Releases: NodeSecure/scanner
Releases · NodeSecure/scanner
v5.0.0
What's Changed
- fix: commit activity link by @PierreDemailly in #122
- feat: migrate to node native test runner by @PierreDemailly in #121
- fix(d.ts): add missing extractedAuthors interface by @fraxken in #129
- chore: update license badge by @fabnguess in #143
- Implement SAST warnings for semver by @fabnguess in #139
- refactor: implement local i18n translations by @fraxken in #144
- refactor!: enhance author parsing & type defs by @fraxken in #162
Full Changelog: v4.0.0...v5.0.0
Contributors
fraxken, PierreDemailly, and fabnguess
Assets 2
v4.0.0
What's Changed
- chore: update @nodesecure/js-x-ray (5.1.0 to 6.0.0) by @fraxken in #92
- Updating security policy and badges by @fabnguess in #93
- Adding and configuring the dependabot.yml file by @fabnguess in #94
- chore(deps): bump ossf/scorecard-action from 2.0.6 to 2.1.2 by @dependabot in #99
- chore(deps): bump actions/setup-node from 2 to 3 by @dependabot in #98
- chore(deps): bump actions/checkout from 2 to 3 by @dependabot in #97
- chore(deps): bump actions/upload-artifact from 3.1.0 to 3.1.2 by @dependabot in #96
- chore(deps): bump github/codeql-action from 2.1.27 to 2.1.39 by @dependabot in #95
- ci: update nsci to install node_modules and add Node.js 18.x by @fraxken in #100
- chore: Apply security best practices (StepSecurity) by @step-security-bot in #102
- feat: add @nodesecure/authors by @Kawacrepe in #62
- docs: add Kawacrepe as a contributor for code by @allcontributors in #109
- chore: update dependencies by @fraxken in #108
- chore(deps): bump github/codeql-action from 2.1.39 to 2.2.3 by @dependabot in #107
- chore(deps): bump step-security/harden-runner from 2.1.0 to 2.2.0 by @dependabot in #112
- chore(deps): bump github/codeql-action from 2.2.3 to 2.2.4 by @dependabot in #110
- Update i18n (use Async API) by @fraxken in #111
- Update dependabot frequency by @fabnguess in #115
- docs: add fabnguess as a contributor for maintenance by @allcontributors in #116
- docs: start documenting from API by @fraxken in #35
- chore(deps): bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in #117
- Updated Readme by @Nikhilj007 in #119
- fix(security): add missing workflow top level permissions by @fraxken in #120
New Contributors
- @dependabot made their first contribution in #99
- @step-security-bot made their first contribution in #102
- @Kawacrepe made their first contribution in #62
- @Nikhilj007 made their first contribution in #119
Full Changelog: v3.8.2...v4.0.0
Contributors
fraxken, dependabot, and 5 other contributors
Assets 2
v3.8.2
v3.8.1
What's Changed
- [Snyk] Upgrade @nodesecure/i18n from 2.0.0 to 2.1.1 by @snyk-bot in #81
- [Snyk] Upgrade @npmcli/arborist from 6.1.1 to 6.1.2 by @snyk-bot in #80
- Updating build badge and adding badge scorecards by @fabnguess in #84
- chore: add Security policy by @fraxken in #85
- [Snyk] Upgrade @npmcli/arborist from 6.1.2 to 6.1.3 by @fraxken in #82
- [Snyk] Upgrade pacote from 15.0.6 to 15.0.7 by @snyk-bot in #83
- fix: add missing extension to import and remove Flags type by @fraxken in #88
- Update dependencies by @fraxken in #89
New Contributors
- @fabnguess made their first contribution in #84
Full Changelog: v3.8.0...v3.8.1
Contributors
fraxken, snyk-bot, and fabnguess
Assets 2
v3.8.0
What's Changed
- Check if its a git dependency by @SofianD in #57
- docs: add SofianD as a contributor for code by @allcontributors in #58
- fix: make tests to pass on node >= 18 by @PierreDemailly in #59
- Type synch for @nodesecure/js-x-ray by @Aekk0 in #63
- docs: add Aekk0 as a contributor for code by @allcontributors in #64
- Detect if root project (or git projects) are also available on NPM by @tekeuange23 in #67
- docs: add tekeuange23 as a contributor for code by @allcontributors in #68
- feat: add detection for npm: alias resolver by @fraxken in #69
- fix(tsd): set optional the argument packageName of tarball.scanPackage by @fraxken in #78
- chore: update dependencies by @fraxken in #79
New Contributors
- @SofianD made their first contribution in #57
- @PierreDemailly made their first contribution in #59
- @Aekk0 made their first contribution in #63
- @tekeuange23 made their first contribution in #67
Full Changelog: v3.7.0...v3.8.0
Contributors
fraxken, tekeuange23, and 4 other contributors
Assets 2
v3.7.0
What's Changed
- chore: update contribution guideline by @antoine-coulon in #51
- Feat: Registry option by @Rossb0b in #54
- docs: add Rossb0b as a contributor for code by @allcontributors in #55
- update dependencies by @fraxken
New Contributors
Full Changelog: v3.6.0...v3.7.0
Contributors
fraxken, Rossb0b, and 2 other contributors
Assets 2
v3.6.0
What's changed
- feat: add new package.json field (engines, repository, scripts) in DependencyVersion by @fraxken
- chore: update @nodesecure/js-x-ray (4.4.0 to 4.5.0) by @fraxken
- chore: update @nodesecure/flags (2.2.0 to 2.3.0) by @fraxken
The new release of JS-X-Ray include warning severity and experimental tag. Also include a new weak-crypto warning.
Full Changelog: v3.5.0...v3.6.0
Contributors
fraxken
Assets 2
v3.5.0
What's Changed
- fix(npmRegistry): allow empty maintainers array and search for them in versions by @fraxken in #47
- feat: detect Node.js core dependency prefixed with 'node:' by @fraxken in #48
- feat: add experimental support for Node.js subpath imports by @fraxken in #49
Full Changelog: v3.4.1...v3.5.0
Contributors
fraxken
Assets 2
v3.4.1
What's Changed
- docs: add antoine-coulon as a contributor for code, security by @allcontributors in #34
- fix: add location as options of hydratePayloadDependencies by @fraxken in #39
Full Changelog: v3.4.0...v3.4.1
Contributors
fraxken and allcontributors
Assets 2
v3.4.0
What's Changed
- Add @nodesecure/ci-action to GitHub workflow by @antoine-coulon in #28
- feat: add new option to include cwd devDependencies by @fraxken in #29
- Update dependencies by @fraxken in #33
New Contributors
- @antoine-coulon made their first contribution in #28
Full Changelog: v3.3.0...v3.4.0
Contributors
fraxken and antoine-coulon