v1.24.0

What's Changed

• feat: Add markdown and html output formats by @liamg in #1782

Full Changelog: v1.23.3...v1.24.0

v1.23.3

Fixing the docker build - putting tfsec in the correct location for execution

Full Changelog: v1.23.2...v1.23.3

v1.23.2

What's Changed

• chore(deps): bump github.com/stretchr/testify from 1.7.1 to 1.7.2 by @dependabot in #1770
• feat: Install git on the CI Docker by @owenrumney in #1772
• feat: download config from remote location with config-file-url by @owenrumney in #1774
• fix: add git to Docker file so it can download modules by @owenrumney in #1777
• feat: add support for using custom check file from remote location by @owenrumney in #1776
• chore(deps): Bump the defsec version by @owenrumney in #1778
• fix: docker build by @owenrumney in #1781

Full Changelog: v1.22.1...v1.23.2

v1.22.1

What's Changed

• fix: infer no-code when concise by @owenrumney in #1764
• chore(deps): Update defsec to v0.62.0 by @liamg in #1768

Changes in defsec v0.62.0

• feat(Dockerfile): Add support for 'Containerfile' detection as required by trivy/fanal by @liamg in aquasecurity/defsec#660
• chore(deps): bump github.com/open-policy-agent/opa from 0.40.0 to 0.41.0 by @dependabot in aquasecurity/defsec#659
• chore(deps): bump gopkg.in/yaml.v3 from 3.0.0 to 3.0.1 by @dependabot in aquasecurity/defsec#658
• fix: Fix GKE cluster node config when non-default node-pool is used by @liamg in aquasecurity/defsec#662
• fix: Fix no-auto-mount-service-token recommended action by @kajogo777 in aquasecurity/defsec#654
• fix: Fix unresolved string slice behaviour by @liamg in aquasecurity/defsec#664

Full Changelog: v1.22.0...v1.22.1

v1.22.0

What's Changed

• chore(deps): bump github.com/hashicorp/go-version from 1.4.0 to 1.5.0 by @dependabot in #1750
• fix: remove broken git submodule reference by @smelchior in #1751
• chore(deps): bump goreleaser/goreleaser-action from 2 to 3 by @dependabot in #1748
• chore(deps): bump alpine from 3.15 to 3.16.0 by @dependabot in #1747
• chore(deps): bump github.com/aquasecurity/defsec from 0.57.8 to 0.59.0 by @dependabot in #1749
• chore(deps): Update defsec to v0.60.0 by @liamg in #1758
• fix: Update defsec to fix unknown value error in reference by @liamg in #1759
• chore(deps): bump crazy-max/ghaction-import-gpg from 4.4.0 to 5.0.0 by @dependabot in #1755
• feat: add glob support to exclude paths by @owenrumney in #1760
• feat: add no code option by @owenrumney in #1762
• fix(modules): Fix edge case causing infinite loop when resolving nested modules by @liamg in #1761
• chore(deps): bump defsec by @owenrumney in #1763

