Releases: future-architect/vuls
v0.16.0
Please use this release with the latest version of dictionaries such as goval-dictonary, etc.
Old dictionaries can't detect it correctly.
Since the DB schema has been changed, you have to delete the DB and fetch it again.
Changelog
591786f feat(oval): support new goval-dictionary model (#1280)
47e6ea2 chore: fix lint warning (#1301)
4a72295 feat(saas): support for library-only scanning (#1300)
9ed5f2c feat(debian): support Debian 11(bullseye) (#1298)
v0.15.14
Changelog
3e67f04 breaking-change(cpescan): Improve Cpe scan (#1290)
b9416ae fix(report): too many SQL variables (#1296)
b4e49e0 feat(GAdocker): Publish docker image with Github Actions (#1291)
020f6ac fix(scan): warning if err occurred while scanning ports (#1294)
7e71cbd fix(gost) sort in ms converter (#1293)
1003f62 chore: update go-cve-dictionary (#1292)
9b18e1f breaking-change(go-exploitdb): support new go-exploitdb (#1288)
24f790f feat(go-cve): update go-cve-dictionary (#1287)
fb8749f fix(cpescan): fix confidence in cpe uri scan (#1286)
96c3592 breaking-change(go-cve-dict): support new go-cve-dictionary (#1277)
d65421c fix(cpescan): JVN scan False-Negative on RDB-backend (#1283)
c52ba44 chore: update readme (#1282)
21adce4 update readme
f24240b feat(library): update trivy v0.19.2 (#1278)
ff83cad feat(os) : support Alma Linux (#1261)
e8c0928 Update ubuntu.go (#1279)
5f4d68c feat(go-msf): update deps (#1275)
9077a83 fix(docker): docker build error (#1274)
v0.15.13
Changelog
543dc99 fix(cpescan): CpeVendorProductMatch not set when Redis Backend (#1273)
f0b3a8b feat(cpescan): Use JVN as a second DB for CPE scan (#1268)
0b9ec05 Support scanning Ubuntu using Gost (#1243)
0bf1241 fix(rocky): fix Scan in Rocky Linux (#1266)
0ea4d58 fix(gost): Use DBDriver ctx in Psuedo (#1264)
5755b00 feat(os) : support Rocky linux (#1260)
1c8e074 Feat report googlechat (#1257) (#1258)
0e0e5ce feat: Support Ubuntu21 (#1231)
23dfe53 chore: update go-exploitdb (#1262)
8e6351a feat(oval): goval-dictionary update (#1259)
3086e27 fix Ubuntu 20.10 End of Life on July 22 2021 (#1256)
b8db2e0 feat(report): Change the priority of CVE information in Debian (#1202)
43b46cb chore: add test data for integration test (#1254)
d0559c7 chore: update gost deps (#1253)
231c63c fix(libscan): support empty LibraryFixedIn (#1252)
2a9aebe fix(report): improve cpe match logic (#1251)
4e535d7 chore: fix build-tags in .goreleaser.yml (#1250)
4b48750 chore: add go.sum test data for integration test (#1249)
0095c40 fix(vet): go vet err of make build-scanner (#1248)
82c1abf fix(report): detection logic bugs for Oracle Linux (#1247)
4098840 feat(scanner) separate func analize libraries (#1246)
e8e3f4d feat(lib): support of Go (go.sum) scan (#1244)
7eb77f5 feat(scan): support external port scanner(nmap) in host machine (#1207)
e115235 fix(test): dev mode to false in package-lock.json (#1242)
151d4b2 fix(scan): Avoid panic when SSH connection refused (#1236)
e553f8b feat(trivy): go mod update trivy v0.17.2 (#1235)
47652ef fix(report): include the num of criticals in total #1233 (#1234)
ab0e950 fix(oracle): extracting only advisory ID from OVAL.title (#1232)
a7b0ce1 refactor(git-conf): config template in github section changed (#1229)
dc9c0ed refactor(git-conf): Specifing ignoreGitHubDismissed per repository (#1224)
17ae386 chore: add a test case #1227 (#1228)
2d369d0 Fix false positive for Oracle Linux (#1227)
c36e645 fix(report): false positive for kernel-related CVE for RedHat, CentOS, Oracle and Amazon #1199 (#1223)
40039c0 fix(report): panic when closing db connection of gost (#1222)
a692cec fix(gost): close gost DB connection in server mode #1217 (#1221)
e7ca491 fix(report): Avoid http reports error (#1216)
23f3e2f fix(config): add Ubuntu 20.10 (#1218)
27b3e17 feat(saas): delete json dir automatically after upload (#1212)
v0.15.12
Changelog
a6e53e4 fix build-tags
4b48750 chore: add go.sum test data for integration test (#1249)
0095c40 fix(vet): go vet err of make build-scanner (#1248)
82c1abf fix(report): detection logic bugs for Oracle Linux (#1247)
4098840 feat(scanner) separate func analize libraries (#1246)
