should support special double-quotes

SONARIAC-1547 Docker parser should not crash when characters are positioned after EXEC form

SONARIAC-1566 Docker parser should consider Exec form with characters behind as Shell form

SONARIAC-1554 S6587 should not report RUN instructions with cache mount

SONARIAC-1559 S7018 should not report shell redirects

SONARIAC-1565 S7021 should not raise on special locations such as ~ (unix) or %location% (windows)

SONARIAC-1577 S7030 should not raise on Exec form that contain an empty string

SONARIAC-1578 S7030 should not raise an issue if there is no quotes between brackets and characters behind

SONARIAC-593 Handle the value of variables set by ENV instruction

SONARIAC-1538 S7018: Arguments in multi-line RUN instructions should be sorted

SONARIAC-1539 S7020: Too long RUN instruction should be split

SONARIAC-1540 S7021: WORKDIR instruction should only be used with absolute path

SONARIAC-1546 S7019: Prefer Exec form for ENTRYPOINT and CMD instructions

SONARIAC-1548 S7023: Use digest to pin versions of base images

SONARIAC-1550 S7026: Use ADD to retrieve remote resources

SONARIAC-1552 S7028: Descriptive labels are mandatory

SONARIAC-1553 S7029: Prefer COPY over ADD for copying local resources

SONARIAC-1555 S7031: Reduce the amount of consecutive RUN instruction

SONARIAC-1556 Make Helm analyzer compatible with SonarLint part 2

SONARIAC-1567 S7030: Malformed JSON in Exec form leads to unexpected behavior

SONARIAC-1579 Add STIG metadata support

SONARIAC-1391 Deprecate S6497

SONARIAC-1551 Docker parser should support instruction `CROSS_BUILD_COPY`

Provide feedback