v2.17.3
Changelog
We identified a bug on versions 2.6.0 to 2.6.2 of Horusec that changed our vulnerabilities hashes and, because of that, broke the pipelines with vulnerabilities already set with false positives and risk accepted.
To solve this problem, our team did the following:
On CLI’s v2.6.3 release, we corrected the issue, so both hashes are identified and accepted.
On Horusec's Platform, we implemented a correction so the hashes could return to default before the bug, avoiding the pipeline to break when updating the CLI. This new configuration will be available in the 2.17.3 version.
For more information, check out our GitHub’s issues:
CLI: ZupIT/horusec#680
Platform: https://github.com/ZupIT/horusec-platform/issues/390
b79af43 Commit from GitHub Actions (New-Release)
98929d1 migration: Improving migration script to avoid large amount of data and run just one time (#405)
e7cb11d api: added migration to avoid horusec id in stored vuln hashes (#389)
f73adad ci: add GH token with sign permissions (#347)
43bd86e ci: add new release process (#320)
Docker images
docker pull horuszup/horusec-webhook:v2.17.3
docker pull horuszup/horusec-webhook:v2
docker pull horuszup/horusec-webhook:v2.17
docker pull horuszup/horusec-core:v2.17.3
docker pull horuszup/horusec-core:v2
docker pull horuszup/horusec-core:v2.17
docker pull horuszup/horusec-api:v2.17.3
docker pull horuszup/horusec-api:v2
docker pull horuszup/horusec-api:v2.17
docker pull horuszup/horusec-migrations:v2.17.3
docker pull horuszup/horusec-migrations:v2
docker pull horuszup/horusec-migrations:v2.17
docker pull horuszup/horusec-messages:v2.17.3
docker pull horuszup/horusec-messages:v2
docker pull horuszup/horusec-messages:v2.17
docker pull horuszup/horusec-auth:v2.17.3
docker pull horuszup/horusec-auth:v2
docker pull horuszup/horusec-auth:v2.17
docker pull horuszup/horusec-analytic:v2.17.3
docker pull horuszup/horusec-analytic:v2
docker pull horuszup/horusec-analytic:v2.17
docker pull horuszup/horusec-vulnerability:v2.17.3
docker pull horuszup/horusec-vulnerability:v2
docker pull horuszup/horusec-vulnerability:v2.17