Skip to content

Releases: microsoft/sarif-sdk

v3.0.0-beta1

03 Aug 23:23
@marmegh marmegh
v3.0.0-beta1
fce2adf
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.0.0-beta1 Pre-release
Pre-release

SARIF Package Release History (SDK, Driver, Converters, and Multitool)

3.0.0-beta1 Sdk | Driver | Converters | Multitool | Multitool Library

  • BUGFIX: Loosen Newtonsoft.JSON minimum version requirement to 6.0.8 (for .NET framework) or 9.0.1 (for all other compilations) for Sarif.Sdk. Sarif.Converts requires 8.0.1, minimally, for .NET framework compilations.
  • BUGFIX: Broaden set of supported .NET frameworks for compatibility reasons. Sarif.Sdk now supports net45 forward. Sarif.Driver and Sarif.WorkItems requires net461 due to other dependencies.
  • BUGFIX: Set default stack limit in Newtonsoft.JSON utilization (if JsonConvert.Defaults is not already configured) to address GitHub advisory GHSA-5crp-9r3c-p9vr.
Assets 2
Loading

v2.4.16

22 Jul 16:04
@marmegh marmegh
v2.4.16
698adb6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.16

SARIF Package Release History (SDK, Driver, Converters, and Multitool)

v2.4.16 Sdk | Driver | Converters | Multitool | Multitool Library

Assets 2
Loading

v2.4.15

28 Apr 00:04
@eddynaka eddynaka
v2.4.15
9f0eed7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.15

v2.4.15 Sdk | Driver | Converters | Multitool | Multitool Library

  • BUGFIX: Fix ArgumentNullException when PropertiesDictionary is instantiated with a null comparer. #2482
  • BUGFIX: Fix UnhandledEngineException when target path does not exist for multithreaded application by validating directories as is done for singlethreaded analysis. #2461
Assets 2
Loading

v2.4.14

22 Apr 19:51
@eddynaka eddynaka
v2.4.14
4e9f606
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.14

v2.4.14 Sdk | Driver | Converters | Multitool | Multitool Library

  • BUGFIX: Eliminate dispose of stream and StreamWriter arguments passed to SarifLog.Save helpers. This would result in ObjectDisposedException being raised on attempt to access streams after save.
  • BREAKING: Id property of Location changed from int(32bit) to BigInteger(unlimited) to fix Newtonsoft.Json.JsonReaderException: JSON integer XXXXX is too large or small for an Int32. #2463
Assets 2
Loading

v2.4.13

07 Mar 23:36
@eddynaka eddynaka
v2.4.13
f8fece5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.13

v2.4.13 Sdk | Driver | Converters | Multitool | Multitool Library

  • BREAKING: AnalyzeCommandBase previously persisted all scan target artifacts to SARIF logs rather than only persisting artifacts referenced by an analysis result, when an option to persist hashes, text file or binary information was set. MultithreadedAnalyzeCommandBase previously persisted all scan targets artifacts to SARIF logs in cases when hash insertion was eenabled rather than only persisting artifacts referenced by an analysis result. #2433
  • BUGFIX: Adjust Json Serialization field order for ReportingDescriptor and skip emit empty AutomationDetails node. #2420
  • BREAKING: Fix InvalidOperationException when using PropertiesDictionary in a multithreaded application, and remove [Serializable] from it. Now use of BinaryFormatter on it will result in SerializationException: Type PropertiesDictionary is not marked as serializable. #2415
  • BREAKING: SarifLogger now emits an artifacts table entry if artifactLocation is not null for tool configuration and tool execution notifications. #2437
  • BUGFIX: Fix ArgumentException when --recurse is enabled and two file target specifiers generates the same file path. #2438
  • BUGFIX: Fix 'InvalidOperationException' with message Collection was modified; enumeration operation may not execute in MultithreadedAnalyzeCommandBase, which is raised when analyzing with the --hashes switch. #2447
  • BUGFIX: Fix Merge command produces empty SARIF file in Linux when providing file name only without path. #2408
  • FEATURE: Add --sort-results argument to the rewrite command to get sorted SARIF results. #2422
  • BUGFIX: Fix NullReferenceException when filing work item with a SARIF file which has no filable results. #2412
  • BUGFIX: Fix missing endLine and endColumn properties and remove vulnerable packages for ESLint SARIF formatter. #2458
Assets 2
Loading

v2.4.12

13 Oct 18:49
@eddynaka eddynaka
v2.4.12
45e21b5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.12

v2.4.12 Sdk | Driver | Converters | Multitool | Multitool Library

  • FEATURE: MultithreadCommandBase will use cache when hashing is enabled. #2388
  • FEATURE: Flow suppressions when baselining. #2390
  • BUGFIX: Fix number of results when filing work item. #2391
  • FEATURE: Add suppress command to multitool. #2394
  • BUGFIX: Fix TryIsSuppressed logic. #2395
Assets 2
Loading

v2.4.11

24 Jul 01:02
@eddynaka eddynaka
v2.4.11
cb59591
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.11

v2.4.11 Sdk | Driver | Converters | Multitool | Multitool Library

  • BUGFIX: Fix partitioning visitor log duplication. #2369
  • FEATURE: Add baseline argument in AnalyzeCommandBase classes. #2371
  • FEATURE: Clang-Tidy converter will also accept console output log. #2373
Assets 2
Loading

v2.4.10

22 Jul 19:20
@eddynaka eddynaka
v2.4.10
cfb4f9b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.10

v2.4.10 Sdk | Driver | Converters | Multitool | Multitool Library

  • FEATURE: Add Clang-Tidy converter. #2367
Assets 2
Loading

v2.4.9

05 Jun 10:52
@eddynaka eddynaka
v2.4.9
0ee4428
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.9

v2.4.9 Sdk | Driver | Converters | Multitool | Multitool Library

  • FEATURE: Report inner exception details if available. #2357
  • FEATURE: Add support for git blame. #2358
Assets 2
Loading

v2.4.8

10 May 17:25
@eddynaka eddynaka
v2.4.8
1d59810
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.4.8

v2.4.8 Sdk | Driver | Converters | Multitool | Multitool Library

  • BUGFIX: Fix file-work-item baselining. #2344
  • BUGFIX: Fix FileRegionsCache context region construction. #2348
Assets 2
Loading