Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[pull] master from snyk:master #73

Open
wants to merge 4,337 commits into
base: master
Choose a base branch
from
Open

[pull] master from snyk:master #73

wants to merge 4,337 commits into from

Conversation

pull[bot]
Copy link

@pull pull bot commented Jun 18, 2020
edited
Loading

See Commits and Changes for more details.

Created by pull[bot]. Want to support this open source service? Please star it : )

@pull pull bot added the ⤵️ pull label Jun 18, 2020
@ghost
Copy link

ghost commented Nov 5, 2020
edited by ghost
Loading

DeepCode's analysis on #01e403 found:

  • ⚠️ 1 warning, ℹ️ 14 minor issues. 👇
  • ✔️ 8 issues were fixed.

Top issues

Description Example fixes
trim takes no arguments. Arguments starting with the first one will be ignored. Occurrences: 🔧 Example fixes
Unnecessary 'await'. Occurrences: 🔧 Example fixes
Type declaration of 'any' loses type-safety. Consider replacing it with a more precise type. Occurrences: 🔧 Example fixes

👉 View analysis in DeepCode’s Dashboard | Configure the bot

@github-actions
Copy link

github-actions bot commented Feb 4, 2021

Fails
🚫

Commit "Merge pull request #1456 from snyk/feat/revert-container-static-scanning" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1521 from snyk/feature/iac-detection-depth-CC-434" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1533 from snyk/test/fixMetricTest" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1532 from snyk/RUN-1041/bumpcli" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1528 from snyk/fix/handle-long-classpaths" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1535 from snyk/fix/unauthorisedRegistryErrors" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1539 from snyk/fix/improve-newline-handling" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1542 from snyk/feat/add-go-binaries-scan-in-container" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1530 from snyk/fix/cli-alert-fix" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1531 from snyk/RUN-1041/docs" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1529 from snyk/fix/cpp-plugin-blocking-event-loop" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1545 from snyk/fix/cli-alert-fix" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1527 from snyk/feat/command-docs" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1546 from snyk/fix/update-dep-graph" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1523 from snyk/fix/docker-analytics" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1548 from snyk/fix/gradle-deps-resolution-conflicts" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1526 from snyk/fix/update-docker-plugin" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1543 from snyk/feat/json-group-vulns" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1525 from snyk/feat/improve-help-command" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1540 from snyk/fix/sarif-json-error-CC-401" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1520 from snyk/feat/monitor-cpp-projects" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1551 from snyk/feat/maven-unmanaged-aar-files" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1524 from snyk/chore/bump-snyk-config-test" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1553 from snyk/feat/improve-class-path-discovery" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1516 from snyk/fix/dont-create-json-if-you-dont-need-it" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1550 from snyk/fix/iac-sarif-output-CC-525" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1515 from bgeveritt-snyk/fix/nuget-diff-target-monikers" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1555 from snyk/fix/show-spinner-scaning-ecosystem" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1519 from snyk/fix/handle-poetry-dependencies-with-underscores" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1556 from snyk/feat/maven-unmanaged-aar-files" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1517 from snyk/feat/empty-manifest-graceful-error" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1557 from snyk/fix/indicative-message-for-missing-packages" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1512 from snyk/fix/k8s-object-requirements" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1544 from snyk/fix/add-prune-duration" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1513 from snyk/refactor/iac-owenrship" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1552 from snyk/feat/get-command-version" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1508 from snyk/fix/improve-error-message-for-scanning-an-image-that-doesnt-exist" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1554 from snyk/fix/group-vulns-name" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1509 from snyk/DC-998/fix-headers-docker-desktop" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1562 from snyk/feat/bump-gradle-plugin" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1502 from snyk/smoke/docker-root" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1558 from snyk/feat/add-impact-and-resolution-to-github-security-cc-517" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1507 from snyk/fix/support-globs-pattern-yarn-workspaces" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1565 from snyk/spike/declaration-ready" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1504 from snyk/feat/add-jar-scanning-inside-container" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1567 from snyk/chore/cli-alert-improvement" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1497 from snyk/feat/add-poetry-support" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1568 from snyk/CAP-58/bump-sdp" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1503 from snyk/fix/dockerfile-instructions" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1570 from snyk/fix/update-go-plugin" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1485 from snyk/feat/add-metrics" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1571 from snyk/fix/log-filtered-out-files" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1501 from snyk/refactor/update-iac-smoke" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1573 from didier-durand/fixing_bug_report_md" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1491 from snyk/feat/get-slack-alert-when-smoke-tests-fail" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1579 from snyk/smoke/case-insensitive-downloader" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1492 from snyk/smoke/extend-node-and-fix-brew" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1582 from snyk/fix/poetry-handle-circular-dependencies" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1495 from snyk/feat/tidy-up-help" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1576 from snyk/feat/test-iac-parallel-requests-cc-594" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1480 from snyk/feature/paths-always-displayed-when-available" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1586 from snyk/feat/improve-gradle-reachability" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1493 from snyk/fix/clear-container-spinner" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1591 from snyk/fix/mvn-add-support-for-wars-and-aars-in-scan-all-unmanaged" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1489 from snyk/fix/enhance-gradle-cycles-detection" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1593 from snyk/smoke/fix-smoke-tests-binary-install" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1475 from snyk/feat/fail-if-invalid-platform" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1592 from snyk/smoke/add-docker-bundle-test" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1486 from snyk/fix/clear-spinner" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1587 from snyk/fix/remove-extraneous-field" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1481 from 0xflotus/patch-2" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1578 from snyk/chore/cli-alert-improvement" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1479 from snyk/feat/track-integration-env" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1594 from snyk/chore/update-help-project-name-prefix" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1483 from snyk/feat/tidy-up-help" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1596 from snyk/fix/gradle-54-java11-dockerfile" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1482 from snyk/feat/improved-reachability" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1602 from snyk/fix/scanning-lock-due-of-unresolved-dependencies" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1462 from snyk/test/runTest-test" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1603 from snyk/fix/more-than-one-line-with-jsondeps" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1430 from snyk/feat/iac-test-directory-support" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1600 from snyk/fix/flakey-fn-and-test" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1476 from snyk/fix/pass-container-monitor-org" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1606 from snyk/smoke/debug-docker-bundle-install" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1471 from snyk/feat/integration-name-homebrew" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1595 from snyk/fix/iac-add-file-path" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1459 from snyk/feat/container-static-scanning" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1601 from snyk/feat/iac-experimental-local-exec" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1473 from snyk/chore/danger-tap-detection" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1612 from snyk/fix/gradle-graceful-resolvable-configs" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1463 from snyk/DC-958/remove-docker-test-limit-cta" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1564 from snyk/feat/mod-cli-init" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1470 from snyk/feat/update-mvn-plugin" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1615 from snyk/revert/fix-git-less-install" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1465 from snyk/fix/remove-smoke-flake" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1616 from snyk/feat/CAP-111-auto-detected-user-instructions" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1460 from snyk/chore/ukrainian-woof" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1617 from snyk/fix/create-shasum-under-binary-releases" is not a valid commitizen message. See Contributing page with required commit message format.
🚫

Commit "Merge pull request #1534 from rouanw/readme_grammar" is not a valid commitizen message. See Contributing page with required commit message format.
Warnings
⚠️

Your commit message "Merge pull request #1456 from snyk/feat/revert-container-static-scanning" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1515 from bgeveritt-snyk/fix/nuget-diff-target-monikers" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1516 from snyk/fix/dont-create-json-if-you-dont-need-it" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1542 from snyk/feat/add-go-binaries-scan-in-container" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1519 from snyk/fix/handle-poetry-dependencies-with-underscores" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "feat: bump gradle plugin to support non root gradlew for reachable vulns" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1558 from snyk/feat/add-impact-and-resolution-to-github-security-cc-517" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1582 from snyk/fix/poetry-handle-circular-dependencies" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1576 from snyk/feat/test-iac-parallel-requests-cc-594" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1591 from snyk/fix/mvn-add-support-for-wars-and-aars-in-scan-all-unmanaged" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "fix: up python plugin version to autoresolve dependencies w/ underscores" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1594 from snyk/chore/update-help-project-name-prefix" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1508 from snyk/fix/improve-error-message-for-scanning-an-image-that-doesnt-exist" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1602 from snyk/fix/scanning-lock-due-of-unresolved-dependencies" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1507 from snyk/fix/support-globs-pattern-yarn-workspaces" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1612 from snyk/fix/gradle-graceful-resolvable-configs" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1504 from snyk/feat/add-jar-scanning-inside-container" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1616 from snyk/feat/CAP-111-auto-detected-user-instructions" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1491 from snyk/feat/get-slack-alert-when-smoke-tests-fail" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1617 from snyk/fix/create-shasum-under-binary-releases" is too long. Keep first line of your commit under 72 characters.
⚠️

Your commit message "Merge pull request #1480 from snyk/feature/paths-always-displayed-when-available" is too long. Keep first line of your commit under 72 characters.
⚠️

Looks like you added a new Tap test. Consider making it a Jest test instead. See files like test/*.spec.ts for examples. Files found:

  • test/cli-alert/package-lock.json
  • test/cli-alert/package.json
  • test/cli-alert/src/index.ts
  • test/cli-alert/tsconfig.json
  • test/error-format.test.ts
  • test/fixtures/basic-apk/jsonData.json
  • test/fixtures/basic-apk/jsonDataGrouped.json
  • test/fixtures/basic-apk/results.json
  • test/fixtures/basic-npm/jsonData.json
  • test/fixtures/basic-npm/results.json
  • test/fixtures/cpp-project/add.cpp
  • test/fixtures/cpp-project/add.h
  • test/fixtures/cpp-project/debug-display-windows.txt
  • test/fixtures/cpp-project/debug-display.txt
  • test/fixtures/cpp-project/display-windows.txt
  • test/fixtures/cpp-project/display.txt
  • test/fixtures/cpp-project/error-windows.txt
  • test/fixtures/cpp-project/error.txt
  • test/fixtures/cpp-project/main.cpp
  • test/fixtures/cpp-project/monitor-dependencies-response.json
  • test/fixtures/cpp-project/testResults.json
  • test/fixtures/empty/not-supported.format
  • test/fixtures/find-files/broken-symlink
  • test/fixtures/find-files/gradle-and-kotlin/build.gradle
  • test/fixtures/find-files/gradle-and-kotlin/build.gradle.kts
  • test/fixtures/find-files/gradle-kts/build.gradle.kts
  • test/fixtures/find-files/gradle-kts/subproj/build.gradle.kts
  • test/fixtures/find-files/gradle-multiple/gradle-another/build.gradle
  • test/fixtures/find-files/gradle-multiple/gradle-another/subproject/build.gradle
  • test/fixtures/find-files/gradle-multiple/gradle/build.gradle
  • test/fixtures/find-files/gradle-multiple/gradle/subproject/build.gradle
  • test/fixtures/gradle-prune-repeated-deps/build.gradle
  • test/fixtures/gradle-prune-repeated-deps/gradle-pruned-dep-graph.json
  • test/fixtures/homebrew/Cellar/snyk/vX/.brew/snyk.rb
  • test/fixtures/iac/depth_detection/.hidden.tf
  • test/fixtures/iac/depth_detection/.hidden/hidden.tf
  • test/fixtures/iac/depth_detection/one/one.tf
  • test/fixtures/iac/depth_detection/one/two/three/four/five/five.tf
  • test/fixtures/iac/depth_detection/one/two/three/four/five/six/six.tf
  • test/fixtures/iac/depth_detection/one/two/three/four/four.tf
  • test/fixtures/iac/depth_detection/one/two/three/three.tf
  • test/fixtures/iac/depth_detection/one/two/two.tf
  • test/fixtures/iac/depth_detection/root.tf
  • test/fixtures/iac/kubernetes/pod-invalid.yaml
  • test/fixtures/iac/kubernetes/pod-privileged.yaml
  • test/fixtures/iac/terraform/sg_open_ssh.tf
  • test/fixtures/iac/terraform/sg_open_ssh_invalid_go_templates.tf
  • test/fixtures/iac/terraform/sg_open_ssh_invalid_hcl2.tf
  • test/fixtures/npm/no-dependencies/package.json
  • test/fixtures/original-severity-vulns.json
  • test/fixtures/scoop/bad-manifest/manifest.json
  • test/fixtures/scoop/good-manifest/manifest.json
  • test/prompts-show-original-severity.test.ts
  • test/smoke/.shellspec
  • test/smoke/README.md
  • test/smoke/alpine/Dockerfile
  • test/smoke/alpine/entrypoint.sh
  • test/smoke/docker-root/Dockerfile
  • test/smoke/docker-root/entrypoint.sh
  • test/smoke/install-shellspec-win.sh
  • test/smoke/install-snyk-binary-win.sh
  • test/smoke/run-shellspec-win.sh
  • test/smoke/setup-alias-for-snyk.sh
  • test/smoke/spec/iac/snyk_test_directory_spec.sh
  • test/smoke/spec/iac/snyk_test_k8s_spec.sh
  • test/smoke/spec/iac/snyk_test_terraform_spec.sh
  • test/smoke/spec/sanity_spec.sh
  • test/smoke/spec/snyk_auth_spec.sh
  • test/smoke/spec/snyk_basic_spec.sh
  • test/smoke/spec/snyk_monitor_spec.sh
  • test/smoke/spec/snyk_test_spec.sh
  • test/smoke/spec/spec_helper.sh
  • test/system/cli-json-file-output.test.ts
⚠️

Your commit message "Merge pull request #1557 from snyk/fix/indicative-message-for-missing-packages" is too long. Keep first line of your commit under 72 characters.
Messages
📖 You are modifying something in test/smoke directory, yet you are not on the branch starting with smoke/. You can prefix your branch with smoke/ and Smoke tests will trigger for this PR.

