Releases: checkmarx-ltd/cx-flow
1.6.13
π Features
β’ CxGo-SCA filtering (#524)
β’ Support SCA Results in GitLab Security Dashboard (#528)
β’ Update dependencies to eliminate Cx-SCA findings (#535)
π Bug Fixes
β’ Fix GitHub App private key parsing (#539)
β’ Bug #499 : Fix for Jira ticket assignee. (#532)
β’ Updated & Streamlined Labs (#530)
β’ Fix project settings override (#529)
β’ Bugfix #508 : Added the missing check to determine if the issue title start with 'Cx'(#525)
1.6.12
π Features
β’ Create wiki-publisher.yml (#512)
β’ Adding BuildInfo Bean to add log entry on program launch (#515)
β’ Add GitHub App Support for GitHub Issues (#513)
β’ CxGo thresholds support (#505)
β’ Support for post-back mode operation (#469)
β’ GH Wiki Markdown and associated images(#483)
π Bug Fixes
β’ fix null pointer exception when SCA package-version is null (#516)
β’ Fixed - Add 'Training' ticket markdown link (#500)
β’ fix wrong hints in log message when team creation fail (#494)
β’ Fix for config-as-code broken for BB server push events(#482)
β’ Fix issue (#474 typo in result json REST API) (#504)
1.6.11
π Features
β’ Add break build thresholds (#440)
β’ Cx-Go: support SAST filters (#471)
β’ Add GitHub App Support (#466)
β’ Added publishing artifacts to github pre-release #450
π Bug Fixes
β’ Fix nullPointerException in csv bugTracker when no mitre-url (#441)
β’ Fix gitlab config-as-code (#449)
β’ fix bug tracker None not functioning as expected (#457)
β’ Adding logic to skip push event caused by delete event from GitHub (#464)
β’ fix bug tracker None not functioning as expected (#457) (#467)
β’ Create directory path if not exist + Fix SCA cli scan test #473
1.6.10
π Features
β’ Support reading bean configuration from remote repo via Config-Provider component (#438)
β’ Publish AST vulnerability description (#432)
β’ Add AST weblink to CxFlow reports(#439)
β’ Added badges and link to wiki (#434)
β’ Add support for SCA results for CxGo Implementation (#446)
π Bug Fixes
β’ Fixed Bug-286: Issue on merge requests with info severity results (#437) (issue #436)
β’ Fixed Markdown of PR summary in BitBucket (#428)
β’ Fixed incorrect search behavior for GitLab projects (#435) (issue 430)
1.6.9
π Features
β’ Support configurable sast comment (#417)
β’ Support shard manager for multiple SAST instances (#414)
β’ Added new PR comments summary design (#415)
β’ Added login API support for AST (#421)
β’ Support AST scan from command line (#422)
β’ Publish SCA results into local files (#424)
β’ Update CxGo SDK to 0.1.37 β support new Cx-Go APIs (#421)
π Bug Fixes
β’ fix exception log in jira service (#418)
1.6.8
π Features
β’ SCA: support for the "manifest and fingerprints" mode (#403)
β’ delete Cx-project on ado delete branch event (#412)
β’ Added support for multiple optional SCM's instances for GitLab & ADO (#409)
β’ Update CxGo SDK to 0.1.34 β support new Cx-Go APIs (#408)
π Bug Fixes
β’ Fixes Issue #405 : Exception thrown in case of blank email template name (#407)
β’ enforcing groovy script return type (#404)
1.6.7
π Features
β’ SCA: support for the "manifest and fingerprints" mode (#403)
β’ Update CxGo SDK to 0.1.34 β support new Cx-Go APIs (#408)
β’ delete Cx-project on ado delete branch event (#412)
β’ Added support for multiple optional SCM's instances for GitLab & ADO (#409)
π Bug Fixes
β’ Fixes Issue #405 : Exception thrown in case of blank email template name (#407)
β’ enforcing groovy script return type (#404)
1.6.6
π Features
β’ Implemented getting and publishing latest SCA scan results in CLI mode (#398)
β’ Azure DevOps : Support for Config-as-code and Auto Profiling. (#394)
β’ Bitbucket (Cloud & Server) Support for Config-as-Code and Auto Profiling (#380)
β’ Added support for multiple optional Github instances (#391)
β’ SARIF Report Output Support (#386)
π Bug Fixes
β’ Fixed: Remove hard coded auto profile setting to TRUE on GitHubController flow(#397)
β’ Fix #363 - github PR from forked repo handling (#364)
β’ Fix unexpected exception in update github issue - change labels id to long in github (#399)
1.6.5
π Features
β’ Integration with AST - support git comments (#377)
β’ Integration with AST - support ast results (#371)
Changes
β’ Clean SAST Vulnerabilities (#369)
β’ Integration with AST - support ast results
π Bug Fixes
β’ Fix for Issue #360 : Added PR feedback in case of existing active scan (#375)
β’ Fixed: config as code parameters overrides scan-request object instead of properties files (#372)
β’ Fixed: NPE fix for potential DDos attack (#362)
β’ Fixed: CxFlow tries do delete a wrong SAST project when the project name was defined in config-as-code (#384)
1.6.4
π Features
β’ SCA Local Source Scanning (Zip Upload) via CLI/Batch (#349)
β’ SCA GIT remote scanning from CLI (#359)
β’ Integration with AST - support start scan from webhook (#356)
β’ Added new recommended fix link to Bug tracker's issues (#351)
π Bug Fixes
β’ Added Partial Fix for bug-201: vulnerability scanners are part of scanRequest (#354)
β’ Fix CLI Execution from processing results twice (#352)
Changes
β’ CLI SAST and SCA automation tests (#361)