Overview
Request 1080057 accepted
## Version 2.2.0 (2023-04-17)
* DepedencyCheck: marked as deprecated
* UnsafeDependencyCheck: added support for new kb keywords:
- versionEndIncluding
- versionEndExcluding
## Version 2.1.1 (2023-04-14)
* Issue #252 fix was uncomplete.
## Version 2.1.0 (2023-04-13)
* BasicCheck: added an attribute do flag as vulnerable a dependency gem only if
it matches the name, overriding the version. It will be used in dawn kb list
command, when the user won't enter the version information.
* Added the "list" subcommand to "kb". It can be used to fetch from the
knowledge base all CVEs affecting a particular gem.
## Version 2.0.0 (2023-04-13)
* New knowledge base, YAML based and distributed separately from the ruby gem.
* New CLI based on Thor library. Please read README.md file to know how to
invoke dawn the right way or use the 'dawn help' command
* Added a new debug\_verbosely API for engines and checks
* Removed rake osvdb[name] and rake cve[name] tasks
* Dawn::Utils include refactory. Now it's available application wide
* debug information refactory.
* engine class, apply_all method now accepts an optional parameter containing a
list of security checks to be excluded (issue #230).
* Fix issue #244. Now the KB path is no more hardcoded but it is relative to
$HOME and 'dawnscanner' folder where results are stored.
* Fix issue #245. Pattern matching check is skipped on empty files.
* Fix issue #250. Require missing fileutils, thanks to @lukaszsliwa
* Fix issue #252. File.exists was removed in newer interpreter versions
* Dropping codenames
* Class names must be declared before loading YAML files
Request History
pperego created request
## Version 2.2.0 (2023-04-17)
* DepedencyCheck: marked as deprecated
* UnsafeDependencyCheck: added support for new kb keywords:
- versionEndIncluding
- versionEndExcluding
## Version 2.1.1 (2023-04-14)
* Issue #252 fix was uncomplete.
## Version 2.1.0 (2023-04-13)
* BasicCheck: added an attribute do flag as vulnerable a dependency gem only if
it matches the name, overriding the version. It will be used in dawn kb list
command, when the user won't enter the version information.
* Added the "list" subcommand to "kb". It can be used to fetch from the
knowledge base all CVEs affecting a particular gem.
## Version 2.0.0 (2023-04-13)
* New knowledge base, YAML based and distributed separately from the ruby gem.
* New CLI based on Thor library. Please read README.md file to know how to
invoke dawn the right way or use the 'dawn help' command
* Added a new debug\_verbosely API for engines and checks
* Removed rake osvdb[name] and rake cve[name] tasks
* Dawn::Utils include refactory. Now it's available application wide
* debug information refactory.
* engine class, apply_all method now accepts an optional parameter containing a
list of security checks to be excluded (issue #230).
* Fix issue #244. Now the KB path is no more hardcoded but it is relative to
$HOME and 'dawnscanner' folder where results are stored.
* Fix issue #245. Pattern matching check is skipped on empty files.
* Fix issue #250. Require missing fileutils, thanks to @lukaszsliwa
* Fix issue #252. File.exists was removed in newer interpreter versions
* Dropping codenames
* Class names must be declared before loading YAML files
pperego accepted request