e8e3f4d feat(lib): support of Go (go.sum) scan (#1244)
7eb77f5 feat(scan): support external port scanner(nmap) in host machine (#1207)
e115235 fix(test): dev mode to false in package-lock.json (#1242)
151d4b2 fix(scan): Avoid panic when SSH connection refused (#1236)
e553f8b feat(trivy): go mod update trivy v0.17.2 (#1235)
47652ef fix(report): include the num of criticals in total #1233 (#1234)
ab0e950 fix(oracle): extracting only advisory ID from OVAL.title (#1232)
a7b0ce1 refactor(git-conf): config template in github section changed (#1229)
dc9c0ed refactor(git-conf): Specifing ignoreGitHubDismissed per repository (#1224)
17ae386 chore: add a test case #1227 (#1228)
2d369d0 Fix false positive for Oracle Linux (#1227)
c36e645 fix(report): false positive for kernel-related CVE for RedHat, CentOS, Oracle and Amazon #1199 (#1223)
40039c0 fix(report): panic when closing db connection of gost (#1222)
a692cec fix(gost): close gost DB connection in server mode #1217 (#1221)
e7ca491 fix(report): Avoid http reports error (#1216)
23f3e2f fix(config): add Ubuntu 20.10 (#1218)
27b3e17 feat(saas): delete json dir automatically after upload (#1212)
v0.15.11
v0.15.10
Changelog
6fef4db fix .goreleaser.yml (#1204)
e879ff1 feat(scanner) export pkg list scan method (#1203)
9bfe062 refactor: don't use global Config in private func (#1197)
0179f42 fix(trivy-to-vuls): converts even if null vulnerabilities (#1201)
56017e5 feat(trivy): update trivy (#1196)
cda91e0 refactor: loading owasp dependency check xml (#1195)
5d47adb fix(report): prioritize env vars over config.toml (#1194)
54e73c2 fix(wordpress): enable to detect vulns of WordPress Core (#1193)
2d07507 fix(log): remove log output of opening and migrating db (#1191)
2a8ee4b refactor(report): azure and aws writer (#1190)
1ec31d7 fix(configtest): all servers in the config if no args #1184 (#1189)
02286b0 fix(scan): scan all servers in the config if no args #1184 (#1188)
1d0c5de fix(ubuntu): Fix deferred packages not showing as affected (#1187)
1c4a12c refactor(report): initialize DB connection (#1186)
3f2ac45 Refactor logger (#1185)
518f4dc refactor: VulnDict (#1183)
2cdeef4 refactor(config): validateOnReport (#1182)
0357912 refactor(config): localize config used like a global variable (#1179)
e3c27e1 fix(saas): Don't overwrite config.toml if UUID already set (#1180)
v0.15.9
Changelog
aeaf308 Add test-case to verify proper version comparison in lessThan() (#1178)
f5e47be chore: add a test-case to #1176 (#1177)
50cf13a Pass packInOVAL.Version through centOSVersionToRHEL() to remove the "_" portion so that packInOVAL.Version strings like 1.8.23-10.el7_9.1 become 1.8.23-10.el7.1 (same behavior as newVer, which now allows packInOVAL.Version and newVer to be directly compared). (#1176)
abd8041 fix(scan): yum ps warning for Red Hat family (#1174)
847c643 chore: fix debug message (#1169)
ef8309d chore: remove the heck binary (#1173)
0dff6cf fix(gost/microsoft) add workaround into mitigation (#1170)
v0.15.8
New Features
Display the resolved(patched) CVEs compared to the previous JSON.
--diff option turns on both options -diff-plus and -diff-minus
./vuls tui -diff
./vuls report -format-list -diff
./vuls report -format-full-text -diff
./vuls report -format-one-line-text -diff
Changelog
4c04acb feat(report) : Differences between vulnerability patched items (#1157)
1c4f231 fix(scan): ignore rpm -qf exit status (#1168)
v0.15.7
Changelog
51b8e16 fix(scan): warning if lsof command not found (#1167)
b4611ae fix(scan): fix yum-ps warning Failed to exec which -bash (#1166)
cd67220 fix(scan): yum-ps err Failed to find the package (#1165)
290edff fix(log): output version to log for debugging purpose (#1163)
64a6222 fix(report): set created_at and updated_at of trivy to json (#1162)
adb686b fix(report): set created_at and updated_at of wpscan.com to json (#1161)
d4af341 fix(report): remove duplicated refreshing logic when report with -diff (#1160)
fea7e93 chore: fix comment (#1158)
8b6b8d0 feat(wordpress): define API limit exceed error for wpscan.com (#1155)
4dcbd86 fix(report): set http timeout 10 sec (#1154)