v1.21.6

What's Changed

Improvements 🌱

• Add target name to JAS scans log by @attiasas in #557
• Update Dependencies for v1.21.6 by @attiasas in #555

Bug Fixes 🛠

• Support Information severity in commands by @attiasas in #527

Full Changelog: v1.21.5...v1.21.6

v1.21.5

What's Changed

Bug Fixes 🛠

• Make JAS scan thread save in multi target by @attiasas in #546
• Update dependencies by @attiasas in #547

Full Changelog: v1.21.4...v1.21.5

v1.21.4

What's Changed

Bug Fixes 🛠

• SARIF - Fill missing invocation attributes if needed by @attiasas in #545

Full Changelog: v1.21.3...v1.21.4

v1.21.3

What's Changed

Bug Fixes 🛠

• Fix Vulnerabilities locations in SCA for SARIF and null attributes by @attiasas in #539

Full Changelog: v1.21.2...v1.21.3

v1.21.2

Analyzer Manager was updated to v1.23.3

Full Changelog: v1.21.1...v1.21.2

v1.21.1

What's Changed

Bug Fixes 🛠

• Added-support-for-Wrapper-using-curation-audit by @basel1322 in #528
• Add ScaResults guard on fail build check when no JAS results by @attiasas in #526
• Update SARIF dependency - Fix GH upload when no findings by @attiasas in #531
• Don't show JAS violations table if not supported by @attiasas in #532

Full Changelog: v1.21.0...v1.21.1

v1.21.0

What's Changed

Exciting New Features 🎉

• Gem for Audit and Curation by @basel1322 in #459

Improvements 🌱

• Add insecure-tls flag support for all security commands by @dortam888 in #207
• Update dependencies by @attiasas in #523

Bug Fixes 🛠

• Fix Dependency tree to cdx conversion for multi-module project by @attiasas in #514
• Fix SARIF Github ingestion rules and SCA runs when not requested by @attiasas in #521
• Show vulnerabilities in Build-Scan SARIF format when project not provided by @attiasas in #522
• Add nil check for ScaResults when SCA scan is not performed in audit by @kerenr-jfrog in #519

Full Changelog: v1.20.2...v1.21.0

v1.20.2

What's Changed

Improvements 🌱

• replace sast fingerprint to significant path by @hadarshjfrog in #498
• Add partialFingerprints to result sarif by @solganik in #510

Bug Fixes 🛠

• Fix build failure logic to consider applied policies rules by @eranturgeman in #501

New Contributors

• @solganik made their first contribution in #510

Full Changelog: v1.20.1...v1.20.2

v1.20.1

What's Changed

Bug Fixes 🛠

• Fix audit diff err when target to compare not found by @attiasas in #499

Full Changelog: v1.20.0...v1.20.1

v1.20.0

What's Changed

Exciting New Features 🎉

• Cyclonedx output format by @attiasas in #475

Improvements 🌱

• Update dependencies by @attiasas in #452
• Add fail_pr in simple json conversion - Sca, Licences, IaC, Sast, Secrets by @eranturgeman in #471
• Enable Custom Secrets Scanners by @attiasas in #464

Bug Fixes 🛠

• Fix empty tree sent to SCA scan by @eranturgeman in #476
• Pass project key to scan entitlements by @attiasas in #482
• Fix cocoapods dependency tree direct and transitive by @barv-jfrog in #481

Full Changelog: v1.19.0...v1.20.0