Releases - vet - Gitea: Self-hosted GitHub

safedep/vet

Fork 0

mirror of https://github.com/safedep/vet.git synced 2025-12-10 00:22:08 -06:00

RSS Feed

v1.8.6 1101fdab0f
v1.8.6 Stable

giteasync released this 2024-11-28 23:37:21 -06:00 | 231 commits to main since this release
Changelog
- 0186904385 Merge pull request #291 from AmalChandru/docs/update-tree-sitter-link-code-analysis
- 1101fdab0f Merge pull request #294 from safedep/feat/293-pkg-insight-json-report-spec
- f02786f4d1 feat: Add project info in JSON report
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  541 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  16 MiB
- vet_Darwin_x86_64.tar.gz
  17 MiB
- vet_Linux_x86_64.tar.gz
  17 MiB
- vet_Windows_x86_64.zip
  17 MiB
v1.8.5 041dd151ae
v1.8.5 Stable

giteasync released this 2024-11-25 08:53:05 -06:00 | 235 commits to main since this release
Changelog
- 4d5bbfff03 Merge pull request #288 from AmalChandru/docs/fix-broken-link-policy-as-code
- 041dd151ae Merge pull request #289 from safedep/feat/package-json-parser
- 2333893d4e feat: Add support for package.json parsing with approximate semver resolution
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  541 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  16 MiB
- vet_Darwin_x86_64.tar.gz
  17 MiB
- vet_Linux_x86_64.tar.gz
  17 MiB
- vet_Windows_x86_64.zip
  17 MiB
v1.8.4 8a56f5b195
v1.8.4 Stable

giteasync released this 2024-11-23 05:39:39 -06:00 | 239 commits to main since this release
Changelog
- 1308f2610d Merge pull request #283 from safedep/ci/vet-windows-releaser
- af18e3ac8b Merge pull request #284 from safedep/ci/fix-vet-windows-releaser
- 8a56f5b195 Merge pull request #285 from safedep/ci/fix-vet-windows-releaser
- 094e557720 ci: Add Windows build support
- 7c3500db41 fix: Goreleaser workflow
- 7f23bad2d3 fix: Goreleaser workflow - use sudo for apt-get install
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  541 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  16 MiB
- vet_Darwin_x86_64.tar.gz
  17 MiB
- vet_Linux_x86_64.tar.gz
  17 MiB
- vet_Windows_x86_64.zip
  17 MiB
v1.8.3 9fb9b3fca6
v1.8.3 Stable

giteasync released this 2024-11-18 09:46:10 -06:00 | 245 commits to main since this release
Changelog
- a9eb625796 Merge pull request #270 from safedep/fix/fix-purl-handling-gha
- 1217a3717a Merge pull request #274 from safedep/feat/insights-v2-enricher
- 4f18e7986a Merge pull request #278 from safedep/dev-nikhil
- 3c70b4a0c9 Merge pull request #280 from safedep/chore/dependency-upgrade-2024-11-18
- 080964f1d1 Merge pull request #281 from safedep/feat/enhance-markdown-summary-reporter
- 9fb9b3fca6 Merge pull request #282 from safedep/feat/add-pm-namespace-json-report
- 358861d283 Updated maintainers
- 652b465893 chore: Add error msg when Insights v2 is used without API key
- 41a9b533de chore: Dependency upgrades
- 007adb4a5a ci: Run insights v2 E2E only when PR is from same repository
- ebf6516817 feat: Add insights v2 API url config and client
- 378b1ed89e feat: Add insights v2 enricher
- 1899b99502 feat: Add source and namespace in manifest in JSON report
- 780375b489 feat: Enhance markdown summary reporter to use collapsable sections
- 350ab7831c fix: Add GITHUB_TOKEN for e2e tests
- 887f3d9a93 fix: E2E tests to use insights v2 flag from env
- 4e4302f530 fix: E2E with safedep API key
- 42fce64f6e fix: E2E with safedep API key env variable
- f163d4c5b7 fix: E2E with safedep tenant env variable
- 0d698b7b21 fix: GitHub E2E to use control tower ecosystem
- fcc4c4b2da fix: GitHub reader E2E test to make it predictable
- b197943ada fix: Handle current version for packages
- 2031fc6d17 fix: Insights v2 enricher to call backend API
- 78590158c7 fix: Insights v2 vulnerabilities mapper
- d7356d8cf7 fix: PURL handling for GitHub Actions
- 26cfebd6fa fix: Remove GITHUB_TOKEN from e2e test run
- 8f29d4aba0 fix: Show msg to differentiate between authenticated or non-auth scans
- 130ee7dff6 fix: Use terraform provider as the ecosystem for terraform lockfiles
- 6c0f4269f3 refactor: Model ecosystem mapper to maintain SSOT
- d63fed2543 wip: Map insights v2 to v1
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  16 MiB
- vet_Darwin_x86_64.tar.gz
  17 MiB
- vet_Linux_x86_64.tar.gz
  17 MiB
v1.8.2 f5e7aa9457
v1.8.2 Stable

