Skip to content

Releases: iriusrisk/startleft

1.14.0

18 May 12:24
@dfernandezvigo dfernandezvigo
1.14.0
151ca2a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.14.0

Released on 2023-05-18

New features

Terraform

  • Terraform plan Startleft processor
  • Reduce max file size for Terraform

Microsoft Visio

  • Remove temporary Visio files after processed

Fixes

  • Fix documentation GitHub workflow

Others

  • Integrate SonarCloud in StartLeft project
Assets 2
Loading

1.14.0-rc.1

16 May 06:43
@dfernandezvigo dfernandezvigo
1.14.0-rc.1
6566140
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.14.0-rc.1 Pre-release
Pre-release 
Merge pull request #231 from iriusrisk/feature/OPT-347

[feature/OPT-347] to dev
Assets 2
Loading

1.13.0

21 Apr 11:32
@dfernandezvigo dfernandezvigo
1.13.0
30cbf48
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.13.0

Released on 2023-04-20

New features

Microsoft Threat Modeling Tool (MTMT)

  • Improve MTMT file validation

Fixes

  • Fixed: Corrected invalid minlength/maxlength properties (originated by a @stevespringett finding)
  • Fixed: Test GH worflows are failing due to a wrong pip version

Documentation

  • Change from fastAPI to swagger API documentation

Contributions

  • Fixed invalid otmVersion property. Added metadata by @stevespringett in #205
  • Corrected invalid minlength/maxlength properties by @stevespringett in . #204. Although the solution proposed in this pull request was rejected, the finding was taken in consideration and fixed.
  • Example OTM files. Issue by @stevespringett in #37. OTM example files were updated.

Others

  • Example OTM files
  • StartLeft Client: Scan the code with static code analysis tools
  • Upgraded libraries: fastapi, pytest, mkdocs-material, pydown-extensions
  • Check docker configuration files

Contributors

stevespringett
Assets 2
Loading

1.13.0-rc.1

10 Apr 11:30
@dfernandezvigo dfernandezvigo
1.13.0-rc.1
3fb145a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.13.0-rc.1 Pre-release
Pre-release 
1.13.0-rc.1
Assets 2
Loading

1.12.0

28 Mar 13:56
@dfernandezvigo dfernandezvigo
1.12.0
a7f22f2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.12.0

Released on 2023-03-27

New features

Microsoft Threat Modeling Tool (MTMT)

  • Implement nested TrustZones for MTMT
  • Create CLI option for MTMT

Terraform

  • Terraform plan processor PoC
  • Modify $catchall in Terraform
  • Reorganize Terraform integration tests
  • CLI terraform invalid IaC file LoadingIacFileError

Visio

  • Implement nested TrustZones for Visio
  • Visio - Usage of Master UniqueID value to distinguish shapes with same master name

Fixes

  • Fixed: Lucid - Loading diagram file error is returning nullPointer
  • Fixed: String value of representation types are duplicated in code
  • Fixed: Errors with singleton and dataflows in TFPLAN

Documentation

  • Document Terraform Dataflows behavior

Others

  • Change 'properties' name for attributes on generated OTM
  • Remove Otm prefix in otm module
  • Handle the error when trying to validate a binary file in CLI mode
  • Upgraded libraries: shapely, fastapi, setuptools, tox
  • Include the Unit global tests when executing all tests
Assets 2
Loading

1.12.0-rc.1

09 Mar 16:48
@dfernandezvigo dfernandezvigo
1.12.0-rc.1
9d5f5a6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.12.0-rc.1 Pre-release
Pre-release 
1.12.0-rc.1
Assets 2
Loading

1.11.0

23 Feb 18:23
@dfernandezvigo dfernandezvigo
1.11.0
b672221
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.11.0

Released on 2023-02-23

New features

  • Support multiple trustzones of the same type in OTM

Convert LucidChart exported Visio files into OTM

  • Implement Lucid vsdx import
  • Create CLI option for Lucidchart

Microsoft Threat Modeling Tool (MTMT)

  • Improve diagram Representation for MTMT components

Terraform

  • Support multiple resources with the same name in TF
  • Create unit tests for Dataflows in Terraform

CloudFormation

  • Handle the syntax for the short form "!ref" in Cloudformation

Visio

  • Prune dataflows with origin or target on a trustzone

Security

  • Fixed: XML vulnerability

Fixes

  • Fixed: Lucid - Loading diagram file error is returning nullPointer
  • Fixed: Windows run errors in release/1.10

Documentation

  • Add documentation dependencies to StartLeft project

Others

  • Move mapping's Schema to their own slp module
  • Improve unknown errors management from StartLeft
  • Library dependencies updated
  • Unify method in StartLeft integration test to compare results
  • startleft version command without version.py file
Assets 2
Loading

1.10.0

25 Jan 14:52
@dantolin-iriusrisk dantolin-iriusrisk
1.10.0
6809934
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.10.0

Released on 2023-01-25

New features

Visio

  • Label normalization in Visio Shapes.
  • Implement coordinates in Visio

Security

  • Improved logs' security.

Fixes

  • Synchronize generic and uvicorn logs in StartLeft.

Documentation

  • Improve CLI usage page in the GitHub documentation.
  • Improve REST API usage page in the GitHub wiki.
  • Improve OTM page in the GitHub documentation.

Others

  • Create GitHub action to check multiple OS and python versions.
  • Dependencies updated.
Assets 2
Loading

1.9.0

29 Dec 11:17
@dfernandezvigo dfernandezvigo
1.9.0
c138c25
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.9.0

Released on 2022-12-29

Common

  • Create a new public documentation for StartLeft.
  • Create a CONTRIBUTING.md file for Startleft.
  • Map threats and mitigations from MTMT to OTM Standard.
  • Components that come from the same resource have identical ids on IaC

CloudFormation Template

Terraform

  • Simplify Terraform mapping file
  • Create public documentation for TF focused on creating your own TF mappings

Visio

MS Threat Modeling Tool (MTMT) Mappings for IriusRisk

  • Implement coordinates in MTMT.

Fixes

  • [GH-Issue #68] Error - ImportError: failed to find libmagic. Check your installation
  • Unexpected response from Serverless CLI mode

Others

  • Generate the version.py file during the pip install using setuptools_scm
  • Update python library requirement to 3.8 version.
Assets 2
Loading

1.9.0-rc.1

14 Dec 16:23
@dantolin-iriusrisk dantolin-iriusrisk
1.9.0-rc.1
4d92240
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.9.0-rc.1 Pre-release
Pre-release 
Merge pull request #109 from iriusrisk/feature/OPT-600

[OPT-600] to dev
Assets 2
Loading