Skip to content

v1.6.0
Compare
Choose a tag to compare
@octo-sts octo-sts released this 12 Dec 02:03
· 33 commits to main since this release
v1.6.0
74e0b0d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Tool Improvements

  • Correctly calculate statistics when running scans by @egibs in #649
  • Fix scanning of files compressed directly via xz (as opposed to tar -J) by @egibs in #650
  • Update relative path check when extracting tar archives by @egibs in #656
  • Add support for .deb and .rpm files by @egibs in #668
  • Ignore symlinks that point to nonexistent targets by @egibs in #669
  • Improve legibility of terminal diff output by @tstromberg in #670
  • Ignore JSON files, except for NPM package.json files by @tstromberg in #674
  • Add new BubbleTea TUI renderer by @egibs in #665
  • move "skipping: data file or empty" log message to Debug by @imjasonh in #692
  • include full warning in warning log by @imjasonh in #693

Rule Improvements

  • remove mantic mentions by @tstromberg in #653
  • Improve Ruby detection abilities by @tstromberg in #652
  • Update third-party rules as of 2024-11-25 by @octo-sts in #658
  • Improve results for Javascript (xmlrpc) and Python (aiocpa) samples by @tstromberg in #664
  • Update third-party rules as of 2024-12-01 by @octo-sts in #671
  • Minor YARA rule tuning based on upcoming talk by @tstromberg in #673
  • Enrich NodeJS detection for supply-chain attacks similar to Solana web3 v1.95.7 by @tstromberg in #678
  • Initial Java support (particularly credential stealers) by @tstromberg in #679
  • Improve detection of supply-chain attacks similar to Ultralytics by @tstromberg in #681
  • Update third-party rules as of 2024-12-09 by @octo-sts in #684
  • Update third-party rules as of 2024-12-10 by @octo-sts in #688
  • Fix slow query warnings, update testdata by @tstromberg in #690
  • Update third-party rules as of 2024-12-11 by @octo-sts in #695
  • Address recent, non-data file false positives by @egibs in #694

Developer Improvements

  • Use CachedRules in tests similarly to refresh by @egibs in #647
  • Add script to find missing testdata by @tstromberg in #651
  • Fix benchmarks by @egibs in #661
  • Reframe README around the concept of differential analysis by @tstromberg in #663
  • Replace pkg-config with pkgconf, add zypper invocation to command-line by @tstromberg in #677

New Contributors

Full Changelog: v1.5.1...v1.6.0

Contributors

tstromberg, imjasonh, and 2 other contributors
Assets 2
Loading