Skip to content

v1.7.9
Compare
Choose a tag to compare
@gabriel-cx gabriel-cx released this 02 Oct 11:59
· 2953 commits to master since this release
v1.7.9
af8aa2e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

🚀 New features and improvements

feat(query): ansible config communication_over_http in #6627
feat(query): ansible config privilege_escalation_using_become_plugin in #6628
feat(query): ansible config logging_of_sensitive_data in #6697
feat(query): ansible playbooks privilege escalation using become plugin in #6695
feat(query): ansible playbooks Unpinned Package Version in #6693
feat(query): ansible playbooks Insecure Relative Path Resolution in #6705
feat(query): ansible playbooks Logging of Sensitive Data in #6700
feat(query): ansible playbooks risky file permissions in #6694
feat(engine): experimental features queries scan in #6614
feat(query): github workflows script injection query in #6744
feat(query): added cicd github query unsecured commands in #6720
feat(query): github workflows run injection query in #6742

🐛 Bug fixes

fix(security): critical CVEs in terraform and terraform-provider-azurerm by @jeremypetit-grtgaz in #6701

👻 Maintenance

docs(guides): changed code-ql action to v2 due to v1 depecration by @LuisVentuzelos in #6750
docs(queries): update queries catalog in #6732
update(doc): adding aws cdk integration in #6740

New Contributors

@jeremypetit-grtgaz made their first contribution in #6701
@LuisVentuzelos made their first contribution in #6750

Contributors

LuisVentuzelos and jeremypetit-grtgaz
Assets 3
Loading