v2.8.0

2.8.0 (2024-10-25)

Features

• fcli sc-sast scan start: Add support for passing scan arguments through --sargs option (resolves #449) (#627) (7920a40)
• Add fcli fod release wait-for command to wait for release(s) to leave suspended state (resolves #624) (0cdde30)

Bug Fixes

• fcli fod action run setup-release: Add Development default value for --sdlc-status (9a1b1bf)
• fcli fod action run setup-release: Wait for release to exit suspended state (07d0914)
• Fix fcli command links in action documentation (fixes #622) (fecf423)

v2.7.1

2.7.1 (2024-09-27)

Bug Fixes

• Fix fcli completion script sourcing error (fixes #580) (4ff86f4)
• FoD release-summary action: Fix potential SpEL exception for releases with open-source scans enabled (fixes #612) (5260bc8)
• Improve synopsis order (fixes #133) (78b530c)
• Show proper syntax for --store option in help output (fixes #613) (cac574d)

v2.7.0

2.7.0 (2024-09-25)

Features

• fcli fod release create: Support release attributes (fixes fortify#592) (3727329)
• fcli fod sast-scan setup: Add --skip-if-exists option (edcece5)
• fcli fod sast-scan setup: Add --use-aviator option (fixes fortify#594) (013af6f)
• fcli fod sast-scan setup: Set --technology-stack to Auto Detect by default (fixes #595) (852d7bf)
• fcli sc-sast scan start: Add option to select sensor pool for the scan (d071d25)
• fcli ssc appversion copy-state: Add --refresh-timeout option (89cf435)
• fcli ssc appversion create: Add --refresh-timeout option (89cf435)
• Add fcli sc-sast sensor-pool list command (77fcc1c)
• Add FoD setup-release action (4ab86c0)
• Add SSC setup-appversion action (e3a273c)
• FoD & SSC: Add aws-sast-report actions to enable integrating Fortify results with AWS Security Hub (#559) (dc79095)

Bug Fixes

• fcli fod app update: Ignore release attributes if included in --attrs option (fixes fortify#604) (e2077b9)
• fcli fod release create: Ignore application attributes if included in --attrs option (fixes fortify#604) (e2077b9)
• fcli fod release update: Ignore application attributes if included in --attrs option (fixes fortify#604) (e2077b9)
• fcli ssc appversion refresh-metrics: Allow for fcli state wait-for-job ::var:: to be invoked without errors even if no refresh was required (89cf435)
• Increase issue limit for github-sast-report to match current GitHub limits (3a2d489)

v2.6.0

2.6.0 (2024-09-09)

Features

• Publish fortifydocker/fcli image (c72487d)

Bug Fixes

• fcli fod action run *-sast-report: Warn instead of fail if scan summary is not (yet) available from FoD (077157f)
• FoD: Improve help output for fcli fod *-scan wait-for commands (#587) (937baf5)
• Work-around for user.home in Docker images (9c6a56c)

v2.5.3

2.5.3 (2024-08-30)

Bug Fixes

• Fix error on fcli ssc session login command on older SSC versions (fixes #584) (d028052)

v2.5.2

2.5.2 (2024-08-21)

Bug Fixes

• FoD/SSC: Improve github-pr-comment action output (694e7ae)
• SSC: Fix application version link in appversion-summary & bitbucket-sast-report actions (4f40a04)

v2.5.1

2.5.1 (2024-08-14)

Bug Fixes

• fcli fod mast-scan start: Add --platform option as required by current FoD API (7703939)
• fcli fod mast-scan start: Fix description for --file option (7703939)

v2.5.0

2.5.0 (2024-08-13)

Features

• fcli ssc appversion create: Allow for copying attributes & user access (667ba4f)
• FoD: Debricked SBOM Export/Import (resolves #560) (aac8e10)

Bug Fixes

• fcli fod issue list: Add --include option to allow for retrieving fixed and/or suppressed issues (fixes #545) (01c2ac2)
• fcli ssc issue list: Add --include option to allow for retrieving hidden, fixed and/or suppressed issues (318ca98)
• fcli fod action run release-summary fails parsing scan dates (fixes fortify#569) (#570) (9ed8032)
• Fix exception in github-sast-report & sarif-sast-report actions if there are no SAST issues to be processed (01bce49)
• No longer require user credentials on SSC, SC-SAST & SC-DAST logout commands (requires SSC 24.2+) (cb7867b)
• NullPointerException in fcli fod *ast-scan get (fixes #553) (f2eab9c)
• Pass non-default session name to fcli: action statements (fixes #555) (8b762e2)
• Update copyright statement to 2024 (833c607)
• Update release-summary action to include OSS (resolves #561) (aac8e10)
• When authenticating with an SSC authentication token, the SSC, SC-SAST & SC-DAST session commands will now display token expiration date (requires SSC 24.2+) (c2e66bc)
• When authenticating with an SSC authentication token, the SSC, SC-SAST & SC-DAST session login commands will now validate whether the given token is a valid token (c2e66bc)

v1.3.3

1.3.3 (2024-07-30)

Bug Fixes

• Ignore unknown properties returned by FoD 24.3 to avoid fcli exceptions (fixes #566) (df8a9b1)

Development Release - v1.x branch

See Assets section below for latest build artifacts