Defsec Updates

• feat: split out DAX cluster and DynamoDB Table (https://github.com/aquasecurity/defsec#/defsec#653) (Owen Rumney)
• feat: support managed encryption for sqs (https://github.com/aquasecurity/defsec#/defsec#651) (Owen Rumney)
• feat: support for AWS EMR security configuration (https://github.com/aquasecurity/defsec#/defsec#643) (brandon-maxar)
• fix(terraform): Properly support relative paths in remote modules (https://github.com/aquasecurity/defsec#/defsec#649) (Liam Galvin)
• fix(terraform): Fix module loading from the local .terraform cache (https://github.com/aquasecurity/defsec#/defsec#648) (Liam Galvin)
• fix(terraform): Prevent panics when block keys are unresolvable (https://github.com/aquasecurity/defsec#/defsec#646) (Liam Galvin)
• fix(terraform): Fix resolution of provider-added values e.g. arn/id (https://github.com/aquasecurity/defsec#/defsec#645) (Liam Galvin)
• fix(google): Fix false positive for Google Compute Firewall Rules (https://github.com/aquasecurity/defsec#/defsec#641) (Liam Galvin)
• fix(google): Fix false positive in SQL instance backups for replicas (https://github.com/aquasecurity/defsec#/defsec#640) (Liam Galvin)
• test: add tests for azure network tf adapters (https://github.com/aquasecurity/defsec#/defsec#634) (vanesasejdiu)
• test: add tests for azure storage tf adapters (https://github.com/aquasecurity/defsec#/defsec#632) (vanesasejdiu)
• test: add tests for google storage tf adapters (https://github.com/aquasecurity/defsec#/defsec#630) (vanesasejdiu)
• fix: Single public IPs should ba acceptable as prefixes (https://github.com/aquasecurity/defsec#/defsec#629) (Owen Rumney)
• fix: support source/target tags for GCP firewall (https://github.com/aquasecurity/defsec#/defsec#628) (Owen Rumney)
• docs: Add example for >2.97.0 of the AzureRM provider for container logging (https://github.com/aquasecurity/defsec#/defsec#627) (Owen Rumney)
• chore(deps): bump github.com/hashicorp/go-getter from 1.5.11 to 1.6.1 (https://github.com/aquasecurity/defsec#/defsec#620) (dependabot[bot])
• test: add tests for google sql tf adapters (https://github.com/aquasecurity/defsec#/defsec#619) (vanesasejdiu)
• test: add tests for google gke tf adapters (https://github.com/aquasecurity/defsec#/defsec#617) (vanesasejdiu)
• test: add tests for google compute tf adapters (https://github.com/aquasecurity/defsec#/defsec#615) (vanesasejdiu)
• perf: Improve code highlighting by caching syntax highlighted inputs (https://github.com/aquasecurity/defsec#/defsec#610) (Liam Galvin)
• feat: Truncate source code with an optional limit (https://github.com/aquasecurity/defsec#/defsec#608) (Liam Galvin)
• fix: Fix relative paths in JUnit output (https://github.com/aquasecurity/defsec#/defsec#605) (Liam Galvin)
• fix: make highlight omit empty (https://github.com/aquasecurity/defsec#/defsec#602) (Owen Rumney)
• fix: remove Highlighted from code explicitly (https://github.com/aquasecurity/defsec#/defsec#600) (Owen Rumney)
• fix: Fix ansi double escapes (https://github.com/aquasecurity/defsec#/defsec#599) (Liam Galvin)
• test: add tests for aws vpc tf adapters (https://github.com/aquasecurity/defsec#/defsec#597) (vanesasejdiu)
• test: add tests for digital-ocean compute tf adapters (https://github.com/aquasecurity/defsec#/defsec#595) (vanesasejdiu)

New Contributors

• @smelchior made their first contribution in #1751

Full Changelog: v1.21.2...v1.22.0

v1.21.2

What's Changed

• chore(deps): bump github.com/liamg/clinch from 1.5.6 to 1.6.1 by @dependabot in #1737
• chore(deps): bump github/issue-labeler from 2.4.1 to 2.5 by @dependabot in #1735
• chore(deps): bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 by @dependabot in #1734
• docs: Fix incorrect namespace usage in rego docs by @liamg in #1743

Full Changelog: v1.21.1...v1.21.2

v1.21.1

What's Changed

• fix: Fix JUnit paths by @liamg in #1740

Full Changelog: v1.21.0...v1.21.1

v1.21.0

What's Changed

• feat: Improved syntax highlighting via chroma in defsec by @liamg in #1724
• feat: Add customisable code themes by @liamg in #1725

Full Changelog: v1.20.2...v1.21.0

v1.20.2

What's Changed

• chore(deps): bump docker/login-action from 1 to 2 by @dependabot in #1720
• fix(ignores): handle parameter based ignores in a foreach by @owenrumney in #1723

Full Changelog: v1.20.1...v1.20.2

v1.20.1

What's Changed

• chore: Update defsec to v0.54.0 by @liamg in #1715
• fix(parsing): Symlink resolution fix by @owenrumney in #1722

Full Changelog: v1.20.0...v1.20.1