Generated by 🚫 dangerJS against e4c5066

@github-actions
Copy link

github-actions bot commented Feb 4, 2021

Expected release notes (by @maxjeffos)

features:
Auto detect user instructions from image (f6b2faf)
experimental standalone protect package (6340ee7)
initial modular cli (9c7b3df)
iac experimental single k8s file (f8bd3f3)
add help for new --project-name-prefix flag (2593496)
improves reachability on gradle (380ed89)
Run the IaC queries in validate & test in parallel (70937e9)
Add impact and resolve fields in sarif output. (bb2a470)
bump gradle plugin to support non root gradlew for reachable vulns (fa80a71)
analytics- enable getting a command version (8097297)
improve class path discovery for maven projects (91a60ab)
maven support aar unmanaged files (93ef66a)
Adding group-issues option for JSON output (ea8f68d)
enable Go binaries scanning inside containers (31538c4)
Bump docker plugin to enable env var auth (dd8841e)
Implement --detection-depth flag in iac module (2c5eddb)
new —help documentation (69a8327)
monitor cpp projects (3a91100)
improve help command (1237e7d)
bump python plugin version to include graceful fail when no deps (b441582)
bump docker plugin version to include jar scanning in container (625b69c)
add metrics to analytics (79b27bb)
use NETWORK_TIME timer in request (27fd89f)
add metrics framework (1db5492)
add python poetry support (352d1b0)
container command correctly handles DOCKER_HOST (fb92ba3)
Fail if container image manifest does not exist (20d2648)
add container subcommand to main help text (1aed90b)
make reachability human friendly (bf34424)
better error message propagated if available (e1822cf)
paths always shown where available (bbe872a)
iac test directory support (0691d66)
add platform metadata to human-readable output (ab2ddc5)
container static scanning in monitor command (e18e4d4)
container static scanning in test command (800b57b)
release latest snyk-gradle-plugin with extra logging (54c48fb)
container static scanning in monitor command (02e7681)
container static scanning in test command (9ee6641)
set integration name if installed with scoop (8673105)
decrease unsupported package manager error to warning (1984eb9)
remove logs when downloading java call graph builder (b66ab85)
upgrade maven and gradle plugins (7d33389)
add platform info to CLI output (0b28856)
display scan result as human readable format (e4def12)
support any k8s object kind (1cc3c2e)
add reachable vulnerabilities support for gradle (a0e7460)
add tracking for netlify plugin as source (7c53560)
Fail 'snyk container' if '--platform' unsupported (bfb7673)
update scan result interface (b9c4859)
add sles scanning support (646d68a)
iac test terraform support (c32824e)
SARIF format support for IaC and containers (02e9bf8)
add spanish language to snyk woof (50b8196)
Add platform details to help for snyk container (565df40)
use debug option with snyk-cpp-plugin (c363c16)
Add platform to project metadata (d8584f7)
Error handling for --platform flag (dd1bc70)
improve snyk source test display (3796530)
Adding '--platform' flag to 'snyk container' commands (83641ca)
remove yarn2 support (210408e)
exiut code 3 for no detected projects (9151ff0)
use snyk-gradle-plugin@3.6.2 that sends back project targetFile (5720a16)
handle empty package.json dependencies without error (a234c41)
log detected orphaned gradle files + test (d323180)
return all files detected from find() (77d11ba)
use cli-interface with TargetFile in meta (53a90d4)
return object with files from find-files (cbdbcd3)
simplify multi scan check with a function (d02a212)
explicitly write we support K8s only (IaC) (8be11a4)
test dependencies for ecosystems (5344db4)
adding cta for docker users (4f16863)
add -p as alias for --prune-repeated-subdependencies (16dc73f)
add snyk-cpp-plugin (c28237b)
Bumping snyk-docker-plugin to 3.17.0 (4a1e32f)
support custom ruby filenames with --file (42b3a51)
bump cocoapods plugin to update graph & cli interface deps (4c3a141)
Allow environment variables to override config values (16fc432)
show original severity if overridden by a policy (30a8cd7)
prefer build.gradle if kotlin also found (6e806fb)
detect gradle.kts files (57d8d02)
improve iac test json output (77c793d)
remove file flag from iac tests (50b1ee7)
improve error reporting for reachable vulnerabilities (31415a9)
scan gradle projects behind --all-projects (a2bfc89)
docker bundle (a745b64)
Support using Docker JWT token for snyk test (28af1c7)
support setup.py automatic detection on containerized cli (57c9b00)
support specifying Pipfile on containerized cli (382e758)
update mvn-plugin to include dirs when creating callgraphs (312c318)
increase tool flexibility for container static analysis (416289a)
add gomodules support depgraph, drop deptree (2168030)
if present display projectId in --json output (e181806)
add support yarn v2 (4c0d6e2)
scan container images without docker client (c719081)
yarn v2 support and workspaces alt config (3a1ac38)
detect other files & suggest to use --all-projects (20b1811)
bump default depth to 4 for --all-projects (79dbca8)
increases max limit of a project paths to be processed (7ff8ca6)
send on original gradle project name (26dac3e)
improve IAC test output (2a9c71b)
update help docs with --yarn-workspaces usage (0d9c7e4)
throw if using workspaces with disallowed options (1168d09)
introduce yarn workspaces scanning test & monitor (51c75d4)
show reachable paths for supported projects (b91c3f1)
support IaC configs test (K8s only) (5dc2c44)
add Kubernetes configs detection logic (9fe44b2)
add build.sbt to list of auto detactable manifests (a91a731)
add new iac (Infra as Code) mode (17170c0)
update snyk test prune logic (cc1d4cf)
support potentially reachable on snyk test (e5efa7f)
unify policy handling & plucking (197f1ec)
expose snyk-test debug context with -d (f22061d)
gradle support of depgraph (768aa07)
support snyk test & monitor with depgraph from plugins (23dc1b3)
initial gradle graph support (4fc47a3)
increase max path, to allow large projs pass after prune (8e0e56c)
Update snyk-docker-plugin for extra error handling (903a794)
remove then-fs package (99da9c2)
Update snyk-docker-plugin for oci images support (15503c9)
update mvn plugin to include new java call graph generator (8eb6f25)
add os and isDocker query strings (d12812e)
--reachable-vulns supports --all-projects flag in CLI (345ee05)
support gradle v2 on new task and drop legacy one (74f65db)
do contrib count on monitor if analytics enabled (13a6d86)
extract allowAnalytics function in analytics (576a9ad)
add lib for contributor count (1e94191)
include standalone-ness in the analytics (7a5a2e0)
add IPv6 detection to fix auth bug (fae72ff)
upgrade debug (82698ab)
allow a mode to display its custom help message (92bde5e)
add --json-file-output option for snyk test (4de2ebb)
add defualt utm params for cli auth flow (19d577b)
upgrade cocoapods plugin (bundle shrink) (9936810)
upgrade snyk-module (f01ee74)
remove git-url-parse dependency (dd86bc9)
@types are not prod dependencies (75775ce)
include command "container" as alias for option "--docker" (6bc0085)
switch back to upstream configstore (a34b8d5)
switch back to upstream update-notifier (366c687)
upgrade nuget-plugin, removing core-js (c6c58ba)
container manifest file scanning in --experimental flag (183242c)
add monitor call graph metrics (8eb4a80)
support snyk monitor --reachable-vulns (f0abb35)
add callgraph metrics to run-tests (904e47b)
patching vulnerable lodash with @snyk/lodash (c359e05)
adding target to container projects (4b969fd)
bump docker-plugin to use new format (fccaaae)
add reachable vulns to the snyk test summary line (3487ca5)
include better user messages for reachable vuln (b1d0311)
enable experimental docker-archive scanning (5e627c6)
switch to use 'open' since 'opn' is deprecated (1474223)
upgrade of snyk-nodejs-lockfile-parser (2478ed5)
add analytics for Snyk CLI plugins - map SNYK_INTEGRATION_NAME and SNYK_INTEGRATION_VERSION env vars to analytics - add 'SYSTEM_TEAMFOUNDATIONSERVERURI' tag to ciEnvs for Azure DevOps Pipelines (98aee43)
migrate to CircleCI for unique project pipeline (4905b6e)
enable ruby graph monitor (aebf3b2)
iterate on reachability output text (0c0263f)
support maven reachable vulnerabilities for snyk test (8b805e1)
support reachable vulnerabilities output for snyk test (59a0e39)
container alias for docker flag (be9e9f6)
snyk-docker-plugin with experimental Distroless scanning (0080f1d)
drop snyk test-unpublished legacy command (20ea77b)
use 8 as min supported runtime message (f6779fa)
drop node 6 support by no longer testing for it (566a54b)
silence noisy error behind -d for --all-projects (dcb918a)
support login utm from environment variables (aba5b03)
drop isolate & modules commands (7b973e0)
bump snyk-docker-plugin. Added pull if image isn't local logic (bd79fc2)
update snyk-gradle-plugin to use --daemon option if passed (5fb1ff7)
check Windows tests in Travis (fcd1a89)
update go plugin to respect --file option (d5c09c8)
move windows tests to CircelCI from AppVeyor (72f3e9c)
delete unused hook.js code (abf633b)
snyk-mvn-plugin with mvnw support (253a5ad)
use latest python plugin (3c06cb6)
add java and maven version to analytics (23cbd4c)
add python to auto manifest discovery (e1651dd)
push targetFileRelativePath to registry payload (c25a142)
enable paket to be autodetected with --all-projects (db34336)
add go dep, vendor and mod to auto detect (65e0a76)
enable --json for docker cli by default (75f9a7d)
detect Pipfile projects & update Docker docs (a0293d0)
enable composer.lock for --all-projects (cdb6de4)
enable cocoapods for --all-projects scanning (5851a7f)
increase default levels deep to 2 (7c60f77)
propagate full plugin meta always (e09faa0)
add exclude arg and use to ignore (9ba768c)
add Nuget files to auto detection with --all-projects (e08eea0)
switching from usage to help documentation by default (91533ad)
add experimental options to help text (922b109)
multi level auto detection with flag (5eccd37)
add tests for --all-projects and --file comparison (d93a996)
bubble up package manager and always use multiple res (a65d132)
monitor --all-projects feature & tests (7491df6)
get deps via shared getDeps function (f4a60f1)
add analytics for --all-projects (1912a1d)
getSubProject count helper (bff57f3)
extract formatting and add types (062ff50)
work with multi result for monitor always (b31b018)
scan with --sbt-graph by default (b2150ea)
move gettings deps into plugins (23f0baa)
enable pom.xml to be auto detected for --all-projects (a29a19e)
drop pinning flag (cf17af6)
support setup.py, custom requirements.txt on cli python docker (c210602)
Support setup.py in the python docker images (81de2e2)
auto detect snyk test (6c1db27)
perf improvement for yarn lockfile projects (90cba84)
better error for setup.py (976ae7a)
enable yarn to send graphs for cli monitor (1d9f519)
bump plugin no functional changes (6144021)
drop node 6 alert, it will come from the back end (bb87f4e)
send targetfile same as for monitor (c87be42)
filter each folder to grab 1 file per project type (9246292)
support setup.py & normalise package casing (32d7696)
bump nuget plugin, no functional changes (c1327ff)
bump nuget plugin to 1.14.0 no functional changes (6e623d3)
find files func in prep for auto detection (8ef2bd9)
add fail-on arg (6fed61e)
support mvn --scan-all-unmanaged (ac81480)
Revert "Merge pull request snyk#884" (20f22ba)
add support for setup.py (dec4f5a)
include the org specified with --org in analytics (e7fdc49)
asynchronously process monitor args (22629c9)
re-enable single jar scanning (758aa68)
adding folders for git testing (cfbaaf3)
send remoteUrl with payload when doing a snyk test (c52f197)
add unmanaged jar scanning (9cbeed4)
bump cli-interface that brings in skipUnresolved option (386d523)
bump snyk-gradle-plugin version to latest (f22925b)
pass allowMissing to ythe python plugin (52b5b48)
add *.war support (e699598)
update snyk-sbt-plugin to latest (119896f)
detect *.jar files as maven (e845d19)
Release CocoaPods test and monitor (3e5cb12)
composer dev require (7af2b63)
show missing deps for old monitor too (360e686)
added an eol warning for node v6 users (0207140)
added a method that checks for node.js v6 (f61ae36)
refactor project count (5dccb99)
restructure monitor into a folder and formatter (17410d5)
extract converting multi to single result (2fe0961)
extract gradle sub-project count (781a516)
validate monitor path function (343ae0f)
updated snyk-gradle-plugin to latest version (9be1a2c)
