π Features
- Added a feature to the SARIF report where different modules are no longer treated as different artifacts. @satyamchaurasiapersistent
- Added a feature to the SARIF format to address mismatch information between two fields. @satyamchaurasiapersistent
π Bug Fixes
- Fixed an issue where the file
cx.sarifcould not be uploaded as it was not valid SARIF. @satyamchaurasiapersistent - Fixed a security vulnerability in CxFlow. @itsKedar
- Fixed an issue where a comment on a PR led to an error, stating that another scan was already in progress. @satyamchaurasiapersistent
- Fixed an issue where CxFlow was unable to create work items for ADO on-prem servers. @itsKedar
- Fixed an issue where the CxFlow SCA scan terminated with a "Null pointer" exception. @itsKedar
- Fixed an issue where CxFlow attempted to access a branch after a branch deletion event. @itsKedar
- Fixed an issue where CxFlow could not set multiple project custom field values with spaces in GitHub Actions. @itsKedar
Documentation
- Updated documentation regarding GitLab MR scan comments not reflecting the user who created the MR. @satyamchaurasiapersistent
- Updated documentation regarding scan attempts for branches that don't match the protected branch criteria when a webhook event comes from the repository's default branch. @satyamchaurasiapersistent
- Updated documentation for using Docker image execution, where SCA Resolver integration requires build tools installed or additional documentation. @itsKedar
Contributors
itsKedar and satyamchaurasiapersistent