Skip to content

v1.1.0
Compare
Choose a tag to compare
@ntoskernel ntoskernel released this 04 Jul 15:13
· 21 commits to main since this release
v1.1.0
8bd15b8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

What's Changed

New CLI flags

  • --reflect-findings-in-return-code: the tool will finish with a return code of 66 if any findings detected (#2)
  • --process-count: number of processes in a pool for file analysis (one process per file).
    Default: number of processor cores of your machine or a cpu limit of your container (via cgroup).
    Fallback value: 4.

Lexing and variable detection

  • New 'Variable Suppression Rules' functionality: useful when you need to ignore variables found inside specific code zones.
    Usecase: react-specific html tags with 'key' attributes.
  • Improved language and format guessing, including extension-less files. Still not ideal but way better than before, eq. now we are able to distinguish plain js file from js file with jsx.
  • Support for lexers not included in pygments (like jsx-lexer)

Bugfixes

  • Custom file exclusion rules now work properly (thanks @petskratt for reporting the bug)

Full Changelog: v1.0.6...v1.1.0

Contributors

petskratt
Assets 2
Loading