user external spinner in npm and monitor (bf6c40e)
introduce spinner lib to replace custom one (05738b1)
user new spinner lib for auth (2cc2853)
updated snyk-cli-interface to latest version (e4c8baa)
remove proxy-agent bundle & update to 3.1.1 (f88202a)
removes npm update prompt (b25335b)
keep nuget plugin up to date, no functional impact (e7d1f36)
refactor auth to use async await (6d1deba)
convert ruby to send back multi project result (0127e0a)
Multi licenses formatting (3a7e995)
rename sub project to project name (fb43699)
convert nodejs to use multi format (468ec63)
add CocoaPods support (4bbcc3c)
Update to 3.1.0 snyk-gradle-plugin (59752c7)
improve run test logs (6eb5be0)
in the new output mode, show the test summary first (d7438a1)
(experimental) shoiw pinning remediation advice for Python (d66c57c)
show vulnerable paths: 3 modes, support new test output (0deb44c)
Actionable remediation license info section (edf6c4d)
release new sbt plugin (01ed1c4)
add legal instructions (94f8280)
update nuget plugin to support net4 target framework (3a3449f)
update resolve-deps to remove @types/package-json dependancy (98bb501)
update snyk-sbt-plugin to bring java 8-12 support during build (969b317)
sort all vulns by severity before display (b741f66)
add --remote-repo-url flag (c626be5)
docker-plugin bump (5677e7e)
Update snyk-mvn-plugin (98f11cd)
show vulnerable module in actionable remediation (6849a2c)
better Python analysis, updated plugin interface (b35d617)
fixed in info on vulns (b28d01a)
add a Dockerfile for maven 3.6.1, gradle 5.4 and support java11 (5ed139e)
release refactored resolve-deps (90475ed)
special error for too many vuln paths (82e7ca6)
move prune logic in separate file (842ef7f)
prune graph on test if asked (f0e51f2)
bump snyk-mvn-plugin to v2.3.3 (ab7534e)
Render the actionable advice via new formatter (3803df8)
bump graph lib to use cyclic labels (aa74005)
send ignorePolicy to server if ignore-policy option is set (d184e4e)
add pruned-cyclic label to nodes (f1a3cdd)
update sbt plugin that fixes wrong sbt version retrieving (962fc30)
get missing deps only for npm and yarn (01f3973)
use trees for handling sbt projects monitor (695a449)
filter missing deps before graph conversion in monitor (53ceb5f)
introduce formatter structure (dbd354e)
Actionable remediation types (a5ccd0d)
prune graph when prune option is passed in (991ecab)
update php plugin to move tslib as production dependency (8b01220)
Unsupported package manager error (cdad830)
Make prepare/prepublish scripts windows compatible (fd77b39)
send graph instead of tree in case of ff and npm (d70761d)
use windows compatible && not ; in scripts (9b94165)
send api version number in header to API (a08cd5f)
support project name option in test command (3fbf139)
update the sbt plugin to accommodate a github issue (88a4b68)
add check for for monitor (b5aba48)
standalone binaries based on nodejs 10 (f6acf66)
docker images based on nodejs10 (5010531)
bump dep-graph semver (5ff7446)
update sbt plugin, so output will contain packageFormatVersion (ebf3915)
update sbt plugin (7501b74)
refactor snyk test http errors (0b8baa7)
autodetect go.mod file (bb404ad)
convert to ts (7eeb771)
upgrade sbt plugin to use custom dependency generation plugin (e5c8864)
send analytics for docker and depgraph (bfb38b2)
Missing policy and failed to load policy errors. (4ada94b)
remove isOutdated functionality from snyk test (92e95e4)
pruning of big-trees if a flag is specified (7d93b5d)
add monitor errors (aaea9bf)
add monitor errors (d3a3644)
add isDocker to monitor analytics (2ee3d41)
Add branch analytics back (5f71703)
Add more analytics around monitor (acb34dd)
Release typescripted sbt with timeout handling (6ea9891)
allow monitor for go modules (4a9149d)
experimental command line flag to print the dependency tree (c431bc4)
update snyk-php-plugin version (ce6474b)
Go Modules support (4b6e4b9)
Gradle improvements: Android config selection, verified Gradle 2.x support (c8bad2d)
revert gradle plugin to undo breaking change (49405e9)
preparation for go modules support (de23aa3)
select Gradle confugiration via name/attributes, simplify analytics (41d9d56)
add branch and pkg name to monitor analytics (b91d2ae)
make human-readable err message when --file was passed incorrectly (6e2336a)
display dockerfile instructions in the web UI (953c822)
Vulns to use exit code 1, errors 2 (2053048)
allow passing color for docker cli response (165c29d)
pass dockerfileLayers in metadata (1c5d925)
release coursier suport fot for sbt (8312e85)
Check for mandatory targetFile to avoid runtime errors (21b3fa1)
improve error handling when no files detected (49c7fb9)
use depGraph lib for npm and yarn snyk-test path (a085a05)
send target data on monitor to registry (868a907)
if a non-existing Gradle config is specified, suggest existing ones (fd49ee4)
release mvn plugin with better test matrix (a688e5b)
release new python plugin version that handlers markers better (f3c8c52)
Update snyk ignores (01c9d0d)
suggests --all-sub-projects flag for multi-project gradle builds (af339ac)
Release gradle plugin with improved tests per Java versions (ec33221)
Bumping snyk-docker-plugin version (096b470)
Release improved project naming for csproj behind a flag (49ad843)
new debug logs around plugin's inspect (cc957d0)
upgrade go-plugin with more logs and error handling (faeec34)
bump nuget plugin (8793a30)
when gradle subproject is not foudn, list all avaialable (18be4b6)
Parse node engines from package.json (b8340f3)
monitor all-sub-projecs (d12167d)
parameter all-sub-projects (c3db7ca)
accept multiple dep trees from plugins (dfb2996)
read targetFramework from assets file (8794722)
bump deps (26f40fb)
Update unsupported runtimes (8d02fe4)
handle renamed dependencies supported by Yarn (43e5004)
bump Gradle plugin (all configurations merged, better dependency expansion) (626659e)
bump Gradle plugin version (improved Windows support) (83b1b85)
send target file for kotlin but not groovy projects (0c73406)
Exclude base image vulns in --json option (e16e0f2)
Let yarn projects be monitored as yarn type (a9fbe26)
Add support for gradle's kotlin-dsl (825332a)
bumping snyk gradle plugin to 2.1.4 (9e2e6b7)
update auth text to snyk auth (2281ecc)
Pass down strict out of sync flag to the lockfile parser (42b1ec1)
bump docker plugin to 1.22.0 - handle SHA256 as tag name (174eba0)
add paket (6ebacda)
use jsdiff instead of 'patch' to reduce dependency on OS binaries (3e5838a)
remove misleading docker layers count breakdown (a25d205)
bump snyk-docker-plugin to include openjdk analyser fix (2545dbe)
exclude docker base image vulns from display flag (4698eaa)
docker options passthrough and adoptopenjdk support (bd186e7)
Bump lockfile parser version to detect yarn workspaces (303524c)
bump docker plugin (5074af2)
move fixed in calculation for os packages to phoenix (a38167c)
remove semver for binaries and use nearestFixedInVersion instead (97a2d63)
send docker image layers SHAs (0827c2e)
Split dockerfile / base image vulns (b2f530d)
display fixed in version key & refactor binaries issues display logic (80daaf5)
dedicated display docker binaries issues (c3f6b3f)
support docker binaries display (c04550b)
bump snyk-docker-plugin version (6d1d546)
add a CLI message when newer version is available (5053c4e)
sha256 checksums for binary releases (0b13a04)
bump docker plugin version (b8e085c)
bump docker plugin (83d4c9c)
Bump required lockfile parser version (762f056)
test plugin dep-trees as graphs via new /test-dep-graph API (b23d9cc)
suggest using --docker (31ee873)
send the base image to registry when running snyk monitor (cb78573)
Bump lockfile parser version for perf update (c1aca6b)
allow git urls in manifest file (3e86cfd)
display suggestion for using dockerfile commit d94c2eea3f8b7637393a0cabdf0c30f52c3ea501 Author: Or Kamara orkamara@gmail.com Date: Thu Nov 1 10:19:18 2018 +0200 (006a2f6)
Rename cliMessage to userMessage for consistency (d04d675)
bump python & golang plugins (00e91f5)
docker base image remediation advice (5df5863)
'--gradle-sub-project' option to handle multip-project gradle (e986f79)
autodetection for test, monitor, wizard & protect (20b8ccc)
Bump resolve-deps to latest (72df523)
upgrade maven, gradle and SBT plugins to reduce payload size (6b54007)
add yarn.lock support (08d6248)
add typescript support (75961b7)
upgrade snyk-docker-plugin (4353b9f)
Bump snyk mvn plugin to latest (62374b0)
add more tracing info on docker entrypoint (979fe5d)
add debugging info on docker entrypoint (716ea3e)
support dev dependencies in lockfile (bbd367d)
support nested folders for lockfiles (8cfd8f8)
fail when shrinkwrap is present and using lockfile (c0a0a4b)
split up some logic for reuse for test (d3a575a)
opt-in to package-lock test by pointing to lockfile (4ccfdfe)
add support for Python projects using pipenv (2a6938f)
style wizard prompts to look similar to test (179fa24)
add python dockerfiles (a51ad76)
Improved CLI output to match closer the web UI (79a8d6c)
bump docker plugin to 1.10.2 (a7f7c47)
allow for error message to be displayed on the cli (ee5bb39)
show fixed in version (707effe)
bump docker plugin to 1.9.0 (0ba810b)
monitor support for docker (beta) (ba9ad07)
test support for docker (beta) (957f180)
robust *.sln file parsing for project paths (28a1dad)
bump python plugin to 1.6.1 and go plugin to 1.5.1 (eb824ac)
bump nuget plugin to 1.6.1 (54f3d14)
bump php plugin to 1.5.1 (9290ea9)
add nugget system deps (ab92741)
update deps (adf9b7b)
add payload size to analytics (6b9b538)
don't send from arrays in pkg trees (91893f6)
use proxy-agent for proxying (439195c)
better url-opening ability for snyk auth flow (ff777dd)
bail out on unsupported nodejs runtime versions (9bc11d1)
drop support for Node < 4 (42796e7)
update snyk-resolve-deps to reduce size of dependencies (933f3f1)
remove update notifier (042c476)
support yarn for protect scripts (7e10aae)
a seperate spinner for "Analyzing deps ..." (db91114)
add severity-threshold flag (c2399ae)
add insecure mode (ignore unknown certificate authorities) (5ae3182)
multi param support for monitor (0cd8795)
sln support (f6e3ae9)
test multiple paths (d47ab14)
publish snyk cli binaries on release (65c6b9b)
add monitor link to the report html file (42453cb)
add support for JSON output in monitor (c2f0b41)
auto detect composer.lock (2334a61)
auto detect nuget project files (7b9345b)
log non object errors as well (3547d4e)
add docker file for snyk with gradle 4.4 (665bf38)
add support for pkg (5cd8e40)
update php plugin for include system deps feature (edea22f)
golang: resolve imports for all subfolders (dd82774)
auto-detect golang/dep & govendor (3c5413f)
dep & govendor as separate pkg managers (107d16b)
add dockerfile for sbt-1.0.4 runtime (2d912a1)
add backward comp for the docker images (0fde59d)
add docker files for CLI and update README (23f426c)
display the settings used when conducting a test (91e083a)
upgrade snyk-policy to support disregardIfFixable (bb828a9)
check for ignore authorization (9e04191)
php plugin (089d012)
include API ignores in test & wizard (f007934)
adding .csproj file recognition as nuget (7c2d48f)
support package-manager flag and add it to monitor (40b91ce)
Adding NuGet plugin (0ef47d2)
allow custom project-name for monitor command (a7fdaa3)
allow custom policy location via --policy-path=path/to/policy (eb05db5)
sending double-dash args as an array (5718e86)
allow license issues to be ignored via snyk wizard (46dc5a4)
early access govendor support for Go (3040d31)
migrate from request to needle (09570c9)
early access alpha support for Go test (e36ba8f)
upgrade Gradle plugin (ac55af3)
upgrade Gradle and SBT plugins (b56cd5c)
implicitly detect scala projects (54188d2)
using mvn, gradle and sbt plugins (dec5ff8)
support SBT package manager (b461b84)
initial Python/PIP app support for test and monitor (5d9072b)
test and monitor support for Gradle (18d56d5)
add basic language plugin system (8071a3e)
prevent wizard from running when test limits are reached (b1b31d1)
for npm5, use the prepare script instead of prepublish (bcb4537)
display alerts returned via API calls (9a76dd7)
double-dash argument as last option in arg line (8291ec1)
add --show-vulnerable-paths flag (d984cb8)
use uri returned from API to point to new snapshot (6dc8b36)
reword 'vulnerability/ies' to 'issue/s' (2666868)
Add support for --org flag to snyk test and snyk wizard (94e4a36)
add snyk ignore command (e5fb843)
updated ReadMe to make more concise (aa895bb)

