v2.13.1

2.13.1 (2024-08-28)

Bug Fixes

• schema: relax for fix (ee5e123)

v2.13.0

2.13.0 (2024-08-28)

Bug Fixes

• add readonly constraint to archetypeSchema (c74d116)
• Improve path traversal prevention in repoFilesystemFacts.ts (f65f595)
• schema: fix schema validation and incorrect default rule code in setupEngine (0a3c65c)
• update import statement for RuleConfigSchema (a658127)

Features

• Add new types for IsBlacklistedParams and isWhitelistedParams (2c43c82)
• Update archetype typedef and jsonschema to validate semver strings (2bba2b1)

v2.12.1

2.12.1 (2024-08-25)

Bug Fixes

• deps: reduce noise in dependency checks (88f3ecb)

v2.12.0

2.12.0 (2024-08-25)

Bug Fixes

• analysis: ensure long single-line files are catered for and npm namespaces (509b4db)
• Handle @namespace packages in dependency analysis (b5314ac)
• Refactor repoFileAnalysis function to improve performance (ae725bb)

Features

• Implement file content splitting for analysis (4d5f049)

v2.11.0

2.11.0 (2024-08-24)

Features

• Add documentation for custom operators in x-fidelity (d015fff)
• Add new operators section in README (a306c4d)
• Update README.md with new features and enhancements (751b4ed)

v2.10.0

2.10.0 (2024-08-24)

Bug Fixes

• Add error logging in fileContains operator (7a41a2f)
• Correct the logic in the fileContains operator (9f45231)
• filecontains: ensure detailed line numbers are included in results (3d94716)
• Update fileContains operator implementation (6a11a46)
• Update fileContains operator implementation (f9a8f03)
• Update fileContains test cases to provide second argument (9d68f43)
• Update fileContains test expectations (767d72f)

Features

• Add repoFileAnalysis function to analyze files in a repository (a100cf3)
• Allow checkPattern param in repoFileAnalysis to be an array of patterns (896fc2d)

v2.9.0

2.9.0 (2024-08-23)

Features

• Add exemptions section to README (8e43dfe)

v2.8.0

2.8.0 (2024-08-23)

Bug Fixes

• Add archetype parameter to loadExemptions function (0a9d95b)
• Add shared secret to exemption loader request (37479d4)
• Add test case for using default archetypes when no config sources are provided (bf90659)
• Change log level from debug to info for fetching remote exemptions (056b55b)
• Clone and update exempted rule before adding to engine (c731b31)
• Ensure at least two rules are added to the engine (8c58418)
• Ensure at least two rules are added to the engine for testing purposes (a6da7aa)
• Handle errors when loading rules and add default rules (87216a4)
• Import exemptions object from archetypes module and handle undefined case in loadDefaultExemptions (c523352)
• Normalize GitHub URL by correctly handling forward slashes (6ed2b49)
• Normalize GitHub URLs when checking exemptions (8645ace)
• Refactor exemption handling in ConfigManager (f114d45)
• Remove unnecessary rule addition logic (620d365)
• Update exemptions file path in ConfigManager test (af72043)
• Update expectation for mockAddRule in engineSetup.test.ts (177b39c)
• Update expectations for mockAddRule in engineSetup.test.ts (317acdb)
• Update loadExemptions function calls to match expected parameters (8f6da9a)
• Update repository URLs in exemption configurations (9bbfcb2)
• Update test case for using default archetypes when no config sources are provided (ca42766)
• Update test for default archetype config when unable to load local config (42661f6)
• Use isExempt function from exemptionLoader (c34dd13)

Features

• add example exemptions JSON files for node-fullstack and java-microservice archetypes (4e00c9d)
• add exemptions route to config server (1618737)
• add remote exemption loading to ExecutionConfig (d5e2862)
• add telemetry event for allowed exemptions (94ad81b)
• add unit tests for exemptions-related features (f757a67)
• Add unit tests for normalizeGitHubUrl function (f322fa2)
• Enhance normalizeGitHubUrl to support self-hosted GitHub instances (958837d)
• exemptions: basic exemptions model (949cdd3)
• exemptions: remotely managed exemptions (1bf485c)
• Implement remote, local, and default exemption loading (6f6c74f)

v2.7.0

2.7.0 (2024-08-22)

Bug Fixes

• Add missing repoUrl property to mockParams object (e94114d)

Features

• exemption process: allow a repo to have a timelimited waiver for a given rule (42d4b7d)

v2.6.0

2.6.0 (2024-08-22)

Bug Fixes

• Change log level from debug to info for better visibility (8173462)
• deps: monorepo fixes (07021e8)
• Fix issues with dependency version validation and handling (75282c1)
• Improve implementation and test coverage of openaiAnalysisHighSeverity (acaf784)
• Improve local dependency collection (8d7732f)
• improve semver range checking in repoDependencyAnalysis (ba15f5a)
• Improve semver version comparison logic (8f943e1)
• Update collectLocalDependencies function to return correct dependency structure (fc3fccb)
• Update collectLocalDependencies function to return expected structure (42ee815)
• Update mocking of collectLocalDependencies function in tests (5d8d647)
• Update repoDependencyAnalysis function to only add dependencies that don't meet requirements (1070e5f)
• Update semverValid function to return correct result (158f555)
• Update test case for collectLocalDependencies function (4b35d3f)
• Use toEqual for boolean comparisons in openaiAnalysisHighSeverity tests (16425c6)

Features

• Add collectLocalDependencies function to repoDependencyFacts (8aa6311)
• Add support for version ranges in repoDependencyAnalysis (ce82a21)
• create comprehensive unit test suite for repoDependencyFacts.ts (a92b83b)
• rewrite src/facts/repoDependencyFacts.test.ts with correct mocking and comprehensive test coverage (66e26c2)