Skip to content

Releases: Tencent/CodeAnalysis

v1.11.0

30 Jul 09:03
5a60e33
Compare
Choose a tag to compare

What's Changed

  • 🎨 增加历史数据清理脚本 by @yyyangw in #1112
  • 🎨 增加"筛选未删除项目的分析方案"功能以及解决"删除代码库无法关联软删除分析项目和分析模板"的问题 by @yyyangw in #1121
  • 🎨 增加api调用demo脚本 by @yyyangw in #1122
  • 🎨 异常处理和版本号打印 by @bensonhome in #1132
  • 🎨 Adjust the pages deployment process and png storage location by @cyw3 in #1133
  • 🎨 install_bin support USE_LOCAL_TOOL by @cyw3 in #1139
  • 🎨 修改helm charts 部署方式的相关配置 by @yyyangw in #1142
  • 🎨 解决helm charts部署项目,账户无法登录的问题 by @yyyangw in #1143
  • 🎨 增加helm charts部署方式下的节点池扩容功能及文档说明 by @yyyangw in #1144
  • 🎨 Jenkins插件功能优化 by @zhuay-a in #1148
  • 🎨 添加了'--ulimit nofile=10240:10240' by @zhangbo0 in #1149
  • 🎨 增加客户端渠道信息打印 by @bensonhome in #1151
  • 🎨 调整codedog.ini文件内容 by @Lingghh in #1154

Fixes

  • 🔥 Deprecated 0daychecker, please use TCA-Armory-C2 instead. by @cyw3 in #1111
  • 🐛 修复luacheck在windows下处理结果异常的问题 by @yql70 in #1134

Bumps

Docs

New Contributors

Full Changelog: 20240621.1...20240730.1

v1.10.0

21 Jun 07:28
f5d8d18
Compare
Choose a tag to compare

What's Changed

Fixes

  • 🐛 修复挂载的代码目录owner不是root时,导致git blame异常 by @bensonhome in #906
  • 🐛 修复分析方案规则配置筛选项 by @Faberiii in #911
  • 🐛 修复部分筛选项异常 🍱 版本同步 by @nickcdon in #920
  • 🐛 工具依赖 - 修复依赖方案条件为空时会误判为符合条件的情况 by @bensonhome in #938
  • 🐛 修复dockerfile缺少工具 by @zzzfwww in #966
  • 🐛 修复团队成员邀请 by @nickcdon in #971
  • 🐛 修复文件名过长无法复制问题 by @freyaLo in #993
  • 🐛 修复后台管理团队禁用 by @nickcdon in #1028