fixes:
generate sha256 correctly (706764a)
remove dependency that was using git URL and failing installs (3df91ac)
gradle graceful resolvable configs (ef81907)
use sync fs method to avoid race condition (2b211b9)
more than one line with jsondeps (a8dea5e)
scanning lock due of unresolved deps (746251e)
add full file path to output file for iac scan (88f9d9a)
gradle 5.4 Java 11 Dockerfile npm install (50d34c0)
add filter, use GH name convention (229e12f)
alert msg, constant failure of CLI alerts (027c24a)
smoke tests’ snyk binary download (0929dc3)
add support for aar, war and zip archives in scan-all-unmanaged (d9a7069)
remove extraneous logging field (d88bee6)
bump python plugin version to fix circular dependencies in poetry (e6c1373)
update go plugin (810bbe0)
make analytics typescript (714ba35)
bump docker plugin to explicity append latest (ece33af)
export ConfigStoreWithEnvironmentVariables (5c6d1b6)
add type annotation to request module (c25ab73)
show users 404 when a non existing package is scanned (9b26e2b)
Group issues should also group names (4ddf826)
show spinner scanning ecosystem (42be990)
Include all sarif results under a single run (4e3a699)
gradle deps resolution conflicts (18c456b)
Update @snyk/dep-graph (c1aca1e)
only check latest 7 smoke tests (cd0c86c)
add graph conversion while pruning duration analytics (0894113)
cli alert malfunction, readability improvements (293b848)
Error output for mismatched options (d79edf6)
improve newline handling on windows (14dffb0)
correct credential auth failure error text (f63c30a)
use Java call graph builder with long path fix (13f0f6c)
snyk-cpp-plugin blocking event loop (8868417)
restore analytics for tracking Docker/container calls (e782a3f)
update docker-plugin to avoid parsing bad base images (8d3ccaf)
use snyk-config version v4.0.0-rc.2 (16d5ab6)
don't create JSON if we don't need it (f6d7217)
up python plugin version to autoresolve dependencies w/ underscores (18905cc)
add json module with jsonStringifyLargeObject (7012caa)
bump nuget plugin to fix diff target monikers (b8eab37)
remove spec requirement (bb7efaf)
Improve error message for scanning an image that doesn't exist (a5ccb25)
incorrect header sent for Docker Desktop requests (27b838e)
support globs pattern in yarn workspaces definitions (5554acf)
annotate deps with Dockerfile instruction that introduced them (fbaeab1)
line in help against wrong command (8a95f49)
clear spinner in container monitor command (8ea4d92)
enhance gradle cycles detection (74ec377)
clear spinner in snyk container command once finished scanning (89cd47a)
ensure errors are reported consistently in container cmd (ef3ce4b)
pass org as part of container monitor command (fd827fd)
correct classpath extraction for reachable vulns on windows (a932db8)
Remove flaky counters (591f597)
Revert releasing container static scanning (4fea3dd)
Revert updating Docker plugin name (905c33d)
update docker-legacy plugin name to resolve npm@5 issue (af13921)
remove docker desktop limit reached cta (a7eba63)
make constants uppercase (fa7c496)
correct match check for package.json when not part of a workspace (13ca22d)
woof command exported properly (0b6593c)
missing prune cmd on monitor for gradle & go (5e42f08)
container test should not run app vulns scan by default (b62c1c0)
fix --app-vulns flag parsing (fdaba26)
sarif change - severity to look the same for IaC and containers (4abfb97)
refactor and add getContributors fn (64ca6f1)
refactor Contributors type naming (026436d)
Not outputing sarif file properly (f063131)
ignore merge commits in git log (5a1699a)
add graphlib types (d2ea109)
update dependencies to use upstream lodash (0e9ac00)
align integration naming for JetBrains IDEs (8d680ec)
mvnw incorrect execution path (6914f77)
remove new line to prevent bad spinner clearing (fade21a)
pin broken needle dependency (7a04ad2)
ignore broken files during cpp scan (801535a)
test dependencies scan result type (a3438c0)
Bumping sdp to 3.18.1 (d147b24)
check if scanned project does have a callgraph (2d11938)
determine correct LockfileType for yarn v2 (c9152f3)
skip broken symlinks in find-files (cdffdc3)
add intentionally broken symlink to find-files fixtures (811af3f)
try to find the ruby lock & ruby custom gemfile test (dffbb75)
pin transitives for Node 8 support (0b6ef59)
move custom API endpoint warning message to stderr (77c66ed)
remove file flag from IaC help (7e599e0)
snyk auth command (26f96e7)
--reachable on Windows (0d2d9e7)
propagate failed monitor scans all the way to the user (7ef59ed)
command too long in reachable vulns flow (8ac28cd)
protect will not fail when there are not vulns to patch (7e31f59)
correct iac error import & add tests (efbcf84)
python autodetection in containerized env (57e860b)
correctly count graph packages (e80c8a1)
pass --dev to yarn workspace scan (43fc891)
abridge call graph creation error messages in analytics (7a68ad3)
improve reliability around call graph generation (44fc1e8)
skip --all-projects suggestion when a yarn workspace (a147c0f)
remove lodash main package from nodejs-lockfile-parser (a77d458)
missing dep in nodejs-lockfile-parser (1e02993)
Adding a flag to activate applications scans for container images (7dd3e1d)
rename reachable paths field (c2f2443)
Allow IPv6 (if supported) (75d39d2)
use lodash fork (e36f089)
gradle break cyclic dependencies (04ca645)
count pkgs from graph if count is undefined (a88c6c6)
options passed to snyk wizard (b7b9088)
show gradle --all-sub-projects suggestion on test (5bcd9de)
calculate the policy folder from targetFile (e75db65)
use relevant resolve dep tree types (9228e50)
allows scanning even if a single proj import fails (f451ee7)
bump snyk-docker-plugin to improve alpine scanning (dfb0844)
print-deps to only print under certain deps in graph threshold (45440ef)
upgrade snky-docker-plugin (d20b90b)
remove duplicated call to maybePrintDeps (9c23809)
revert apk package name origin change (04ab6ca)
correct error on missing target folder for reachable vulns (5034560)
handle undefined return from CLI command (1d71763)
make container commands use always static scan (11baf79)
Bump snyk docker plugin to handle errors (6de3cb1)
prune depGraph paths accuracy (c654afb)
upgrade docker-plugin to resolve crashes when scanning binaries (2b1091a)
command issue on check gradle version (708951b)
go-plugin js heap oom using reverse for loop (a16a9be)
gradle legacy version (38cc805)
gradle java OOM using graphs (4e5bcb6)
bug in rpm non-existence error handling in snyk-docker-plugin (0ed1db7)
add check if image name undefined (48cbf4a)
do not ignore project name override for container projects (9d4df01)
suggest --skip-unresolved for python test (d437796)
wrong path to display better test results (274618e)
enable mvn plugin logging when running with -d (5414755)
updated test command so Circle will test properly (7784567)
upgrade snyk-gradle-plugin from 3.2.5 to 3.2.7 (be56248)
Changed old fixtures to support new policy shape (0e65b5c)
upgrade snyk-policy from 1.13.5 to 1.14.1 (01afc36)
bump snyk-mvn-plugin to 2.15.1 (d23d0c8)
docker error on monitoring multiple projects (eddeaa1)
pin node 12 tests to 12.16.2 (16ef69c)
update lodash imports in lib to @snyk/lodash (2793ceb)
make sure branch exists (71ed530)
cli-server, fake-server and their tests now support Restify v8 (8df372e)
bump ruby-semver to use min Node 8 instead of 10 (a3ea038)
add missing global package to global packages (6f76bc1)
global packages permissions during release (3f41711)
install missing semantic-release package (ba042c7)
upgrade @snyk/snyk/nodejs-lockfile-parser from 1.17.0 to 1.18.0 (6200273)
upgrade @snyk/snyk-cocoapods-plugin from 2.0.1 to 2.1.1 (e708c89)
docker capitalisation (b7f94c8)
making sure writing to disk has finished before reading (7e53982)
image static scanning to send correct image ID (digest) (621c7e5)
only append utms if we are provided with them (db213ad)
only send analytics Monitor Graph as true when appropriate (8adc98f)
bumps dep-graph to v1.16.1 (0617176)
bump snyk-docker-plugin to 2.2.2 (ba37335)
improved python --command documentation (cecd701)
improvement of errors messages. (dffba72)
test msg. (1c78bd1)
cli error message when command fails. (703c2bf)
npm-lock-parser npm-shrinkwrap's error msg. (9b1e682)
drop tape as a dependency (075fb0a)
passing gradle metadata on monitor. (742f568)
on merge PR use correct commit SHA (752a032)
Bump version for the snyk-go-plugin (ca74e25)
vuln in transitive pkg of configstore (dot-prop) - rc2 (a551fce)
use @snyk/update-notifier instead of update-notifier (b74bbe2)
use @snyk/configstore instead of configstore (93845d9)
correct object path to mvn and java version (98a7031)
move --all-projects help text (1f1fd72)
move --json for docker cli right after the command (7205534)
add documentation for jar scanning (c1a5cf5)
correctly parse multistage dockerfiles written in lowercase (31b97e9)
snyk --version (73d070b)
skipping git-repos test (2d97c62)
add docker file flag option to help (df6a626)
snyk always being added as dependency when running wizard (49b0cd3)
bump gradle plugin version, so won't bring unused dependency (c3d7b9b)
use node 10 during travis release (5d83dc4)
CLI system test failures (7f79861)
stop sending full error to bq (12718f1)
reduce timeout on window open (c6f0b28)
allow tests to be run against any snyk API (878f5a9)
Ignore snyk Docker generated reports and result files (7925b27)
monitor --json errors are valid json (97dd8d2)
pass the trimmed targetFile to get deps for multi deps result (ba4658a)
calculate package.json indentation when running snyk wizard (f75f218)
use maven 3.6.3 and 3.6.1 is no longer available (bebfdd3)
fail-on arg with docker (98b99b6)
use provided org to check flags are set (db6b946)
Remove vendored tree-kill dep (ddbadcb)
monitor graph by default if enabled for nom and sbt (4e29c12)
unblock deploy pipeline by pinning pkg (bf9e963)
use remediation to calculate fail-on arg (cf71309)
check that provided remote url is a string (5664a99)
Remove tree-kill dependency (9c37bb4)
bug with --experimental-dep-graph and wrong auth token (924f10a)
show more meaningful error message for failed auth (79e5e47)
resolve linting problems (1d6c9ea)
prettier issue (94525a4)
Reverts "feat: add unmanaged jar scanning" (13bae9c)
ensure Gradle 6 is supported (73dd54e)
adds back update functionality on npm versions of release (530e73c)
update blocker on npm (0d07932)
look for missingDeps in labels too (6f27ed2)
propagate correct path on sln scan error (70b986b)
propagate correct relative path (7c489d5)
Update interface of DepTree from lockfile (a087e42)
revert feat: replace spinner (43f2368)
strip ansi chars when using --json (7aaf2df)
don't fail when there are no deps in csproj (a0a760e)
rewrite test to use fake server (e25ec3f)
refactor pin remediation data structure (7670c92)
add pinning advice back to legacy formatter (e6ce153)
avoid stack overflow with spread operator (8f05cde)
throw error when cli runs with multiple paths or sln and project-name option (b744709)
match semver patch (48c8062)
update tests to count vulns in new format (c76adb2)
show vuln note if present (6891566)
safely check for vuln info (840108b)
use plugin fix and revert pkg ver lookup (0681c70)
fetch patch ignoring command line arguments (c7bcc89)
add analytics for new issues format For smooth rollout of new issues format with actionable remmediation, it's useful to monitor how it is used and verify potential edgecases. (6eefb4a)
wizard support for multi result (17f5a3a)
update tests and process gemspec files too (da910fa)
bump snyk-go-plugin to v1.11.1 (3020829)
include package version in vulns lookup (375402d)
leave proxy-agent as bundled only to fix yarn install (5571ce7)
update snyk-cocoapods-plugin (f528673)
add packed dependency to prevent download from git (c918814)
address https-proxy-agent vulnerability (8815e84)
Improve parsing for marker expressions for python projects (e85691f)
ignoring SNYK-JS-HTTPSPROXYAGENT-469131 (244d0e0)
correct docs spelling (a73c5ea)
remediation package name color from cyan to default (grey) (b9867a3)
change help text to show current strict-out-of-sync default (5480bc3)
Do not show duplicate license issues (7894147)
single section in the output for pins and upgrades (ac20882)
Stop console logging snyk protect version (53c2f4d)
document --command option for Python (b1cffae)
actionableCliRemediation FF with severity treshold flag (1ad7165)
align indent (48f071c)
support subprojects in docker image and update docs (2b1b395)
do not display empty "licenses" block (81e363b)
switch to eslint for Typescript linting (ebc2326)
correct order of parameters in formatIssue (96bf2d8)
downgrade wrap-ansi version as we support node6 (2b8f433)
add wrapping to fix alignment of text (86cf4df)
support python_version wildcards in requirements.txt (cd51b89)
Ignore empty fixedIn arrays (1737acc)
proper error handling for snyk test command (5602cdf)
snyk policy command execution error and missed tests (241d0a3)
drop unused "scenario" command (ec84987)
bump snyk-nuget-plugin to 1.12.0 (cd98f4d)
reinstate --all-sub-project support for Gradle (047998e)
reinstate Gradle subproject arguments (30a2c86)
downgrade ansi escapes (f3a26fd)
spacing and wording (b081226)
typescriptify request and alerts (7bd0260)
upgrade nuget plugin for performance improvements (bf5adb6)
Update ignore policy option description (68441ca)
make strictOutOfSync option kebab case (3dc8759)
converted wizard to Typescript (a50d044)
add nuget dev option (95a6d10)
Propagate plugin error to users (38b15dc)
sbt docker images are now buildable (a05628b)
Revert "Fix/node10 binaries", stay with node8 binaries for now (2f00bf9)
monitor graph send body key (3fb53fc)
update go plugin to allow installation with pnpm (2c9962c)
only send targetFile on test when needed (b99e974)
node10 standalone binaries for windows, linux and macos (6f34717)
build alpine binary inside an alpine container (7a6afde)
revert to nodejs8 on standalone binaries (68ada6a)
upgrade sbt-plugin to support native packager (76326e4)
add build-essential for Python (35eec56)
Updating lodash to latest version (8bea435)
install git in snyk docker files (dedc7f0)
do not assume patch ranges are pure semver notation (598ca96)
properly fail on patch failure (170126b)
skip patch when dep package.json is malformed (3f617b6)
only match original vuln snapshot compatible versions (80c3717)
eslint issues (c1c259f)
update mvn and php plugins to get rid of vuln lodash (8ebdc1a)
update vulnerable lodash (c9281cb)
Use pip instead of pip3 in both images (b2f7176)
Upgrade Python3 to 3.7 instead of 3.5 Some packages require higher versions to be installed (ca6958b)
isDocker is a boolean flag in analytics (8dfee30)
reinstate missing tests (c28d85e)
wizard help text (3aa9d20)
missing config command in help.txt (98b29c2)
