Releases: DataDog/guarddog
Releases · DataDog/guarddog
Release v2.9.0
What's Changed
- Bump pytest from 8.4.2 to 9.0.2 by @dependabot[bot] in #657
- Bump disposable-email-domains from 0.0.120 to 0.0.156 by @dependabot[bot] in #656
- Bump importlib-metadata from 7.1.0 to 8.7.1 by @dependabot[bot] in #653
- Bump termcolor from 2.5.0 to 3.3.0 by @dependabot[bot] in #651
- Bump black from 25.12.0 to 26.1.0 by @dependabot[bot] in #666
- Bump coverage from 7.13.1 to 7.13.2 by @dependabot[bot] in #667
- Bump coverage from 7.13.2 to 7.13.3 by @dependabot[bot] in #670
- Bump disposable-email-domains from 0.0.156 to 0.0.157 by @dependabot[bot] in #669
- Add screenshot detection heuristic by @stevenelliottjr in #668
- bugfix: typosquatting fix top packages format by @sobregosodd in #671
- Release v2.9.0 by @sobregosodd in #673
New Contributors
- @stevenelliottjr made their first contribution in #668
Full Changelog: v2.8.4...v2.9.0
Contributors
stevenelliottjr, dependabot, and sobregosodd
Assets 2
Release v2.8.4
What's Changed
- add missing pypi permission by @sobregosodd in #663
- Version bump to 2.8.4 to Release by @sobregosodd in #664
Full Changelog: v2.8.3...v2.8.4
Contributors
sobregosodd
Assets 2
Release v2.8.3
What's Changed
- Publish on tag workflow by @sobregosodd in #661
- Version bump 2.8.3 to release by @sobregosodd in #662
Full Changelog: v2.8.2...v2.8.3
Contributors
sobregosodd
Assets 2
Release v2.8.2
What's Changed
- Detect sensitive data exfiltration via DNS by @dwBruijn in #646
- Improve detection of base64 execution via codecs and importlib dynamic imports by @dwBruijn in #645
- Improve detection of code execution via compile() and vars() indirection (Python) by @dwBruijn in #643
- API obfuscation rule and tests for npm (JS) by @biagiom in #640
- Improve API obfuscation rule for Python by @biagiom in #641
- Add support for scanning rubygems by @andrew in #638
- Fix pipeline to publish on version bump and only use poetry by @sobregosodd in #655
- Release v2.8.0 by @sobregosodd in #658
- pipeline typo fix by @sobregosodd in #659
- CI permission hotfix by @sobregosodd in #660
New Contributors
Full Changelog: v2.7.1...v2.8.2
Contributors
andrew, biagiom, and 2 other contributors
Assets 2
v2.7.1
New features
- Exclude files from yara scans by @tesnim5hamdouni in #619
Bug fixes and improvements
- Bugfix: shady-links suspicious top-level domains by @ikretz in #635
- fix: duplicate path in zip extraction by @ejortega in #644
- Fix archive extraction bugs by @sobregosodd in #647
- Improve error handling in typosquatting module by @strongHunter in #606
Chores
- Outdated dependencies updates by @sobregosodd in #648
- Update dependencies by @ikretz in #620
- Update PyPI publish workflow to use Trusted Publisher by @sobregosodd in #632
New Contributors
- @strongHunter made their first contribution in #606
- @ejortega made their first contribution in #644
Full Changelog: v2.7.0...v2.7.1
Contributors
ejortega, ikretz, and 3 other contributors
Assets 2
v2.7.0
Breaking changes
- extending code execution rule to init files by @sobregosodd in #605
New features
- Adding case detection for DLL loading by @sobregosodd in #592
- API obfuscation: new rule and test cases by @biagiom in #607
- Add extensions ecosystem support for Guarddog by @tesnim5hamdouni in #589
Bug fixes and improvements
- Manage direct dependency versions by @ikretz in #583
- Misc fixes by @sobregosodd in #614
- feat: filter rule for detection evasion using unicode by @xp4u1 in #604
Chores
- Update dependencies by @ikretz in #582
- Bump setuptools from 76.0.0 to 78.1.1 by @dependabot[bot] in #571