Bumps

  • ⬆️ Bump gopkg.in/yaml.v3 from 3.0.0-20200313102051-9f266ea9e77c to 3.0.0 in /tools/owl by @dependabot in #912
  • ⬆️ Bump cryptography from 41.0.3 to 41.0.4 in /server/projects/login by @dependabot in #926
  • ⬆️ Bump cryptography from 41.0.3 to 41.0.4 in /server/projects/main by @dependabot in #927
  • ⬆️ Bump cryptography from 41.0.3 to 41.0.4 in /server/configs by @dependabot in #928
  • ⬆️ Bump cryptography from 41.0.3 to 41.0.4 in /server/projects/file by @dependabot in #929
  • ⬆️ Bump postcss from 8.4.16 to 8.4.31 in /doc by @dependabot in #934
  • ⬆️ Bump postcss from 8.4.28 to 8.4.31 in /web by @dependabot in #935
  • ⬆️ Bump urllib3 from 1.26.11 to 1.26.18 in /server/projects/main by @dependabot in #941
  • ⬆️ Bump urllib3 from 1.26.11 to 1.26.18 in /server/projects/analysis by @dependabot in #942
  • ⬆️ Bump urllib3 from 1.26.11 to 1.26.18 in /server/projects/scmproxy by @dependabot in #943
  • ⬆️ Bump @babel/traverse from 7.22.11 to 7.23.2 in /web by @dependabot in #944
  • ⬆️ Bump axios from 1.4.0 to 1.6.1 in /web by @dependabot in #948
  • ⬆️ Bump org.json:json from 20230227 to 20231013 in /plugins/jenkins_plugin by @dependabot in #949
  • ⬆️ Bump cryptography from 41.0.4 to 41.0.6 in /server/projects/file by @dependabot in #956
  • ⬆️ Bump cryptography from 41.0.4 to 41.0.6 in /server/projects/login by @dependabot in #957
  • ⬆️ Bump cryptography from 41.0.4 to 41.0.6 in /server/projects/main by @dependabot in #958
  • ⬆️ Bump cryptography from 41.0.4 to 41.0.6 in /server/configs by @dependabot in #959
  • ⬆️ update cls by @cyw3 in #975
  • ⬆️ Bump pycryptodome from 3.9.8 to 3.19.1 in /server/configs by @dependabot in #980
  • ⬆️ Bump pycryptodome from 3.9.8 to 3.19.1 in /server/projects/file by @dependabot in #981
  • ⬆️ Bump pycryptodome from 3.9.8 to 3.19.1 in /server/projects/analysis by @dependabot in #984
  • ⬆️ Bump pycryptodome from 3.9.8 to 3.19.1 in /server/projects/main by @dependabot in #983
  • ⬆️ Bump pycryptodome from 3.9.8 to 3.19.1 in /server/projects/login by @dependabot in #982
  • ⬆️ Bump follow-redirects from 1.15.2 to 1.15.4 in /web by @dependabot in #985
  • ⬆️ Bump jinja2 from 2.11.3 to 3.1.3 in /server/projects/analysis by @dependabot in #989
  • ⬆️ Bump jinja2 from 2.11.3 to 3.1.3 in /server/projects/main by @dependabot in #988
  • ⬆️ Bump jinja2 from 2.11.3 to 3.1.3 in /server/configs by @dependabot in #987
  • ⬆️ Bump cryptography from 41.0.6 to 42.0.0 in /server/projects/main by @dependabot in #996
  • ⬆️ Bump cryptography from 41.0.6 to 42.0.0 in /server/projects/file by @dependabot in #997
  • ⬆️ Bump cryptography from 41.0.6 to 42.0.0 in /server/configs by @dependabot in #998
  • ⬆️ Bump cryptography from 41.0.6 to 42.0.0 in /server/projects/login by @dependabot in #999
  • ⬆️ Bump django from 3.1.14 to 3.2.24 in /server/projects/login by @dependabot in #1000
  • ⬆️ Bump cryptography from 42.0.0 to 42.0.2 in /server/projects/login by @dependabot in #1008
  • ⬆️ Bump cryptography from 42.0.0 to 42.0.2 in /server/projects/file by @dependabot in #1007
  • ⬆️ Bump cryptography from 42.0.0 to 42.0.2 in /server/projects/main by @dependabot in #1006
  • ⬆️ Bump cryptography from 42.0.0 to 42.0.2 in /server/configs by @dependabot in #1005
  • ⬆️ Bump django from 3.1.14 to 3.2.24 in /server/configs by @dependabot in #1004
  • ⬆️ Bump django from 3.1.14 to 3.2.24 in /server/projects/analysis by @dependabot in #1003
  • ⬆️ Bump django from 3.1.14 to 3.2.24 in /server/projects/main by @dependabot in #1002
  • ⬆️ Bump django from 3.1.14 to 3.2.24 in /server/projects/file by @dependabot in #1001
  • ⬆️ Bump ip from 2.0.0 to 2.0.1 in /web by @dependabot in #1010
  • ⬆️ Bump cryptography from 42.0.2 to 42.0.4 in /server/projects/login by @dependabot in #1011
  • ⬆️ Bump cryptography from 42.0.2 to 42.0.4 in /server/configs by @dependabot in #1012
  • ⬆️ Bump cryptography from 42.0.2 to 42.0.4 in /server/projects/main by @dependabot in #1013
  • ⬆️ Bump cryptography from 42.0.2 to 42.0.4 in /server/projects/file by @dependabot in #1014
  • ⬆️ Bump follow-redirects from 1.15.4 to 1.15.6 in /web by @dependabot in #1033
  • ⬆️ Bump django from 3.2.24 to 3.2.25 in /server/projects/main by @dependabot in #1036
  • ⬆️ Bump django from 3.2.24 to 3.2.25 in /server/configs by @dependabot in #1037
  • ⬆️ Bump django from 3.2.24 to 3.2.25 in /server/projects/analysis by @dependabot in #1038
  • ⬆️ Bump django from 3.2.24 to 3.2.25 in /server/projects/file by @dependabot in https://github.com/Tencent/CodeA...
Read more