ignore new lodash vuln (6d11935)
send depgraph as a bool (aba32fa)
remove unuseed function prop (239de91)
alpine binary built just as any other (3ecb38c)
make sure binaries are built on node8 (40d0599)
scan all Gradle subprojects when computing config attributes (44da7f5)
publishing container cannot run with TTY (2a83dd1)
add alpine platform to standalone binary release assets (fd44fc0)
apt update after adding docker repository (5f62bec)
preserve all additional deptree fields when pruning (040b328)
make docker images smaller (a692570)
add docker image for Gradle 5 (82e3527)
fix undefined in error for node_modules traversal (2f70dc5)
Init protect options (68ee346)
Add array includes lib (d5a7493)
use let/const instead of var (43f416c)
add alpine platform to standalone binary release assets (82ef58c)
name and version in gomodules (7cbc9e1)
align go modules package manager naming with backend (63f4597)
sbt-plugin stdin hanging (5602d4a)
add logging to sbt-plugin (c724c17)
show stacktrace only when in debug mode (31c42d9)
drop empty dependencies (payload size optimization) (dd4f623)
better error message when scanning Python projects (b4dba65)
typescriptify request.js (a75c021)
remove auto authentication on all commands other than auth (4e0c35f)
fix broken snyk help (19ff58f)
temporarily remove new Gradle configuration options from help (d2d4fa7)
gradle legacy --configuration flag and scanning from child project (c6dfaa0)
added a link to the Gradle documentation (f0abc1f)
Improve dockerfile instruction parser (2d4471f)
protect failing due to missing auth (ad29871)
Revert auth refactor which made snyk protect require auth (e34a6fb)
remove incorrect Gradle logging (d1bc261)
enable debug output from Gradle plugin (c4ab5f6)
use actual package manager for analytics (b86288c)
oracle linux version detection (86bb4e0)
bump python plugin to fix bug with urls in req.txt (cd8f34e)
do not scan all Gradle subprojects unless requested (4c303b7)
better wording for the "revisit policy" prompt. (d7d5ce4)
optimize scanning of large Go projects (bfef4fa)
correct remediation broken after last refactoring (42c2341)
switch to openjdk in java-related docker images (67f0582)
display the actual name of the missing file during failed remediation patch (25acf41)
reinstate injecting remediation hints into snyk-test response (c6527e8)
remove debug logging from the code (a4e9e8b)
Removing shell options causing too verbose output (9cccce4)
support Gradle wrapper projects with whitespaces in path (20335e5)
display monitor error code in the error message (e19969d)
Add package manager data to scratch images (ebd3b4a)
improve the performance of Go scans (c81bfe1)
newline formatting for the suggestion to use --all-sub-projects (f2ffa95)
do not offer remediation advice when scanning a non-local package (df104e3)
improve gzip compression of the payloads to handle some larger ones (f762374)
handle PHP projects with interdependent packages (efc1006)
do not fail if csproj not found (6bb10a1)
handle dependency cycles in Gradle projects (95bd1e6)
enable a workaround for Gradle Android configuration resolution problem (c7cbf12)
bump python-plugin (1.9.2); handle local dir in requirements.txt (f092346)
update the link to "language support" documentation page (4913a9b)
show analyzing label for multi projects (e3a5ef5)
prevent accidental unpatching of vulns (4447347)
replace recursive-readdir with glob for better perf (7669ac0)
correct assertion in wizard tests (0d33253)
show sub project name in results (22ebdfd)
downgrade nuget plugin (7729677)
create copies of original files prior to patching (7fc32ca)
Gradle analysis fixed in standalone Snyk binaries (94190d8)
Move exclude-base... option to docker plugin (d9da486)
support for Gradle < 4.3 (3bbe6d3)
inspecting of parallel Gradle builds (a9f0a65)
correct scanning when targeting Gradle subprojects (635380d)
highlight the use of machine name for orgs help (7181063)
Change strictOutOfSync to always be a string (b7a5b42)
remove unnecessary space in the output text (c9f40a9)
when running in a docker container, save monitor command output in a file (9d5cd3c)
properly unlink files that were removed by patches (908bc3a)
robust patch fetching to avoid a race condition (46da9c2)
update nuget-plugin version (607aabc)
bump deps (79f5411)
concise patch error metadata (0ad9e38)
more verbose error in case of patch failure (b303094)
Re-pin get-uri at 2.0.2 (8ed4755)
improve patch-fail error analytics (8f720dd)
bump nodejs-lockfile-parser to update vulnerable deps (c311382)
bump php plugin to better support file paths (319cf35)
bump docker plugin (3667dcd)
pin proxy-agent & get-uri deps to not-break node 4 (8bfae15)
Undefined base image (962810a)
bumping snyk-gradle-plugin (518a4be)
use consistent word style (c903a43)
typos and grammar cleanup (d62e30c)
update keywords for npm package (66fbc32)
bump version for snyk-policy dependency (6b32de4)
bump version for snyk-policy and snyk-nodejs-lockfile-parser dependencies (f8abcba)
corrected analytics keys to match conventions. (49abf37)
bump python-plugin to not depend on pip being available (6708739)
bump mvn, gradle and sbt plugins to support target file paths (29b5ce8)
add tests for missing package name (d2cfcb0)
add tests for missing package name (640eb2c)
gpg complains on non-tty mode in docker building process (d04bc43)
docker image fails with spaces in project folder names (ccf6db1)
missing comma in .releaserc (bba2038)
when "name" property is missing in package.json use path as a project name (0387444)
update @snyk/dep-graph bugfix handling of versions with pipes (b2f8173)
when package-lock.json file is present, snyk wizard included devDepepndencies in vulnerability count (df876c6)
Parse ARGs in Dockerfile FROM instructions (9291302)
CR fixes (580d9ae)
document the --policy-path option (827348e)
bump snyk-gradle-plugin to fix version parsing edge-case (0aa181d)
update snyk-docker-plugin to handle hosts with ports (03f50fb)
show friendly message on monitor timeout (bdf1b79)
Fallback to node_modules for initial wizard test (3362312)
avoid docker image name@tag being confused with a real package (846ebbd)
fix for assumed patch paths (370c0be)
don't print vulnerable paths count for docker tests (eb06722)
not delete from this (63a1f5f)
bump nodejs-lockfile-parser to allow 0 deps (50a954d)
update resolve-deps to skip ~ directory (a8938f9)
Add missing CLI help text for docker remediation (6f83cd1)
do not traverse node_modules on wizard monitor for yarn (8c41db7)
update message for path with file name error (e01f60a)
check if user specify package file name as part of path (1138eb2)
replace yarn.lock with package.json when falling back to node_modules (032aa1f)
pass if yarn remove called with no packages (8ad52a1)
bump snyk-python-plugin to 1.8.2 - to handle pip 18 (d24ce74)
Update runtime helper path (39976bc)
Fall back to config org if no option passed (99021be)
look for node_modules by package.json file location (fa4fa08)
bump snyk-resolve-deps version (ca32550)
move constants for test-unpublished to json and add it to package #225 (242a7c9)
bump gradle plugin to fix dep tree annotations (f6aeb61)
better error messaging for wizard without node_modules (45d892e)
bump needle to ^2.2.4 to fix bug with node 8.12.0 (79a8992)
better readability on monitor output (f455f65)
exit code 1 on snyk monitor failure (1a30329)
allow silent clearing of non-existent spinner labels (fa520a3)
clear spinner labels on errors (6f0f37f)
bump mvn,gradle and sbt plugins for better error handling (34dc3a6)
don't throw error if callback provided (6938cf2)
bump snyk-nuget-plugin for a more modern zip library (6b7dd3d)
explicitly include files in npm package (3087b28)
bump snyk-docker-plugin for smaller footprint (32327c5)
debug-print original stack of Error()s thrown during test (d8d7796)
nicer way to pad (e15ad6f)
bump lockfile-parser to fix cyclic dependecies (f6a026a)
adjust spacing on 'test' output (ef197a4)
tidy up contribution guidelines (f5ffb0a)
bump sbt plugin to update 'debug' dep version (f316024)
bump python plugin to fix pipenv monitoring issue (2c79a4e)
bump nuget plugin to get rid of an unneeded dep (975ca1c)
bump go plugin to update doc/typos (828d579)
bump snyk-config to fix env merge issue (be8fa57)
Show more of the error when available (9315721)
allow node pre-releases (bd4843f)
handle license issues better (2e20440)
enhance user errors to point to snyk docs (f0a43a5)
Add cliMessage passing to all pkg managers (a54c615)
use https where possible (a517143)
failing docker image builds (c7f5e29)
bump snyk-nuget-plugin to handle dependency groups with no attributes in nuspec files (31847c1)
sync zlib on request, add content-length header (f0b4a9a)
downgrade proxy-agent to remain nodejs 4 compatible (6fb5686)
use array format for passing prompts for yarn (7a59da1)
prompt name for inquirer with dots (fdd3ae0)
Add a message for outdatedt yarn dependencies (f4796c2)
bump docker plugin to 1.10.3 (a46b153)
add --docker option to help (32e8a08)
bump try-require dep to support utf bom in package.json files (46d909c)
properly aggregate errors when multiple paths are tested (1ac87f0)
nuget parse prerelease versions (e7f1502)
increase stdout/err buffer for patch exec (84aa680)
do not print patch output unless error (f6653c1)
bump sbt plugin to process larger dep graphs (db27ab9)
code styling issues detected by lgtm (c6f467e)
pin snyk-policy version (aa6040e)
dont suggest reinstallation for yarn projects (6b6ce94)
update test fixures expected version (80e49fd)
compatability with new pip version (10.0.0) (38f993f)
update snyk-go-plugin 1.4.5 -> 1.4.6 (6a77349)
remove vulns from analytics payload if present (334f8b1)
bump snyk-python-plugin to better handle editable fragments (b3d241a)
analytics report includes duration of execution (66d658a)
add --json to help docs (9da056d)
bump sbt-plugin to 1.2.5 (better errors) (46cb432)
debug on requests (5bf0f83)
bump snyk-policy to allow unquoted dates (54ffa86)
bump snyk-sbt-plugin to fix output format issue (a536ad5)
standardise handling of errors on snyk test (d7d3353)
bump debug to a non-vulnerable minimum version (297b3ac)
use locally built lodash (a2ab439)
upgrade snyk-sbt-plugin to better support custom sbt arguments (a42c0fc)
bump python-plugin -> 1.5.6 (per req params) (eab9a43)
snyk-python-plugin -> 1.5.5 (options handling) (42ce79b)
Updated tests, added test fixtures and added more debugging (13eff65)
Fix for writing a flag after each patch application (4e20b64)
Tests setup for multiple patch applications to the same file (28019b2)
bump snyk-python-plugin to 1.5.4 (589c851)
only pass option "loose" when applying patches (bde5a75)
use official version of recursive-readdir (931c87c)
bump sbt plugin to better handle sbt 1.x.x (db9067f)
allow missing policy in dependencies on protect (af0acdc)
update snyk-python-plugin to 1.5.3 (47a2dbc)
json obj for snyk test error (cdd907c)
update error messages, debug messages, test, erroring flow (1c579e1)
update help wording (9eaaf84)
add proxy support when fetching patches (3e409ca)
remove csproj in favor of packages.config (16ce796)
bump php plugin version to incorporate no alias fix (0e5df15)
bump mvn plugin version (4ad8f70)
bump php plug ver to fix vuln reporting (bb8a127)
update snyk-go-plugin to 1.4.5 (3442852)
revert pkg binaries release (f7dd604)
make sure that html file exists before appending to it (fb6dc0b)
update snyk-go-plugin to 1.4.4 windows bugfix (8dbd027)
bump python plugin to fix transitive deps detection (fcd04b1)
incorporate version fix for nuget (4781522)
update nuget plugin version to incorporate version detection fixes (2f1973b)
make sure that we set the homedir of the user correctly (9848e8b)
golang: ignore pkgs listed as ignored (0557383)
make docker entrypoint return the right status code (7973ea7)
meta summary: print actual pkg-manager (60c5f7a)
update nuget plugin version to incorporate fixes (761b49f)
update version for nuget plugin for dotnet-cli dep tree feature fix (b51b940)
make the user impersonation work correctly in docker (78a0ee0)
docker monorepo build fails due to bad paths (a7825cd)
add trigger from travis to dockerhub when building master (ad7e9ed)
confirm apt install when building sbt docker image (6ce2b72)
bump snyk policy to latest release (633ecd1)
supporting project.assets.json file (27aa087)
nuget support for custom json manifest in 1.3.2 (e43d91d)
nuget-plugin version 1.3.1 (51a6019)
nuget monitor in 1.3.0 (93477f2)
add proxy support (aebf12c)
nuget-plugin 1.2.0 + cli arguments transfer to camelCase (c2e0750)
snyk-nuget-plugin v1.1.1 upgrade (fab007b)
nuget-plugin 1.0.3 dependency graph fix (7c6335f)
update snyk-go-plugin to 1.3.8 (f0359f0)
update snyk-python-plugin to 1.4.0 (5bc915f)
more reliable gradle plugin argument handling (9106c02)
update snyk-python-plugin to 1.2.5 (474a04c)
update snyk-go-plugin to 1.3.7 (87027bc)
update snyk-go-plugin to 1.3.6 (7c46ba1)
update snyk-go-plugin to 1.3.5 (ab780c2)
update snyk-go-plugin to 1.3.4 (462302d)
update snyk-go-plugin (37b7cd8)
reconnect request timeout (e87a512)
ignore the vuln in tough-cookie (6774990)
bump go & mvn plugin versions (adde4c2)
bump to snyk-mvn-plugin 1.0.2 (e16423e)
update plugins to reduce filesize (7b7d0ab)
add some npm ignores to reduce filesize (6431471)
remove buggy macAdress() code from analytics.js (57d6df7)
upgrade Gradle plugin - minor Jar related fixes (ed59c18)
upgrade Python plugin (196f247)
disable protect and wizard for unsupported projects (d48efe6)
more prominent help (fdf3a44)
pass --dev flag to monitor to allow monitoring npm and yarn projects with dev dependencies (6367edb)
accept package manager from test result if returned (ac48703)
update snyk-python-plugin (317a7bf)
replace Object.assign with lodash merge (c1ec004)
support --dev when running in maven projects (ff6e063)
missing equal sign for the org parameter (387d537)
dep tree wasn't showing vulns in UI (66555d0)
bad typo (c17ff86)
crash in snyk wizard when monitoring without packageManager (d102a60)
remove 'runtime' as default for gradle, auto-detect gradle, support omitted dependencies in gradle (960f07e)
prefer patching extraneous deps (2756332)
skip extraneous packages on update (662a9e7)
hide vuln-paths if --show-vulnerable-paths=false (4af0713)
don't log alert for json mode (50b01b4)
bring sub process resolve value in line with reject (63724fe)
remove and log vulns with no upgradeable path (b1039d3)
output friendly error on unknown command (0d44512)
update snyk policy (82bc676)
auto-detect pom.xml; remove 'no fix' label for maven projects (7dcf3c9)
yarn support in test, monitor and wizard (9409919)
bump snyk-policy and snyk-module (dbc2184)
use random string when failing to get MAC address for signature (d78693d)
ignore npm:qs:20170213 until 5 Apr 2017 (ee162c3)
show outdated dependency message for Ruby (484e576)

