Skip to content

v2.17.3
Compare
Choose a tag to compare
@github-actions github-actions released this 19 Oct 16:16
· 197 commits to main since this release
v2.17.3
b79af43
This commit was signed with the committer’s verified signature.
horusec Horusec
GPG key ID: 92949DA13B861754
Learn about vigilant mode.

Changelog

We identified a bug on versions 2.6.0 to 2.6.2 of Horusec that changed our vulnerabilities hashes and, because of that, broke the pipelines with vulnerabilities already set with false positives and risk accepted.

To solve this problem, our team did the following:

On CLI’s v2.6.3 release, we corrected the issue, so both hashes are identified and accepted.
On Horusec's Platform, we implemented a correction so the hashes could return to default before the bug, avoiding the pipeline to break when updating the CLI. This new configuration will be available in the 2.17.3 version.

For more information, check out our GitHub’s issues:
CLI: ZupIT/horusec#680
Platform: https://github.com/ZupIT/horusec-platform/issues/390

b79af43 Commit from GitHub Actions (New-Release)
98929d1 migration: Improving migration script to avoid large amount of data and run just one time (#405)
e7cb11d api: added migration to avoid horusec id in stored vuln hashes (#389)
f73adad ci: add GH token with sign permissions (#347)
43bd86e ci: add new release process (#320)

Docker images

  • docker pull horuszup/horusec-webhook:v2.17.3
  • docker pull horuszup/horusec-webhook:v2
  • docker pull horuszup/horusec-webhook:v2.17
  • docker pull horuszup/horusec-core:v2.17.3
  • docker pull horuszup/horusec-core:v2
  • docker pull horuszup/horusec-core:v2.17
  • docker pull horuszup/horusec-api:v2.17.3
  • docker pull horuszup/horusec-api:v2
  • docker pull horuszup/horusec-api:v2.17
  • docker pull horuszup/horusec-migrations:v2.17.3
  • docker pull horuszup/horusec-migrations:v2
  • docker pull horuszup/horusec-migrations:v2.17
  • docker pull horuszup/horusec-messages:v2.17.3
  • docker pull horuszup/horusec-messages:v2
  • docker pull horuszup/horusec-messages:v2.17
  • docker pull horuszup/horusec-auth:v2.17.3
  • docker pull horuszup/horusec-auth:v2
  • docker pull horuszup/horusec-auth:v2.17
  • docker pull horuszup/horusec-analytic:v2.17.3
  • docker pull horuszup/horusec-analytic:v2
  • docker pull horuszup/horusec-analytic:v2.17
  • docker pull horuszup/horusec-vulnerability:v2.17.3
  • docker pull horuszup/horusec-vulnerability:v2
  • docker pull horuszup/horusec-vulnerability:v2.17
Assets 4
Loading