v1.9.0

10 Aug 09:50
eb0613a
Compare
Choose a tag to compare

What's Changed

Fixes

Bumps

  • ⬆️ cls 20230221.1 by @cyw3 in #773
  • ⬆️ Bump golang.org/x/sys from 0.0.0-20210630005230-0f9fa26af87c to 0.1.0 in /tools/owl by @dependabot in #781
  • ⬆️ Bump webpack from 5.74.0 to 5.76.0 in /web by @dependabot in #795
  • ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/configs by @dependabot in #797
  • ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/analysis by @dependabot in #807
  • ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/main by @dependabot in #806
  • ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/configs by @dependabot in #805
  • ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/file by @dependabot in #804
  • ⬆️ Bump sentry-sdk from 0.19.4 to 1.14.0 in /server/projects/scmproxy by @dependabot in #802
  • ⬆️ Bump redis from 4.1.1 to 4.5.4 in /server/projects/file by @dependabot in #812
  • ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/projects/main by @dependabot in #811
  • ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/configs by @dependabot in #810
  • ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/file by @dependabot in #801
  • ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/analysis by @dependabot in #800
  • ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/main by @dependabot in #799
  • ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/login by @dependabot in #798
  • ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/projects/analysis by @dependabot in #813
  • ⬆️ Bump json from 20160810 to 20230227 in /plugins/jenkins_plugin by @dependabot in #819
  • ⬆️ 前端依赖升级 by @freyaLo in #821
  • ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/login by @dependabot in #842
  • ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/configs by @dependabot in #843
  • ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/file by @dependabot in #844
  • ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/main by @dependabot in #845
  • ⬆️ Bump fast-xml-parser from 4.2.2 to 4.2.4 in /web by @dependabot in #847
  • ⬆️ Bump semver from 5.7.1 to 5.7.2 in /web by @dependabot in #859
  • ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/file by @dependabot in #861
  • ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/configs by @dependabot in #862
  • ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/login by @dependabot in #863
  • ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/main by @dependabot in #864
  • ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/projects/analysis by @dependabot in #866
  • ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/configs by @dependabot in #867
  • ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/projects/main by @dependabot in #868
  • ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/file by @dependabot in #880
  • ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/login by @dependabot in #879
  • ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/configs by @dependabot in #878
  • ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/main by @dependabot in #877

Docs

New Contributors

Full Changelog: 20230222.1...20230810.2

v1.8.0

22 Feb 11:00
a936c30
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

Fixes

Bumps

  • ⬆️ Bump json5 from 1.0.1 to 1.0.2 in /web by @dependabot in #742
  • ⬆️ Bump ua-parser-js from 0.7.31 to 0.7.33 in /web by @dependabot in #755
  • ⬆️ Bump http-cache-semantics from 4.1.0 to 4.1.1 in /web by @dependabot in #758
  • ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/file by @dependabot in #764
  • ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/login by @dependabot in #763
  • ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/main by @dependabot in #762
  • ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/configs by @dependabot in #761

Docs

  • 📝 Update TCA-Armory-R Doc by @yql70 in #711
  • 📝 update doc by @cyw3 in #713
  • 📝 [WeOpen Star] 补充文档常见问题以及解决方案 by @Sanshix in #727
  • 📝 [WeOpen Star] 补充文档:服务启动时报错的一种case的排查方式 by @Sanshix in #729
  • 📝 enhanceDeploy增加注意事项 by @cyw3 in #732
  • 📝 完善FAQ文档关于codedog_env配置的说明 by @bensonhome in #733
  • 📝 添加cppcheck和misra的使用手册 by @mapyJJJ in #740