others (will not be included in Semantic-Release notes):
remove prerelease flag for Lerna (79a326b)
add dev-release job to pipeline (abd2b9e)
cat snyk_latest API call to debug docker bundle install (9922197)
add smoke test variant for Docker bundle (239493a)
Use Promise.all to resolve all promises on detect (544a793)
Separate iac path logic, handle spinner issue. (8ccd42f)
Add keepAlive=true on http/https agent (799d672)
Await all promises to resolve in queue (48ee642)
Use promise queue for rate limiting operations (898a208)
handle uppercase header in release downloader (c9b214e)
improve bug-report.md. Removing 1 typo and fixing markdown (e6cd66d)
improve bug-report.md. Removing 1 typo and fixing markdown (378fb03)
log filtered out files instead of all (cdff3af)
check jobs’ success instead of workflow (d143567)
fix analytics test, add analytics jest tests (00a8ad0)
help text for unmanaged aar files (9d83013)
add tests to analytics npm version capture (942b83c)
Update IaC sarif tests to cover path (477aaef)
Add missing path field to IacTestResponse (6e20873)
Document username/password inputs (4515659)
fix a small grammatical issue in the README (c0a1db4)
Fix a flaky test (ebe95cb)
Update iac.md to cover --depth-detection (b60f1f3)
ensure filetype detection is case-insensitive (f99e807)
Remove unused glob dependency (7bdbc48)
Add tests for makeDirectoryIterator() (0e33e7f)
Add fixtures for makeDirectoryIterator test (6896989)
Add types for isLocalFolder() (c79b7e5)
Coerce --detection-depth into number (63896d1)
Remove node hashbang from the cli/index.ts (a4e29be)
fix ukraine language code in woof command (789af6b)
update --help docs (47358cd)
update —help tests (401265d)
introduce help documentation generator (d08bc49)
remove old help files (ea25583)
fix iac codeowners (8375bf7)
scenario where root user installing Snyk (c095596)
update with new content (fa95a08)
align CLI alert app with root package (c126959)
get slack alert when smoke tests fail (ca5e05c)
add Yarn installation scenario (06b7969)
add homebrew test (3d66f40)
add Node 15 to the matrix (2cc74a1)
introduce Node 14 into the matrix (e6a465d)
update dangerfile smoke branch detection (b0f3d71)
use homebrew that’s already on runner (7d8af65)
disable fail-fast (79a3e9c)
improve tests to avoid race condition (288fa62)
Updated fixture image to support windows (36d0217)
explain why we copy the request payload before sending it (4f69b32)
refactor to move blocks of functions into thier own files (32e333f)
track integration environment (8d4f267)
fix typo in 'maven' (2878214)
runTest jest test, user-friendly error message (5acc55e)
temporary disable flaky acceptance test (188baaa)
set integration name for Homebrew installs (68bffc6)
fix dangerfile tap test detection (6b510d5)
fix all container test tests broken with the new CLI plugin (e30142b)
fix all container monitor tests broken with the new CLI plugin (aadfe0e)
add new ecosystems test & monitor URLs to mock server (9837db5)
rename snyk-docker-plugin and pin to specific version (db2dec6)
add czech language to snyk woof (cd0b576)
fix all container test tests broken with the new CLI plugin (cbe72f7)
fix all container monitor tests broken with the new CLI plugin (9667063)
add new ecosystems test & monitor URLs to mock server (2013477)
rename snyk-docker-plugin and pin to specific version (6d0076e)
pass integration name to UTM parameters (0ccd920)
add vscode config for Jest (0172cbe)
convert analytics-sources tests to jest (f99745e)
package.json outside a workspace is not detected (1d062a5)
fix test to correctly scan workspaces (e8bcb0a)
smoke test for woof (6c02a32)
warn on new tap tests with dangerjs (9113986)
circle-ci jvm unix using sdkman install (200ddab)
woof command language selection (c5432cd)
make command safe (8016ae2)
fix flaky test; remove reliance on hard coded values (f512a92)
introduce smoke/ branch prefix for smoke test (3d383cf)
improve alpine detection in smoke tests (2948426)
silent output of helper commands (014e21a)
smoke tests mount all fixtures (e8c0d55)
check for created files as well (5f46c9b)
update comment on integration name (ef391b9)
cc6f70b feat:add url link to reachable supported pkg mngrs
compare sorted arrays (21a503d)
add additional testing for cli dev count (46c1f44)
create Dockerfile.python-3.6 (0931140)
align acceptance test execution (ded859a)
make jest test suite run on windows (cadcc1a)
make cpp jest tests work on windows (c4de977)
additional tests for sarif (fe38684)
align ASCII art (45fb77b)
add czech language to snyk woof (19817dd)
add test:test suite to test (3f0ebdd)
rename test file to be included in tests (09646bf)
update helptext with new exit code (7c76be1)
mount empty fixture for Alpine smoke test (ed2aab1)
refactor & test exit codes (809a73f)
update monitor smoke test description (53e40e5)
add smoke test for monitor command (c470cec)
move getFileContents to a helper file (2780cac)
track docker tag name (445b2eb)
fix smoke test action yaml (e2e7886)
add VS launch.json config (9255e70)
trigger smoke test on relases as well (2250e94)
check Smoke test branch & unmodified tests (db9ea14)
update yarn workspaces support commands help text (e5c3e48)
introduce Danger.js as GitHub Action (32e143c)
remove Danger.js from Circle (278154f)
remove project from iac help (e948564)
modes test from tap to jest (08953b2)
introduction of jest test tool (89b70d2)
remove unused gemfile detection (de5db44)
9e97c07 Bumping snyk-docker-plugin to 3.17.0
don’t rely on dynamic names from pkg (3c9687f)
run alpine test in docker (132afe2)
use node 14 for alpine executable (9d1b740)
downgrade binary to Node v12 (957c64e)
remove npmignore (fa3e1d9)
add regression test for valid JSON bodies (41e8de2)
kotlin monorepo --all-projects (7dfc027)
failing test for gradle kts auto detect (f386147)
gradle kts fixture (0a8c2dc)
json output with all-projects flag (8258ef0)
extend smoke test for auth (07d35ad)
140625c feat:improve iac test json output
update help docs to remove gradle exclusion. (36cbb0a)
capture integration name (4b09d79)
e02e527 chore:updated gitignore with vscode folder
ignore node diagnostic report (2a204e2)
disably flaky Windows tests (6d2d76a)
install osslsigncode in release step (123a5fe)
simplify supported projects validation on test (a794bde)
update run test exports to modules syntax (d538039)
use shellspec for regression test (37c42c9)
remove irrelevant comment (7d8dccc)
Node v14 pkg build (2b59238)
refactor abridgeErrorMessage (640679f)
add java-call-graph-builder to the debug output (f8cd885)
smoke tests (bad751e)
Update node version for Gradle with Java 11 standalone binary (67dbd6e)
run yarn v2 tests for Node 10 (f82c81f)
add checkout step to release job (496f4d4)
add test to check if new version of snyk is not broken (c2ddf1d)
cover sbt in auto detectable flow with tests (a7eca08)
add empty package.json (5f7bee6)
simplify options validation (a199f93)
refactor options validation, add types & move (20a64bb)
monitor tests for yarn workspaces (9223863)
yarn workspaces tests & fixtures (d942b3c)
add tests for Iac support (09f330c)
add code owner (Cloud Config) (4a93ca3)
rename Cloud Config to IaC (1953c8d)
refactoring runTest() (501b58b)
adding types (c6007a2)
remove async/await from a synchronous function (2e06842)
make Flow code owner for reachability formatters (0dab488)
snyk-test types + use SupportedProjectTypes (430745a)
gradle --all-sub-projects policy is not applying (9f50581)
drop unused gradle from experimental (1282693)
show non root scans ignore policy (7c56e25)
update Snyk Container help text (3757780)
update docker monitor test to match test (6652dae)
type scanned projects to graph or tree (a4b7f69)
fix codeowners (5a4291a)
show message when using a custom API endpoint (2d1abfb)
tests for new depgraph path (d9313d8)
target-builders minor changes (1f96517)
code changes to support new cli-interface (e0b7f19)
renaming monitorGraph to avoid breaking changes (df47e09)
add hammer team as codeowners on CLI (81d02f7)
split out monitor depTree to it's own func (9f6c135)
update-notifier fetches info (eaac36c)
release notes preview fix. (649c770)
update test:acceptance include root tests (a67adee)
improve policy-path help text and example (43d042d)
forgotten log removed to reduce noise (2d0f9d9)
add snyk/release-notes-preview. (e2d2174)
bump @snyk/dep-graph to 1.18.3 (34aeaaa)
add call graph size to analytics (d4db5fe)
fix prettify for analytics.js (9882190)
lint (c728ada)
Update Restify to V8 (1e0f0d2)
preps for cloud config support (code refactoring) (c32a903)
update .nvmrc to specify Node 8 as Node 6 is no longer supported (4ead3ae)
updated python options documentation. (954e2c6)
fix up some of the language (f6092fd)
protect-patch-order.test from js to ts (73ada88)
add ts type (669a2cd)
add test coverage for utm auth (61e4932)
add content team as code owner for help text (ea273f6)
updater.test & user-config.test from js to ts (1029742)
drop test fixture used for deleted tests (bebcfc7)
convert protect tests to ts (51b2b7a)
typescriptify prompts.test.js (1b38af7)
typescriptify prompt-instrument.test.ts (4f2d7e4)
typescriptify prompt-next-step.test.ts (d459e47)
typescriptify policy-populates-prompt.test.ts (d02dbd0)
typescriptify policy-match.test.js (ca2ecad)
typescriptify policy-ignore.test.js (d4584f8)
typescriptify dev-deps-w-dev.test.js (77dcb48)
typescriptify dev-deps-without-dev.test.js (1ef1497)
typescriptify wizard-shrinkwrap.test.js (6063ade)
Refactor to use snyk-cli-interface PluginMetadata. (aabe1ef)
convert tests to ts (64961ce)
drop unused types (3472201)
fix for node 12 assertion error (b4f465a)
convert yarn util to ts (2441311)
convert user-config to ts (8490b07)
convert sub-process to ts (b88496e)
fix emojis in github (ea38d75)
separate bug and feature issue templates (75a95f4)
fix small typo gradle => docker in the README (456696d)
update docs for Python Docker (263fc72)
disable the snyk --version test on Windows (46ed79f)
Added info about --file for monitor (2a44527)
convert get version and exec to ts (7d4a91c)
Update fixtures to point to correct patch urls (956571f)
fix remaining patch urls missed in previous PR due to not having a .json extension (d3706a2)
update fixtures to point to correct patch urls (2e5e0bf)
Split away wizard acceptance tests (a11aeb6)
enable accidentally disabled tests (61621aa)
