Releases: Tencent/CodeAnalysis
Releases · Tencent/CodeAnalysis
v1.9.0
What's Changed
- ✨ add tool license-classifier json by @yql70 in #832
- ✨ add pyright tool by @mapyJJJ in #850
- 🎨 分析方案支持查看所有已配置规则 by @freyaLo in #774
- 🎨 增加CLS即将过期提醒 by @bensonhome in #776
- 🎨 update tool TCA-Armory-R by @yql70 in #778
- 🎨 catch information of Error-Prone by @didebughu in #780
- 🎨 使用模板新建分析项目支持修改分析方案名称 by @freyaLo in #794
- 🎨 tca_ql_php_beta is deprecated by @cyw3 in #815
- 🎨 tool-tscan跳过处理空结果文件 by @yql70 in #824
- 🎨 add tool iwyu-0.19 by @didebughu in #825
- 🎨 add rule for iwyu by @didebughu in #826
- 🎨新增支持语言类型 by @yql70 in #835
- 🎨 tool-cpplint优化路径传入 by @yql70 in #834
- 🎨 团队概览展示联系方式 by @freyaLo in #838
- 🎨 工具列表添加工具include-what-you-use by @didebughu in #849
- 🎨 luacheck指定输出日志 by @cyw3 in #858
- 🎨 完善Docker构建解决原基础镜像Debian-12.0与mariadb-10.6不兼容问题 by @ontheway01 in #865
Fixes
- 🐛 修复localscan设置扫描目录后,分析方案配置的过滤路径不生效问题 by @bensonhome in #782
- 🐛 Handle xml file parsing exception by @didebughu in #792
- 🐛 项目列表状态筛选修复 by @freyaLo in #809
- 🐛 docker build by @wayswei in #837
- 🐛 前端安全依赖问题修复 by @freyaLo in #856
- 🐛 修复Dockerfile配置 by @Lingghh in #890
Bumps
- ⬆️ cls 20230221.1 by @cyw3 in #773
- ⬆️ Bump golang.org/x/sys from 0.0.0-20210630005230-0f9fa26af87c to 0.1.0 in /tools/owl by @dependabot in #781
- ⬆️ Bump webpack from 5.74.0 to 5.76.0 in /web by @dependabot in #795
- ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/configs by @dependabot in #797
- ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/analysis by @dependabot in #807
- ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/main by @dependabot in #806
- ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/configs by @dependabot in #805
- ⬆️ Bump redis from 4.1.1 to 4.5.3 in /server/projects/file by @dependabot in #804
- ⬆️ Bump sentry-sdk from 0.19.4 to 1.14.0 in /server/projects/scmproxy by @dependabot in #802
- ⬆️ Bump redis from 4.1.1 to 4.5.4 in /server/projects/file by @dependabot in #812
- ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/projects/main by @dependabot in #811
- ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/configs by @dependabot in #810
- ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/file by @dependabot in #801
- ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/analysis by @dependabot in #800
- ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/main by @dependabot in #799
- ⬆️ Bump sentry-sdk from 0.10.2 to 1.14.0 in /server/projects/login by @dependabot in #798
- ⬆️ Bump redis from 4.5.3 to 4.5.4 in /server/projects/analysis by @dependabot in #813
- ⬆️ Bump json from 20160810 to 20230227 in /plugins/jenkins_plugin by @dependabot in #819
- ⬆️ 前端依赖升级 by @freyaLo in #821
- ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/login by @dependabot in #842
- ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/configs by @dependabot in #843
- ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/file by @dependabot in #844
- ⬆️ Bump cryptography from 39.0.1 to 41.0.0 in /server/projects/main by @dependabot in #845
- ⬆️ Bump fast-xml-parser from 4.2.2 to 4.2.4 in /web by @dependabot in #847
- ⬆️ Bump semver from 5.7.1 to 5.7.2 in /web by @dependabot in #859
- ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/file by @dependabot in #861
- ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/configs by @dependabot in #862
- ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/login by @dependabot in #863
- ⬆️ Bump cryptography from 41.0.0 to 41.0.2 in /server/projects/main by @dependabot in #864
- ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/projects/analysis by @dependabot in #866
- ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/configs by @dependabot in #867
- ⬆️ Bump pygments from 2.8.1 to 2.15.0 in /server/projects/main by @dependabot in #868
- ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/file by @dependabot in #880
- ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/login by @dependabot in #879
- ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/configs by @dependabot in #878
- ⬆️ Bump cryptography from 41.0.2 to 41.0.3 in /server/projects/main by @dependabot in #877
Docs
- 📝 补充Jenkins插件下载位置 by @Lingghh in #783
- 📝 update TCA-Armory-R Doc by @yql70 in #784
- 📝 update enhance deploy by @cyw3 in #852
- 📝 update enhance deploy md by @cyw3 in #855
- 📝 文档内增加微信群二维码 by @nickcdon in #869
New Contributors
- @didebughu made their first contribution in #780
- @wayswei made their first contribution in #837
- @ontheway01 made their first contribution in #865
Full Changelog: 20230222.1...20230810.2
v1.8.0
What's Changed
New feature and Enhancements
- ✨ 检查工具增加镜像字段存储 by @Lingghh in #714
- ✨ 增加标签关联工具进程能力 by @Lingghh in #715
- ✨ 支持scan_path指定目录扫描,适配大仓场景 by @bensonhome in #721
- ✨ 增加cppcheck2.6工具 by @bensonhome in #736
- ✨ cppcheck2.6工具支持misra检查规则 by @mapyJJJ in #737
- 🎨 调整scm模块代码结构 by @Lingghh in #706
- 🎨 增强规则包支持增强标签 by @cyw3 in #719
- 🎨 修复一些异常情况,同步最新版本 by @nickcdon in #735
- 🎨 增加cls备份服务器配置等 by @bensonhome in #739
- 🎨 update copyright by @cyw3 in #743
- 🎨 update tcaql py by @cyw3 in #745
- 🎨 调整log by @cyw3 in #749
- 🎨 增加使用扫描方案模板创建方案的开放接口与相关文档 by @Lingghh in #757
- 🎨 更新cmdscm二进制文件:忽略svn警告信息 by @bensonhome in #771
- 🎨 更新cmdscm依赖库 by @Lingghh in #770
- 🎨 支持svn https链接格式 by @Lingghh in #777
Fixes
- 🐛 dangerous-default-value by @cyw3 in #718
- 🐛 修复update_remark方法传参问题 by @mapyJJJ in #730
- 🐛 修复项目删除逻辑 by @Lingghh in #754
Bumps
- ⬆️ Bump json5 from 1.0.1 to 1.0.2 in /web by @dependabot in #742
