Skip to content

Releases: IBM/audit-ci

v2.5.1

15 Feb 04:08
@quinnturner quinnturner
v2.5.1
0af1d5e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.5.1

Fixes:

#129 - fix: NPM ENOAUDIT message capturing improvements

Assets 2
Loading

v2.5.0

14 Feb 20:28
@quinnturner quinnturner
v2.5.0
e836b34
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.5.0

Fixes:
#120 - fix: Get audit-ci version from package.json

Docs:
#123 - docs: Change suggested usage to include master

Build:
#121 - fix(CI): Update CircleCI and Travis-CI build configs
#122 - fix(CI): audit-ci checks in CircleCI on PR builds

Assets 2
Loading

Add current audit-ci version to output

24 Oct 16:46
@quinnturner quinnturner
v2.4.2
9ba2ec5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Add current audit-ci version to output

#114 - Add current audit-ci version to output
#115 - chore(contributing): Improve testing section

Assets 2
Loading

Remove duplicate advisories from whitelisted list

23 Oct 00:23
@quinnturner quinnturner
v2.4.1
5ff791c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Remove duplicate advisories from whitelisted list

Fixes:

#112: Remove duplicate advisories from whitelisted list

Assets 2
Loading

Add list of advisories to failed summary output

29 Sep 22:56
@quinnturner quinnturner
v2.4.0
73339c1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Add list of advisories to failed summary output

Features

  • Add list of advisories to failed summary output (#110)
Assets 2
Loading

Add `--path-whitelist` option and fix `--pass-enoaudit`

05 Aug 23:55
@quinnturner quinnturner
v2.3.0
920b0df
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Add `--path-whitelist` option and fix `--pass-enoaudit`

Features:
#104 - Add "path-whitelist" option

Fixes:
#108 - Fix --pass-enoaudit to not always pass an audit

Docs:
#101 - README typo fix for the --report-type
#105 - Aditional examples for path whitelisting

Assets 2
Loading

Adds `JSONStream` for handling JSON data too big for `JSON.parse`

15 Jul 15:16
@quinnturner quinnturner
v2.2.0
123005e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Adds `JSONStream` for handling JSON data too big for `JSON.parse`

Fixes:

  • #97 - Adds JSONStream for handling JSON data too big for JSON.parse
  • #98 - Change low vulnerability dependency test

Docs:

  • #99 - Add --pass-enoaudit information to README
  • #101 - Typo fix for the --report-type
Assets 2
Loading

Introduce `-pass-enoaudit` flag

28 Jun 13:52
@quinnturner quinnturner
v2.1.0
d92ba34
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Introduce `-pass-enoaudit` flag

Features

#88 - Added --pass-enoaudit flag to mitigate issues with registries having service unavailability

Assets 2
Loading

Fix retry mechanism for NPM ENOAUDIT

06 Jun 15:52
@quinnturner quinnturner
v2.0.1
b7ba2f3
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Fix retry mechanism for NPM ENOAUDIT

Diff: https://github.com/IBM/audit-ci/compare/v2.0.0..v2.0.1

Bug fixes
Fix retry mechanism for another version of NPM error message: #89

Assets 2
Loading

Use --report-type {type} instead of --report or --summary

29 May 16:30
@quinnturner quinnturner
v2.0.0
b7d70ed
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Use --report-type {type} instead of --report or --summary

Diff: https://github.com/IBM/audit-ci/compare/v1.7.0..v2.0.0

BREAKING

The default report output has been changed for Yarn and NPM. Instead of showing the audit summary alone, it shows the audit summary as well as relevant vulnerabilities. This behaviour can be changed using the --report-type option.

Spec:

--report-type important --> (default) Show the audit summary and relevant vulnerabilities
--report-type summary --> Only show the audit summary (# of each vulnerability)
--report-type full --> Show the full audit report

Features

  • Introduce --report-type {important,summary,full} flag #74 (closes #64 )

Chores

  • Deprecate --report in favour of --report-type full
  • Deprecate --summary in favour of --report-type summary

Major release due to changing the default behaviour for audit reporting and deprecating key options

Assets 2
Loading