All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog.
- Bump urllib3 from 2.5.0 to 2.6.3 by @dependabot[bot] in #21
- Removed qualifiers by @dacoburn in #1
- Doug/fix trivy socket results by @dacoburn in #2
- Fix action.yml configuration and add GitHub token by @dacoburn in #3
- Update action.yml description for clarity by @dacoburn in #4
- docs: fix link by @ahmadnassri in #5
- Added back in transitive logic and fixed format of integration messages by @dacoburn in #6
- Fixed documentation and version checks by @dacoburn in #7
- Added action inputs by @dacoburn in #8
- Updated examples with PR check and pinning to commit hashes by @dacoburn in #9
- Fixing issue of the git detection logic not using the workspace or GI… by @dacoburn in #10
- Doug/add node and socket back into container by @dacoburn in #11
- Fix for caching result by @dacoburn in #12
- Doug/improve default sast ruleset by @dacoburn in #13
- Fixed hard coded detection for golang by @dacoburn in #14
- Fixing regression in rule name by @dacoburn in #15
- Remove non-existent install options from local-installation.md by @graydonhope in #16
- Fix: Empty CLI string defaults no longer override env/API config by @dc-larsen in #17
- Bump version to 1.0.26 by @dc-larsen in #20
- docs: add Dockerfile auto-discovery workflow pattern by @dc-larsen in #25
- Add scan_type parameter to full scan API calls by @mtorp in #24
- Upgrade 1.0.28 by @mtorp in #27
- feat: add SKIP_SOCKET_REACH and SKIP_SOCKET_SUBMISSION env vars for Node.js Socket CLI integration by @jdalton in #29
- Remove CODEOWNERS entry for @SocketDev/eng by @Raynos in #31
- Improve usefulness of generic output by @trevnorris in #28
- Pin trufflehog to known-good version tag by @lelia in #32
- Fix notifiers reading repo/branch from wrong source by @dc-larsen in #30
- Fix: Jira dashboard config params not reaching notifier by @dc-larsen in #22
- Update CODEOWNERS to reference GitHub Enterprise team name by @lelia in #33
- Enhance GitHub PR comment experience by @lelia in #26
- Fix
CODEOWNERSsyntax by @lelia in #35 - Fix webhook notifier not reading URL from dashboard config by @dc-larsen in #34
- Final
CODEOWNERSupdate with new team name by @lelia in #36 - Bump Trivy from v0.67.2 to v0.69.2 by @dc-larsen in #39
- Bump version to prep for release by @lelia in #40
- Pin
opengrepversion, add Docker smoketest by @lelia in #41 - Add GitHub workflow for
pytestby @lelia in #42 - Fix Slack and MS Teams notifiers not reading URL from dashboard config by @dc-larsen in #37
- Add structured findings to webhook payload by @dc-larsen in #38
- feat: 🐳 multi-stage Docker builds, immutable release pipeline,
CHANGELOGautomation by @lelia in #46 - fix(ci): add conventional commit prefixes to Dependabot config by @lelia in #53
- fix(ci): support breaking change indicator (!) in commit-lint pattern by @lelia in #54
- fix(ci): accept full tag name in workflow_dispatch, drop auto-v-prefix by @lelia in #55
- feat!: switch to pre-built GHCR images by @lelia in #48
- fix: remove trivy from Docker build while assessing compromise impact by @dacoburn in #56
- chore: fix release and updater script by @lelia in #57
- @dacoburn made their first contribution in #1
- @ahmadnassri made their first contribution in #5
- @graydonhope made their first contribution in #16
- @dc-larsen made their first contribution in #17
- @mtorp made their first contribution in #24
- @jdalton made their first contribution in #29
- @Raynos made their first contribution in #31
- @dependabot[bot] made their first contribution in #21
- @trevnorris made their first contribution in #28
- @lelia made their first contribution in #32
Full Changelog: https://github.com/SocketDev/socket-basics/commits/v2.0.2