- ⬆️ Bump ua-parser-js from 0.7.31 to 0.7.33 in /web by @dependabot in #755
- ⬆️ Bump http-cache-semantics from 4.1.0 to 4.1.1 in /web by @dependabot in #758
- ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/file by @dependabot in #764
- ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/login by @dependabot in #763
- ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/projects/main by @dependabot in #762
- ⬆️ Bump cryptography from 3.3.2 to 39.0.1 in /server/configs by @dependabot in #761
Docs
- 📝 Update TCA-Armory-R Doc by @yql70 in #711
- 📝 update doc by @cyw3 in #713
- 📝 [WeOpen Star] 补充文档常见问题以及解决方案 by @Sanshix in #727
- 📝 [WeOpen Star] 补充文档:服务启动时报错的一种case的排查方式 by @Sanshix in #729
- 📝 enhanceDeploy增加注意事项 by @cyw3 in #732
- 📝 完善FAQ文档关于codedog_env配置的说明 by @bensonhome in #733
- 📝 添加cppcheck和misra的使用手册 by @mapyJJJ in #740
New Contributors
Full Changelog: 20221130.1...20230222.1
v1.7.0
What's Changed
New feature and Enhancements
- ✨ Add safety_cpp by @cyw3 in #684
- ✨ 分支项目支持指定扫描路径 by @Lingghh in #705
- ✨ 支持Helm charts部署TCA服务 by @Lingghh in #724
- 🎨 tool-regexscanner新增规则检测css高危函数 by @yql70 in #683
- 🎨 部分工具规则和日志翻译为英文 by @yql70 in #691
- 🎨 update tool json by @cyw3 in #694
- 🎨 增加任务扩展字段,记录任务运行信息 by @Lingghh in #704
- 🎨 更新自定义工具和快速扫描功能 by @bensonhome in #707
- 🎨 regexscanner新增敏感信息检测规则 by @yql70 in #710
- 🎨 增加‘增强’标签;调整github 镜像构建内容 by @Lingghh in #717
Fixes
- 🐛 修复工具拉取使用自定义鉴权场景下,成员变量未声明就使用问题 by @bensonhome in #698
- 🐛 分析方案路由跳转调整 by @freyaLo in #701
- 🐛 补充docker-compose部署nginx日志挂载路径 by @Lingghh in #702
- 🐛 修复初始化脚本 by @Lingghh in #723
Bumps
- ⬆️ Bump loader-utils from 1.4.0 to 1.4.1 in /web by @dependabot in #693
- ⬆️ Bump loader-utils from 1.4.1 to 1.4.2 in /web by @dependabot in #699
- ⬆️ 前端依赖升级 by @nickcdon in #725
Docs
- 📝 update enhanceDeploy doc by @cyw3 in #672
- 📝 更新新版本白皮书 by @aaaa-j in #680
- 📝 顶部栏调整,显示自建工具git库使用指南 by @aaaa-j in #687
- 📝 修改文档标题 by @aaaa-j in #688
- 📝 修改文件名 by @aaaa-j in #689
- 📝 更新快扫模式帮助文档,主要补充内置方案使用说明 by @aaaa-j in #690
- 📝 update enhance depoly doc by @cyw3 in #708
- 📝 修正源码部署文档内容 by @Lingghh in #703
- 📝 修正描述 by @fennghuang in #716
New Contributors
- @freyaLo made their first contribution in #701
- @fennghuang made their first contribution in #716
Full Changelog: 20221028.1...20221130.1
v1.6.0
What's Changed
New feature and Enhancements
- ✨ 仓库登记页面结构优化调整 by @nickcdon in #662
- ✨ 添加一些规则 by @owlmk in #673
- 🎨 Update open_base.py by @chen1908 in #629
- 🎨 update CLS by @cyw3 in #644
- 🎨 lizard,cpd适配quickscan模式; 增加QuickScan使用说明文档 by @bensonhome in #646
- 🎨 添加工具库有关文档 by @owlmk in #653
- 🎨 zip解压模块捕获异常 by @owlmk in #660
- 🎨 优化api请求和进度上报 by @bensonhome in #666
- 🎨 补充平台开放接口与文档 by @Lingghh in #669
- 🎨 完善issuedetail数据保存 by @Lingghh in #668