giteasync released this 2024-10-24 22:50:54 -05:00 | 276 commits to main since this release
Changelog
- 73f6678f6b Added terraform parser support to generate a package manifest
- d9a6fd9015 Added terraform parser support to generate a package manifest
- e196604c1f Added tests for terraform lockfile
- e1f707141f Changed .terraform.lock.hcl to customParserTerraform
- 5429f8f3ff Increased parser number in test from 17 to 18
- 82c631c907 Mapped ecosystem to custom terraform type
- 63de99fab8 Merge pull request #260 from insaaniManav/feat/terraform-support
- 9feafdbb88 Merge pull request #263 from safedep/feat/cloud-apikey-management
- 298ddbe199 Merge pull request #264 from safedep/feat/terraform-support
- f5e7aa9457 Merge pull request #266 from safedep/feat/add-support-dev-mode
- f1c7c6123a No need to read the file pass it to the parser directly
- 0979eda194 PR review changes
- 8a32af83dc feat: Add api key list command
- 14309727fc feat: Add automatic resolution of terraform lockfile name to custom parser type
- edb5c25b62 feat: Add support for API URL overrides
- 25281e511f feat: Add support to delete API key
- 760079337e feat: Add table helper to ease table creation and persistence to file
- d854a93631 fix: Type handling in cloud query response
- 6c7b160e84 fix: UI rendering for cloud whoami command
- 3c4f4275ba fix: Use idiomatic cmd arg name
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  16 MiB
- vet_Darwin_x86_64.tar.gz
  17 MiB
- vet_Linux_x86_64.tar.gz
  17 MiB
v1.8.1 160c094ad3
v1.8.1 Stable

giteasync released this 2024-10-19 02:47:56 -05:00 | 296 commits to main since this release
Changelog
- b6b26b7811 Added snapshot to goreleaser
- 96360bad60 Made version v2
- 7eae3203f3 Merge pull request #245 from safedep/ci/vet-enable-cloud-mode
- 53e5f6d244 Merge pull request #246 from safedep/chore/dependency-upgrade-2024-10-11
- 708712abfc Merge pull request #247 from safedep/feat/add-query-schema-view-command
- 6123c75f96 Merge pull request #249 from safedep/feat/add-gha-parser
- f237b88b46 Merge pull request #254 from safedep/fix/vet-ci-dependabot
- 763772c98e Merge pull request #255 from insaaniManav/chore/goreleaser-upgrade
- cc45ff513a Merge pull request #258 from safedep/fix/multi-dev-20241018
- 160c094ad3 Merge pull request #259 from safedep/ci/fix-goreleaser-action-trigger
- 9c32f4d8ca Pinned action version made it specific
- beb6e2d96a Pinned action version made it specific
- 67cdf8e536 Removed debug flags and only run on tags
- be85c7ec93 Removed debug flags and only run on tags
- 44743a962a Updated commit hash and removed dry runs
- 985c68731e Updated goreleaser to v2
- ae8c2892d6 Updated goreleaser workflow with commit hash pin
- ec4bd2c341 Updated goreleasr file to version v2
- 105217834d chore: Add debug log for publish policy violation
- 15063e5993 chore: Dependency upgrades
- d39b4c16ee chore: Update Dockerfile with Go version
- 14bf541042 chore: Update Go to 1.23
- b707398a10 chore: Update dependencies
- 155343dc43 ci: Enable SafeDep cloud for vet
- feb90a9289 feat: Add initial support for scanning GitHub Actions
- c01a24c203 feat: Add support for viewing Cloud Query service schema
- d2290cdfe7 feat: Add support to skip using GitHub dependency graph API
- dde52a9d01 fix: #253: Disable cloud mode for Dependabot or external PR
- f1d6f51237 fix: Allow query limit to be configurable
- eeda65a8b7 fix: Bug in manifest path handling in sync reporter
- d213b87171 fix: Enable support for packagist ecosystem
- 24cb277b82 fix: GitHub reader test case
- 78a728b87a fix: SPDX test cases after supporting GitHub actions
- a8cb51c0c5 fix: goreleaser action trigger
- b87652bb27 fix: test case for github reader
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  15 MiB
- vet_Darwin_x86_64.tar.gz
  16 MiB
- vet_Linux_x86_64.tar.gz
  16 MiB
v1.8.0 aa501a76c0
v1.8.0 Stable