process monitor json results refactor (f3368fd)
add tests for --all-projects (7fe67b9)
typescript refactor (b4e77c6)
refactor manage url into a function (043c23f)
refactor shared code out and split out helper functions (6a427e0)
update docs & linting fixes (fb442df)
drop some promise chains (f5f15d4)
update test assertions to assume graph by default (85effc7)
convert test to ts (d0e4f66)
add fixture for autodiscovery tests (01254a1)
disable npm cache to unblock tests (f8c6aa8)
restructure test targets in package json (922fafd)
remove some unused code and types (5e960a8)
refactor test tests into languages (b7ea65c)
refactor test tests into ecosystems (eabfe17)
add types around git and run-test methods (3082def)
prettier format (caf2683)
update python docs with allow-missing (9076975)
split up test and monitor tests (0189a39)
fix tests (12eab1a)
update assertions to be relaxed on full path (2da04e8)
clean up vars (8268159)
clean up imports (0c60ac3)
update cli test to use async/await (e92aa4c)
convert policy-merge test to ts (257dc5f)
add tests to snyk protect with semver patch (9dad618)
convert to ts (0fa055a)
tidy snyk policy file (30a4198)
skip test that uses previous bad version (f365660)
Update test to expect array (c802bc7)
apply prettier rules (9917da8)
add prettier configuration (9d9506f)
no need to use lodash to retrieve strictOutOfSync (1efdee3)
eliminate string type for strictOutOfSync (4f141eb)
fix remidiation text output (88c25bd)
prune flag works on test and monitor (71f2549)
install npm explicitly and rename java specific dockerfile (45ffd12)
adjust american spelling for organization (d83cbdb)
convert to ts (d2780d6)
add boost as codeowners (404c195)
sbt project sends to graph endpoint with correct FF (322f689)
fix wrong test (fb0e3a5)
fix tests for missingDeps monitor (63e5abb)
move test into a folder (7c0304b)
40af65d Revert "Feat/windows compatible scripts"
fix tests (2e9512c)
add monitor tests for depGraph ff (f87a2ac)
Tests to verify we send graphs to new endpoint (d463eef)
convert test to ts (557f78c)
bump nodejs-lockfile-parser version (53264cc)
add test case for unsupported error message (f2bdbae)
add custom error for unsupported feature flags (ed9e7bc)
improve error imports (ba56e8b)
patching a mismatching dep version suceeds silently (45d5f13)
only patch when version on disk satisfies vuln (153e070)
update vuln badge in readme example (10c42f2)
vulns badge in readme tests the repo (fcb39c8)
re-enable windows tests (23fb199)
convert policy.js to ts (24ea661)
convert test to ts (d1d6f93)
Add package tip test (79b7adc)
Update assertions (ee2bab8)
convert to ts and use fake server (4630992)
convert repo test to ts (ee0e11d)
drop custom display options (7d20795)
re-arrange tests by type (81299c0)
add dangerfile.systems check (d625dc2)
add exit statuses to cli help text (7090956)
Update docs with usage options (8278800)
Add node 12 to test matrix (524c555)
refactor patch & split option types by command (2db2107)
7b6c1c9 Revert "fix: add alpine platform to standalone binary release assets"
harmonize eslint and tslint rules re arrow functions (8a39d93)
renaming gomod to gomodules for consistency (f3fee7b)
fix typescript in tests (c397d47)
revert req.txt change and grammar fix (de224c7)
c1aed98 Revert "chore: refactor auth to async await"
revert refactor snyk missing api token" (1936db4)
Convert help command handling to typescript (278a068)
refactor auth to async await (11b51f1)
delete expired docker promo (d82df40)
refactor snyk missing api token (76b0565)
add types to args parser, simplify the code (7d60847)
refactor analytics to use const (636628f)
refactor analytics test (812cada)
convert config to ts (12d7f59)
drop console.logs (028deec)
Reduce words around badges advantages (0ba52a5)
Add package manager lib to keep track of support (2cc3f64)
comvert module inffo to ts (b8de2b9)
Keep track of supported wizard package managers instead (721c38c)
convert is ci to ts (bb7833f)
Convert old style errors to new style (2548cbd)
converty auth.js to => ts (6f6e54e)
more logging for Gradle errors (97cf3bd)
Update broken snyk link (af0c437)
Fix typo in debug message. (ba415a5)
convert to ts (471fdb9)
remove special npm/yarn path in snyk-test (73e96aa)
separate out nodejs-plugin (38b9ae6)
typescript snyk-test for npm and yarn (1605f2c)
change quote types for singles (74ef425)
remove unused cluster and capture modules, simplify lib/index.js (be10a13)
replace snyk.monitor usages with direct imports of lib/monitor (b1b514f)
update vuln dependency (deccfbe)
get rid of a custom TAP version (7d8ab2a)
monitor --all-sub-projects with multiple targets (4b7b430)
convert monitor code to async/await (05d292e)
downgrade Windows CI run to npm 3 (ea96905)
run tests on Windows (09e3dab)
convert the monitor command to Typescript (7f13587)
Use new node js parser that drops node 4 (bc87070)
downgrade tsconfig lib to match Node 6+ (bd2b994)
Update return types for plugins (44cb8b5)
Extract test helper for docker plugin (4c92f07)
Add test for --exclude-base-image-vulns (db151cb)
f749390 Add Dockerfile.docker and update README.md
Update supported manifests docs (1b91bd6)
bump snyk-gradle-plugin (c6fbfb1)
update help about build.gradle.kts support (f1f2bed)
update test for gradle kotlin (56a468e)
f6bc6d9 add supporting build.gradle.kts
update layout for project page (1d1fd16)
js->ts in lib/plugins folder (2649caf)
remove get-uri and hasbin (c3c1a33)
replace undefsafe with lodash.get (d448d88)
79b890d Add Dockerfile.docker and update README.md
add missing composer.lock file (f66d1b9)
test command rewritten to TS (2080fa0)
remove build from TOC (6d2feb0)
remove a fixture change done in snyk#340 (bbfd700)
pin get-uri to 2.0.2 in a fixture (c7966f8)
Run CI against Node 10 (current LTS) (32d1d8c)
Disable lockfile creation (95be92c)
leftovers for es6 adjustments (fbc4158)
ignore root package-lock.json (0e82f9c)
refactor tests to ES6 style (0f49301)
docker entrypoint readability with line breaks (416401b)
bump snyk-go-plugin (20f8d5b)
shellcheck suggested '-n' instead of '! -z' (7a199f0)
extend ignore inside snyk policy file (b2d4863)
show travis release stage only for master (14c2868)
bump lockfile parser (3e4d7b6)
lib/snyk-test/run-test.{js -> ts} (083172f)
async/await in lib/snyk-test/run-test.js (a4da0c5)
update snyk-policy (404dca2)
update how tests execute patching (4d8aa01)
upgrade sinon to 4 (last version to support node4) (ea7e50b)
upgrade sinon (83d4fc1)
extened the vuln ignore of nyc (76eda06)
fix names for snyk report files (e8b8c6d)
disable object-literal-sort-keys (b5217fd)
js -> ts (23fd0df)
enable tslint no-default-export (3cb5d6e)
update protect-vis-snyk fixture (68d5c6d)
Fixes for outdated tests (5307275)
Update tests (6faa02b)
var => const (5f4399b)
js -> ts (8d02572)
var -> const, let in test-unpublished (53f1c49)
remove package-lock and ignore it (6713708)
verify behaviour on node 4 (da3d92c)
yarn.lock coverage (d0a19b3)
update lockfile parser version (95144e8)
update pkg script for standalone binaries (50d37c9)
updating default node version (c5ebbff)
better typescript in converted files (53ab388)
convert first two files to typescript to be sure it works (146cb24)
remove tap-only (35c715a)
typescript support in tests (c42f2dc)
move lib and cli to src (5946610)
downgrade Node test runner to 8.11.4 (275aa58)
adjust patch test fixture (0b39604)
update tap version (64d9ad2)
upgrade tap for better dev deps (ff819a5)
add pkg to semantic-release process (2eeab79)
empty commit to trigger travis (fbf03c0)
skip pkg assets (5ebad54)
removing non-needed promises + moving to dedicated parameters (5cf157c)
removing not-needed files (f11b79d)
remove code duplication (e23735a)
missing dep in package-lock (587b2da)
add fixture for transitive dependency (407f471)
adding analytics + better naming + better error message for shriknwrap (2cc1696)
package-lock.json behaves the same as node_modules (f275033)
remove TODO (4d15755)
remove package-lock.json from auto detection (749a7cf)
update lockfile parser (6c459ae)
add exec plugin to enable release process (2595d18)
automate pkg assets publishing (1f89668)
remove github assets publishing, not functional yet (2f6402d)
eslint instead of jscs (b638a37)
fix github-release for assets uploading (0bfeb0b)
upgrade semantic-release, proper travis & appveyor setup (6abdfd9)
Update tests (d325836)
fix docker tag typo (b2ae665)
revert test bypass for nodejs 4 support (0285c57)
disable a test to overcome nodejs4 support issue (3ddb455)
change monitor error output to be bold red (af35560)
debug trace with exact patch target version (5841470)
node4 compatible syntax in test (f5c99b2)
drop babel (4af5792)
update .nvmrc to 4 (348ea15)
adds security document (58b5437)
lock nock to 9.1.0 (6847700)
new policy fixtures (65c6ac1)
update readme (e70618d)
tests are not babelified, remove es6 syntax for 0.12 support (dd60fcc)
Make links show up correctly (9f33e77)
update readme for sbt and gradle dockers (ab71ac5)
remove residual csproj (02baf7f)
overcome tests not babelified in nodejs4 (272a3e1)
add codefresh build trigger in travis for master (05f82bc)
minimal appveyor tick with nodejs@6 (ba5571b)
windows path in proxyquire (d268c6f)
remove Node 8 from Appveyor (1c53d53)
update sbt docker examples in README (c526a3f)
add nuget test for project.assets.json (6c8702f)
add .nvmrc with 0.12 (d6b5466)
test against node 8 (4436561)
add tests for proxy support (20890bc)
custom policy path tests for protect (414f3de)
custom policy path tests for monitor (05fc58b)
custom policy path tests for test (f6c680a)
re-enable tests for Node 0.12 (34d1339)
temporarily disable Travis Node 0.12 tests (195bdb2)
prune .snyk policy file (7f82b6d)
fix typo in readme (16c902b)
document show-vulnerable-paths in help (3268688)
update vuln count (5f811e1)
add org to snyk test (98a6a3d)
PR comments (92429bb)
snyk policy cleanup (a4887e3)
verify --show-vulnerable-paths=false (9019810)
test the alerts module (71bd6c4)
refresh package.json config (0c91c59)
edit help text re npm & ignore (b477852)
remove Node.js caveat we no longer need (c088b40)
PR comments, removing 'no fix' label to RubyGems projects (576e3dd)
travis test on node 0.12 instead of 0.10 (0ab8e5b)
Readme added more doc links and utm codes (de88be6)
update vuln counts (b22ab39)
update patch fixtures to s3 (54a7c62)