- 🎨 默认使用腾讯工蜂仓库拉取工具 by @bensonhome in #676
- 🎨 update tool-infer and tool-flow by @yql70 in #678
- 🎨 update custom-tool url by @yql70 in #679
- 🔧 移除web管道命令 by @nickcdon in #665
- 🔇 remove useless log by @cyw3 in #658
Fixes
- 🐛 fix KeyError by @cyw3 in #645
- 🐛 解决cppcheck可能出现中文编码错误问题 by @owlmk in #663
- 🐛 调整scmallaccounts接口代码 by @nickcdon in #677
Bumps
Doc
- 📝 Update 自定义工具.md by @auula in #667
- 📝 单元测试有效性验证 - 使用手册 by @cyw3 in #656
- 📝 完善帮助文档 by @cyw3 in #657
- 📝 更新首页功能优势介绍,增加持续跟踪管理问题 by @aaaa-j in #659
- 📝 Add front_end_framework_check doc by @cyw3 in #661
- 📝 更新规则文档 by @owlmk in #674
- 📝 增加Jenkins插件使用说明 by @aaaa-j in #675
New Contributors
Full Changelog: 20220928.1...20221028.1
v1.5.2
What's Changed
New feature and Enhancements
- 🎨 完善镜像工具复制方式 by @Lingghh in #633
- 🎨 转移规则文档 by @owlmk in #627
- 🎨 优化自定义工具拉取依赖逻辑 by @bensonhome in #631
- 🎨 clang工具 - 去掉UseNewBuildSystem参数;命令失败抛异常 by @bensonhome in #639
- 🎨 cpplint、codecoutn适配QuickScan场景 by @bensonhome in #642
Doc
Full Changelog: 20220923.1...20220928.1
v1.5.1
What's Changed
New feature and Enhancements
- 🎨 部分规则包加推荐标签 by @owlmk in #602
- 🎨 Add enhanced_safety_java by @cyw3 in #604
- 🎨 issue列表展示msg信息 by @nickcdon in #612
- 🎨 delete redundant comment by @bensonhome in #611
- 🎨 update sqlcheck tool lib by @cyw3 in #608
- 🎨 jenkins插件支持质量门禁 by @bensonhome in #619
- 🎨 add enhance_safety_js by @owlmk in #615
- 🎨 更新start命令参数和quickscan拉工具 by @bensonhome in #622
- 🎨 update check_tool_usable by @cyw3 in #618
- 🎨 调整前端部署脚本 by @nickcdon in #620
- 🎨 规范镜像名称,增加健康探测脚本 by @Lingghh in #623
- 🎨 update enhanceDeploy by @cyw3 in #624
- 🎨 优化main服务的https拉取代码开关配置 by @Lingghh in #628
Fixes
Bumps
Doc
Full Changelog: 20220907.1...20220923.1
v1.5.0
What's Changed
New feature and Enhancements
- ✨ 上线体验增强分析模块公告 by @nickcdon in #564
- ✨ add tool-TCA-Armory-R by @yql70 in #574
- ✨ Add TCA-Armory-A by @cyw3 in #582
- ✨ UI样式升级,支持规则工具信息展示 by @nickcdon in #600
- 🎨 优化工具依赖配置读取逻辑;优化LD_LIBRARY_PATH环境变量处理;废弃DEFAULT_TOOL_BASE_DIR by @bensonhome in #561
- 🎨 增加language,branch字段判空 by @zthzhang111 in #566
- 🎨 Update rules by @cyw3 in #570
- 🎨 工具拉取支持htttp zip包地址 by @bensonhome in #577
- 🎨 新增前端框架识别规则包 by @yql70 in #580
- 🎨 修改0daychecker使用zip by @owlmk in #583
- 🎨 更新TCAQL版本 by @owlmk in #589
- 🎨 Update enhance_cpp.json by @owlmk in #590
- 🎨 Update enhance_cpp.json by @owlmk in #596
- 🎨 update TCA-Armory-R by @yql70 in #599
- 🎨 完善工具与规则展示相关逻辑与接口 by @Lingghh in #601
- 🎨 优化zip包解压 by @bensonhome in #606
Fixes
Bumps
- ⬆️ update cls v20220617.1_opensource by @cyw3 in #565
- ⬆️ Bump vite from 2.9.9 to 2.9.15 in /doc by @dependabot in #587
- ⬆️ 升级部分依赖 by @nickcdon in #603
- ⬆️ update cls by @cyw3 in #609
Doc
- 📝 update cls doc by @cyw3 in #556
- 📝 update tools readme by @cyw3 in #558
- 📝 Add CLS help doc by @cyw3 in #559