giteasync released this 2024-10-11 10:33:33 -05:00 | 332 commits to main since this release
Changelog
- 40acc58 Merge branch 'safedep:main' into main
- 403c71d Merge pull request #240 from r0075h3ll/main
- 9b33168 Merge pull request #241 from safedep/docs/style-fix-dependency-inventory
- aa501a7 Merge pull request #244 from safedep/feat/cloud-report-sync-v2
- c0e915c Remove auth trial command for cloud commands
- 59967ca Update production identity service info
- d6cb45b add image
- 06b080a feat: Add API key management command
- a613190 feat: Add cloud ping command
- debe15e feat: Add cloud query command
- 7686e85 feat: Add cloud register command
- eeaf4e1 feat: Add cloud whoami command
- 30ac9c0 feat: Add support for cloud login
- fce0410 feat: Add support for publishing policy violation
- fca2b8e feat: Cloud report sync support multi-project sync
- 5c1052c feat: Update cloud sync reporter to include namespace
- 7051183 feat: Update report sync using grpc
- bda53d0 fix: Fix E2E test case
- 18af8d5 fix: Package manifest namespace and path handling
- 7cb7e7f fix: Persist tenant domain post onboarding and login
- 69e32d9 fix: Tenant domain handling in cloud commands
- 4f1cb39 fix: Update README
- 0df9261 fix: Verify auth before persisting
- 6ec6cf2 fix: sarif test case
- ad6340e refactor: API key configuration command
- a9b424d refactor: Cloud report sync to enable syncing violation events
- 7a5d637 refactor: Enable tool service session pooling in cloud sync reporter
- 95c87b4 refactor: Move get dependencies enumerator to models
- d7a1508 refactor: Remove OpenAPI specs for deprecated control API and use gRPC report sync client
- d8d94b7 refactor: Remove deprecated API generated code
- 476cd4d refactor: gRPC connection setup into auth package
- d016c63 refactor: grpc client to separate cloud and sync API
- d0884a2 update dependency inventory doc
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  15 MiB
- vet_Darwin_x86_64.tar.gz
  16 MiB
- vet_Linux_x86_64.tar.gz
  16 MiB
v1.7.0 377646078f
v1.7.0 Stable

giteasync released this 2024-09-07 05:40:32 -05:00 | 368 commits to main since this release
Changelog
- 78af01e Merge pull request #234 from safedep/feat/insights-client-retry-pool
- 3776460 Merge pull request #239 from safedep/feat/238-add-jar-scanning-support
- 8dc5572 chore: Update dependencies
- 8495e3d feat: Add retriable http client for insights service
- a69cd67 feat: Add support for jar scanning
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  14 MiB
- vet_Darwin_x86_64.tar.gz
  15 MiB
- vet_Linux_x86_64.tar.gz
  15 MiB
v1.6.1 32c2b07e5b
v1.6.1 Stable

giteasync released this 2024-08-09 04:50:28 -05:00 | 373 commits to main since this release
Changelog
- 1645f40 Merge pull request #225 from safedep/docs/update-sarif-use-case
- 5aa2027 Merge pull request #228 from safedep/feat/code-analysis-framework
- 26d68d4 Merge pull request #229 from safedep/chore/update-deps-07-2024
- 32c2b07 Merge pull request #232 from safedep/fix/lfp-npm-accepted-trusted-url-path
- e49ab7e chore: Dependency upgrades
- e6f6288 feat: Code analysis framework infra
- 95cc1e3 fix: Accept trusted URL base for LFP analyser
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  15 KiB
- vet_Darwin_arm64.tar.gz
  11 MiB
- vet_Darwin_x86_64.tar.gz
  12 MiB
- vet_Linux_x86_64.tar.gz
  12 MiB
v1.6.0 f81a15d78e
v1.6.0 Stable

giteasync released this 2024-06-20 23:29:38 -05:00 | 381 commits to main since this release
Changelog
- c2175fe Merge pull request #219 from safedep/chore/update-deps-06-2024
- f1e78cf Merge pull request #223 from safedep/feat/sarif-reporting
- 48ece84 chore: Update dependencies
- f81a15d ci: Pin goreleaser version in GHA workflow
- 47c605e feat: Add support for SARIF reporting #22
- c4d4cb3 fix: Flaky test with graph dependents
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)
- checksums.txt
  452 B
- multiple.intoto.jsonl
  14 KiB
- vet_Darwin_arm64.tar.gz
  8.9 MiB
- vet_Darwin_x86_64.tar.gz
  9.4 MiB
- vet_Linux_x86_64.tar.gz
  9.4 MiB

... 2 3 4 5 6 ...

68 Releases 79 Tags

v1.8.6 Stable

Changelog

v1.8.5 Stable

Changelog

v1.8.4 Stable

Changelog

v1.8.3 Stable

Changelog

v1.8.2 Stable

Changelog

v1.8.1 Stable

Changelog

v1.8.0 Stable

Changelog

v1.7.0 Stable

Changelog

v1.6.1 Stable

Changelog

v1.6.0 Stable

Changelog