  • I hereby acknowledge these release notes are 🥙 AWESOME 🥙

Ilianna Papastefanou and others added 26 commits June 13, 2023 17:20
test: fix test to not include Windows ARM binaries
e639f49
@meytalmesh
Merge pull request #4654 from snyk/APOLLO11-1173-update-old-security-…
dc8428d 
…rules-urls

feat: update files that use old security-rules URLs
@PeterSchafer
chore: remporarily disable failing tests
89c7ff7
@andreeaneata
chore: fix the failing IaC acceptance tests
79af2e9
@PeterSchafer
Merge pull request #4660 from snyk/chore/tmp_disable_failing_test
a06f480 
chore: Temporarily disable failing tests
fix: iac-test debug namespaces
fc3b87b 
These logs weren't showing up when `-d` was passed. Also bump
snyk-iac-test.
Merge pull request #4659 from snyk/fix-iac-test-debug-log
c52782f 
[CTX-608] fix: iac-test debug namespaces
@asaf92
chore: use User-Agent header (#4662)
4e26e3c
@PeterSchafer
feat: set OS and command explicitly
b84f744
@PeterSchafer
Merge pull request #4664 from snyk/feat/HEAD-142_alpine_as_os
f7ce9d3 
feat: set OS and command explicitly
@rmutuleanu
feat: container sarif flag support without file
d74fafb 
Customers want to be able to save results of container scans to sarif without needing to specify the dockerfile

Issue: LUM-257
@rmutuleanu
Merge pull request #4649 from snyk/feat/container-support-sarif-witho…
b965894 
…ut-file

feat: container sarif flag support without file
chore: move ownership from cloud context to IaC+
0926c39 
As part of the Cloud Group consolidation, this repositry's Cloud Context
ownership is moving to the IaC+ team.
Merge pull request #4663 from snyk/ctx-to-iac-plus
f6599e5 
[CTX-613] chore: move ownership from cloud context to IaC+
@PeterSchafer
feat: Enable header modification for all legacy CLI requests
c57ed6e
@PeterSchafer
Merge pull request #4716 from snyk/feat/HEAD-400_consistent_header
2d64551 
feat: Enable header modification for all legacy CLI requests
@PeterSchafer
docs: synchronizing help from snyk/user-docs
533bf29
@PeterSchafer
Merge pull request #4706 from snyk/docs/automatic-gitbook-update
26a4247 
Synchronizing CLI help from user-docs
@rmutuleanu
fix: container sarif replace colon within location uri
6b3e046 
When using sarif output and the Dockerfile is not specified, the path is used as the sarif results location uri. But the path can contain colon characters (e.g. between repo and tag) and GitHub Code Scanning seems to return an error in this case. This fix replaces the colon characters from the sarif results location uri with underscore characters.

Issue: LUM-257
@rmutuleanu
Merge pull request #4670 from snyk/fix/container-sarif-replace-colon-…
7e422c0 
…within-location-uri

fix: container sarif replace colon within location uri
@PeterSchafer
feat: use sha256 for webpack
8652f46
@PeterSchafer
Merge pull request #4715 from snyk/feat/HEAD-386_webpack_sha256
13ea20e 
feat: use sha256 for webpack
@PeterSchafer
fix: Use correct env var for integration environment name
9c32eb4 
through updating the application framework
@PeterSchafer
Merge pull request #4718 from snyk/fix/HEAD-357_integration_env
8919aba 
fix: Use correct env var for integration environment name
@PeterSchafer
fix: remove now obsolete process name from user-agent
f5ae4e6 
… through updating the application framework
@PeterSchafer
Merge pull request #4721 from snyk/fix/HEAD-357_remove_process_name
c458a1a 
fix: remove now obsolete process name from user-agent
MarcusArdelean and others added 28 commits January 30, 2024 08:20
@MarcusArdelean
fix: bump snyk-python-plugin version (#5026)
59c99f6 
* fix: bump snyk-python-plugin version

* fix: set snyk-python-plugin to explicit version
@PeterSchafer
chore: enable endpoint configuration for smoke tests
49696b4 
* chore: add TEST_SNYK_API env var

* chore: unify test parametrization TEST_*

* chore: fix typo

* chore: forward env vars to docker container
@thisislawatts
docs: add command to run acceptance tests (#5025)
8b8fc37
@mikeromard
chore: add workflow to sync Snyk CLI GitBook doc to the CLI repo READ…
4b8c991 
…ME (#4996)

* chore: added worklfow to sync Readme with GitBook

Added worklfow to synchronize content from the
Snyk CLI's GitBook documentation to the CLI repository's README
Also manually updated README file

* chore: ran prettier to fix lint issues

* chore: added prettier step to synchronize-readme workflow
@PeterSchafer
fix: Do not write an empty file when using --json-file-output [CLI-11…
fd91b7c 
…5] (#5030)
@cmars
chore: add npm dev script, makefile run targets (#5031)
3716b5d 
To aid in debugging and development of the Typescript parts of the CLI, adding
an npm script entrypoint to the CLI.

This doesn't run the complete CLI but is useful for isolating and debugging
Typescript CLI issues.

Added Makefile targets for running the full extensible CLI and TS entrypoint.
@dotkas
feat: [OSM-955] Support for custom output paths for dotnet v2 proje…
6fc1d10 
…cts (#5015)

* fix: bumped nuget plugin

* fix: adding acceptance test
@MarcusArdelean
fix: bump snyk-python-plugin version (#5032)
85616d4
@thisislawatts
test: move woof coverage to jest (#5029)
7bd3b0d
@mikeromard
chore: fix path for prettier command in synchronize-readme workflow (#…
f3f9877 
…5038)
@PeterSchafer
feat: Deploy regular CLI builds to a new preview channel (#5042)
d5e65e8 
* feat: add preview upload

* fix: incorrect variable access

* chore: remove dry-run

* chore: limit preview release to main branch
@bastiandoetsch
fix: increase max allocatable heap memory to 32GB (#5043)
41c0c03 
Some customers are running out of heap memory - this PR is doubling the maximum amount allocatable (if the OS has that much).
@github-actions
docs: synchronizing help from snyk/user-docs (#5044)
0a803b2 
Co-authored-by: Avishagp <noreply@snyk.io>
@thisislawatts
docs: introduce comments to create-build-script (#5045)
32c6e5f
@kat1906
fix: allow docker.io as a registry base for container commands (#5049)
2b3c776
@JCheung2004
fix: improved 'npm dist-tags' handling for npm lockfile v2 and newer (#…
8d0d96a 
…5033)
@dotkas
fix: bumping snyk-nuget-plugin (#5051)
023f633
@PeterSchafer
chore(ci): improve release gate based on version number (#5053)
a40f920
@PeterSchafer
chore: rename master to main (#5055)
79f271b
@PeterSchafer
chore: add main branch to gh actions (#5056)
a5aa600
@thisislawatts @PeterSchafer
chore(ci): adopt convco for semver versioning [CLI-127] (#5048)
82d47a3
@thisislawatts @PeterSchafer
test: move help tests out to acceptance (#5039)
5b43e51
@thisislawatts @PeterSchafer
chore: update ownership for catalog info (#5035)
219c087
@j-luong @thisislawatts @PeterSchafer
chore: Upgrade Jest, and peer dependencies, to v28 [CLI-124] (#5046)
36f1cc2 
* chore: update ts-node to latest
* chore: upgrade @types/jest
* chore: upgrade jest
* chore: upgrade ts-jest
* chore: upgrade typscript

---------

Co-authored-by: Luke Watts <luke@snyk.io>
@bikochan @PeterSchafer
chore: update team and context for ci and metadata (#5057)
5939963
@thisislawatts @PeterSchafer
docs: update acceptance test doc (#5058)
e935f7d 
* docs: update guidance on running acceptance tests locally

* docs: update acceptance tests
@bastiandoetsch @PeterSchafer
fix: add range to snyk.scan message create by code scanner [IDE-134] (#…
e78bad6 
…5052)
@PeterSchafer
Merge pull request #5060 from snyk/main
7f18d81 
chore: merge temporary main into master
@PeterSchafer PeterSchafer deleted the branch Mattlk13:master February 20, 2024 15:16
@PeterSchafer PeterSchafer deleted the master branch February 20, 2024 15:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
⤵️ pull
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.