- 📝 update enhance deploy doc by @cyw3 in #563
- 📝 提交文档修改,主要修改部署相关和首次分析相关 by @aaaa-j in #569
- 📝 更新帮助文档,readme链接 by @aaaa-j in #575
- 📝 修复文档图片 by @aaaa-j in #584
- 📝 Translation for dockerDeploy.md by @baozidai in #595
- 📝 add tool doc by @yql70 in #588
New Contributors
Full Changelog: 20220819.1...20220907.1
v1.4.3
What's Changed
- ✨ Add standalone tool package by @cyw3 in #512
- ✨ support sqlcheck by @cyw3 in #514
- ✨ 支持团队节点与标签;调整文档说明 by @Lingghh in #534
- ✨ 上线团队节点标签配置,同步更新帮助文档 by @nickcdon in #537
- 🎨 整理强化安全规则包,需要license by @owlmk in #522
- 🎨 完善登录接口异常处理和错误提示 by @Lingghh in #535
- 🎨 基础安全规则包新增规则 by @yql70 in #533
- 🎨 调整oauth授权删除逻辑 by @RussGan in #542
- 🎨 调整工具管理凭证校验逻辑 by @nickcdon in #548
- 🎨 优化源码部署脚本 by @Lingghh in #545
- 🎨 docker与docker-compose支持挂载client配置文件 by @Lingghh in #551
- 🎨 调整工具管理凭证校验逻辑 by @nickcdon in #549
- 🐛 修复工具规则显示详情描述 by @nickcdon in #525
- 🐛 修复分析方案模板添加规则筛选项异常 by @nickcdon in #531
- 🐛 修复代码库凭证切换导致页面白屏 by @nickcdon in #540
- 📝 Update tools readme by @cyw3 in #507
- 📝 update client README.md docker模式 by @bensonhome in #529
- 📝 Add tool docs by @cyw3 in #546
Full Changelog: 20220811.1...20220819.1
v1.4.2
What's Changed
- 🎨 调整Model字段格式与规范系统默认名称 by @Lingghh in #487
- 🎨 补充服务的env配置文件 by @Lingghh in #504
- 🎨 调整指引文档文件路径 by @RussGan in #506
- 🎨 完善docker部署的变量配置 by @Lingghh in #508
- 🎨 支持私有团队节点;支持指定.appdata目录 by @bensonhome in #510
- 🎨 修改图片位置 by @owlmk in #517
- 🎨 update semgrep rules by @yql70 in #521
- 🎨 collie support rule filter by @cyw3 in #513
- 📝 优化快速入门文档 by @RussGan in #483
- 📝 独立工具文档增加提示 by @cyw3 in #485
- 📝 更新changelog by @aaaa-j in #499
- 📝 Update CLS doc by @cyw3 in #497
- 🐛 修复方法调用不存在问题 by @bensonhome in #489
- 🐛 fix get_block_change_type call by @bensonhome in #491
- 🐛 fix collie issue path by @cyw3 in #509
- 🐛 fix doc home actions by @nickcdon in #516
Full Changelog: 20220728.1...20220811.1
v1.4.1
What's Changed
- ✨ 统一部署脚本,封装local、docker、docker-compose部署方式启动server&web&client by @Lingghh in #471
- ✨ 支持源码安装Redis与Nginx by @Lingghh in #470
- ✨ add 白皮书 by @cocorunning in #468
- 🎨 优化部署脚本 by @RussGan in #462
- 🎨 优化部署脚本 @RussGan in #463
- 🎨 软链替代文件说明 by @RussGan in #464
- 🎨 一键部署脚本优化 by @RussGan in #467
- 🎨 优化Dockerfile,支持复用pip安装层 by @Lingghh in #472
- 🎨 完善github action脚本 by @Lingghh in #474
- 🎨 完善启动脚本注释 by @Lingghh in #475
- 🎨 macOS启动docker desktop by @cloudusers in #418
- 🎨 update tca.yml by @yql70 in #477
- 🎨 调整Docker启动脚本位置 by @Lingghh in #476
- 🎨 优化Docker部署脚本 by @Lingghh in #478
- 🎨 update tools list by @cyw3 in #479
- 🎨 完善Docker构建 by @Lingghh in #481
- ⬆️ Bump terser from 5.12.1 to 5.14.2 in /web by @dependabot in #461
- 📝 调整快速入门指引文档 by @RussGan in #473
New Contributors
- @cloudusers made their first contribution in #418
Full Changelog: 20220718.1...20220728.1