v6.0.0

Release Notes:

• Add new Fuzzers for sending Unicode Control Characters in Fields and Headers
• Add new Fuzzers for sending Unicode Separators in Fields and Headers
• Remove NullValuesInHeaders as it was similar with EmptyStringValuesInHeaders
• Decrease startup time by 1-2 seconds
• Add UTF-8 encoding to the generated reports
• Add Fuzzers that insert Control Chars and Separators within values
• Add possibility to use variables in the verify section of the CustomFuzzer file
• Update dependencies to latest versions
• Replace Apache HTTP Client with OK HTTP Client
• Add new Fuzzer for non-REST API HTTP methods (specific to WebDav)
• Print warnings when running with all Fuzzers. Please check the README on details about running times
• CATS has now 68 Fuzzers

v5.3.2

Release Notes:

• add support for html only reports. This is achievable using the --reportFormat=htmlOnly argument. Html only reports are easier to embed in CI server reports due to javascript content security policies
• test reports are now written in cats-report folder instead of test-report (this was a bit generic and confusing)
• add a new argument called --skipPaths=LIST which can be used to skip a list of paths from fuzzing
• all Long values are written in CATS report as String as Javascript has issues parsing Long numbers
• add Fuzzer name in the CATS report summary table
• test cases are now displayed as separated html page instead of javascript popup
• drastically improved CATS report load time from tens of seconds (for thousands of tests) to 1 second
• add test timestamp in the test case page

v5.3.1

Release Notes:

• Make CATS output reports in a timestamp folder only if the argument --timestampReports is supplied
• Add ability to load Open API contract from URLs
• Print date and time on the CATS report page (inside the header)
• Throw exception when CATS is not able to load any custom file: custom fuzzer, security fuzzer, headers, ref data
• CATS will not run anymore Leading/Trailing Fuzzers for fields used as discriminators

v5.3.0

Release Notes:

• Add path to the full report when CATS finishes running
• Reports are now written in separate folders inside test-report based on timestamp. This way you can keep track of historical runs
• Add 3 new Fuzzers for contract checking: HttpStatusCodeInValidRangeFuzzer, RecommendedHttpCodesContractInfoFuzzer, SecuritySchemesContractInfoFuzzer
• Report missing schema names when a response schema is not present in the schemas section
• Prevent double display of tests on first report page load in some cases
• Remove Scenario and Expected Result from the report. These were redundant
• Add HTTP method name in Scenario title for all ContractInfo Fuzzers

cats-5.2.9

Release Notes:

• Fix for #6
• Add new fuzzer called SecuritySchemesContractInfoFuzzer

v5.2.8

Release Notes:

• Add support for 2-way SSL
• Add support for basic auth using --basicauth argument
• Fix issue when ref data didn't exist for a path, but had all element defined
• Make expected results more clear in test report

v5.2.7

Release notes:

• Headers Fuzzers are not considering auth headers anymore
• Fix issue in report when clicking outside the test status filter levels causing the list of tests to display empty
• Change the order of displaying the Fuzzer name in individual Test Cases in order to accommodate global Fuzzers cases

v5.2.6

Release notes:

• Fix issue with auth headers not being recognised when not matching full name from pre-defined list
• Fix issue with Fuzzer names not being properly displayed in report after latest logback pattern change

v5.2.5

Release Notes:

• Fix issue with additionalProperties having nested additionalProperties of type object
• Fix issue with auth headers not always being parsed correctly

v5.2.4

Release Notes:

• make CATS proxy aware by using --proxyHost and --proxyPort
• change logging to use https://github.com/ludovicianul/pl4j
• make Fuzzer names shorter when prefixing log line by only using the first character of every work from their class name