- Bump pygit2 from 1.17.0 to 1.18.1 by @dependabot[bot] in #593
- Bump coverage from 7.9.2 to 7.10.3 by @dependabot[bot] in #597
- Bump fonttools from 4.58.5 to 4.59.0 by @dependabot[bot] in #595
- [SINT-3848] 🔒 Pin GitHub Actions to specific SHA versions for enhanced security by @juliendoutre in #598
- Bump pygit2 from 1.17.0 to 1.18.0 by @dependabot[bot] in #584
- Bump rpds-py from 0.26.0 to 0.27.0 by @dependabot[bot] in #601
- Adding formatting checks by @sobregosodd in #615
New Contributors
Full Changelog: v2.6.0...v2.7.0
Contributors
biagiom, dependabot, and 5 other contributors
Assets 2
v2.6.0
New features
Bug fixes and improvements
- Detect Base64-decoded content being passed to execution functions in Go by @martinvoigt-dd in #547
- [Go - New Detection] Detect executable downloads in Go by @dd-ahmed in #548
- Adding new NPM obfuscation case by @sobregosodd in #557
- Semgrep timeout fix + use of env variables to set max_target_bytes by @tesnim5hamdouni in #556
- [Go - New Detection] Detect data collection and exfiltration in Go by @dd-ahmed in #553
- Update shady links rule by @tesnim5hamdouni in #563
- Refactor to use Dependency structure by @sobregosodd in #564
- Fix scan on empty python dependencies by @sobregosodd in #568
Chores
- Bump setuptools from 75.6.0 to 76.0.0 by @dependabot in #538
- Bump disposable-email-domains from 0.0.108 to 0.0.120 by @dependabot in #540
- Bump pygit2 from 1.16.0 to 1.17.0 by @dependabot in #545
- Bump googleapis-common-protos from 1.66.0 to 1.69.2 by @dependabot in #544
- Bump jinja2 from 3.1.4 to 3.1.6 by @dependabot in #546
- Bump deprecated from 1.2.15 to 1.2.18 by @dependabot in #542
- Bump packaging from 21.3 to 24.2 by @dependabot in #541
- Bump lxml from 5.2.2 to 5.3.2 by @dependabot in #555
- Bump bracex from 2.3.post1 to 2.5 by @dependabot in #551
- Bump exceptiongroup from 1.2.0 to 1.2.2 by @dependabot in #552
- Bump mypy-extensions from 1.0.0 to 1.1.0 by @dependabot in #562
- Updating deps and top pkgs by @sobregosodd in #567
- Bump iniconfig from 2.0.0 to 2.1.0 by @dependabot in #560
New Contributors
- @martinvoigt-dd made their first contribution in #547
- @dd-ahmed made their first contribution in #548
- @tesnim5hamdouni made their first contribution in #556
Full Changelog: v2.5.0...v2.6.0
Contributors
bthuilot, dependabot, and 4 other contributors
Assets 2
v2.5.0
New features
- Added zip domain to shadylinks check by @rtvkiz in #530
- feat(github-action): add support for 'verify' command by @bthuilot in #532
Bug fixes and improvements
- Update top-pypi-packages filename by @hugovk in #536
- Bump disposable-email-domains from 0.0.108 to 0.0.118 by @dependabot in #535
New Contributors
Full Changelog: v2.4.0...v2.5.0
Contributors
hugovk, bthuilot, and 2 other contributors
Assets 2
v2.4.0
New features
- Add new Github Action ecosystem by @juliendoutre in #527
Bug fixes and improvements
- Add shady links domains by @sobregosodd in #521
- Add Mach-O magic bytes to bundled binary detector by @ocku in #523
- Adding packer detection by @sobregosodd in #524
Chores
- Bump disposable-email-domains from 0.0.108 to 0.0.115 by @dependabot in #519
- Bump pygit2 from 1.16.0 to 1.17.0 by @dependabot in #518
- Bump disposable-email-domains from 0.0.108 to 0.0.117 by @dependabot in #525
- Fix the output parsing on the latest semgrep tool by @sobregosodd in #517
New Contributors
Full Changelog: v2.3.0...v2.4.0
Contributors
dependabot, juliendoutre, and 2 other contributors
Assets 2
v2.3.0
Bug fixes and improvements
- Remove BIDI rule and pin semgrep by @sobregosodd in #516
Contributors
sobregosodd