New Contributors

Full Changelog: 20221130.1...20230222.1

v1.7.0

30 Nov 07:43
b875d26
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

  • ✨ Add safety_cpp by @cyw3 in #684
  • ✨ 分支项目支持指定扫描路径 by @Lingghh in #705
  • ✨ 支持Helm charts部署TCA服务 by @Lingghh in #724
  • 🎨 tool-regexscanner新增规则检测css高危函数 by @yql70 in #683
  • 🎨 部分工具规则和日志翻译为英文 by @yql70 in #691
  • 🎨 update tool json by @cyw3 in #694
  • 🎨 增加任务扩展字段,记录任务运行信息 by @Lingghh in #704
  • 🎨 更新自定义工具和快速扫描功能 by @bensonhome in #707
  • 🎨 regexscanner新增敏感信息检测规则 by @yql70 in #710
  • 🎨 增加‘增强’标签;调整github 镜像构建内容 by @Lingghh in #717

Fixes

  • 🐛 修复工具拉取使用自定义鉴权场景下,成员变量未声明就使用问题 by @bensonhome in #698
  • 🐛 分析方案路由跳转调整 by @freyaLo in #701
  • 🐛 补充docker-compose部署nginx日志挂载路径 by @Lingghh in #702
  • 🐛 修复初始化脚本 by @Lingghh in #723

Bumps

Docs

New Contributors

Full Changelog: 20221028.1...20221130.1

v1.6.0

28 Oct 07:51
029074d
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

Fixes

  • 🐛 fix KeyError by @cyw3 in #645
  • 🐛 解决cppcheck可能出现中文编码错误问题 by @owlmk in #663
  • 🐛 调整scmallaccounts接口代码 by @nickcdon in #677

Bumps

Doc

  • 📝 Update 自定义工具.md by @auula in #667
  • 📝 单元测试有效性验证 - 使用手册 by @cyw3 in #656
  • 📝 完善帮助文档 by @cyw3 in #657
  • 📝 更新首页功能优势介绍,增加持续跟踪管理问题 by @aaaa-j in #659
  • 📝 Add front_end_framework_check doc by @cyw3 in #661
  • 📝 更新规则文档 by @owlmk in #674
  • 📝 增加Jenkins插件使用说明 by @aaaa-j in #675

New Contributors

Full Changelog: 20220928.1...20221028.1

v1.5.2

28 Sep 12:54
84f3f24
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

Doc

Full Changelog: 20220923.1...20220928.1

v1.5.1

23 Sep 07:44
7476c73
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

Fixes

  • 🐛 修复前端init脚本,避免异常中断 by @nickcdon in #625

Bumps

Doc

Full Changelog: 20220907.1...20220923.1

v1.5.0

07 Sep 08:34
8de8b14
Compare
Choose a tag to compare

What's Changed

New feature and Enhancements

Fixes

  • 🐛 client镜像补充openssh-client依赖 by @Lingghh in #585

Bumps

Doc

New Contributors

Full Changelog: 20220819.1...20220907.1

v1.4.3

19 Aug 08:28
9d27912
Compare
Choose a tag to compare

What's Changed

  • ✨ Add standalone tool package by @cyw3 in #512
  • ✨ support sqlcheck by @cyw3 in #514
  • ✨ 支持团队节点与标签;调整文档说明 by @Lingghh in #534
  • ✨ 上线团队节点标签配置,同步更新帮助文档 by @nickcdon in #537
  • 🎨 整理强化安全规则包,需要license by @owlmk in #522
  • 🎨 完善登录接口异常处理和错误提示 by @Lingghh in #535
  • 🎨 基础安全规则包新增规则 by @yql70 in #533
  • 🎨 调整oauth授权删除逻辑 by @RussGan in #542
  • 🎨 调整工具管理凭证校验逻辑 by @nickcdon in #548
  • 🎨 优化源码部署脚本 by @Lingghh in #545
  • 🎨 docker与docker-compose支持挂载client配置文件 by @Lingghh in #551
  • 🎨 调整工具管理凭证校验逻辑 by @nickcdon in #549
  • 🐛 修复工具规则显示详情描述 by @nickcdon in #525
  • 🐛 修复分析方案模板添加规则筛选项异常 by @nickcdon in #531
  • 🐛 修复代码库凭证切换导致页面白屏 by @nickcdon in #540
  • 📝 Update tools readme by @cyw3 in #507
  • 📝 update client README.md docker模式 by @bensonhome in #529
  • 📝 Add tool docs by @cyw3 in #546

Full Changelog: 20220811.1...20220819.1