v0.0.9

✨ New features

• Updated PDFBox to 2.0.8 to prevent an infinite loop
• Added bleaching for OOXML DDE (Auto) by @joesecurity

🐛 Bug fixes

• Office: Fixed a crash relative to removed relationships
• Fix the unit tests by @Nashe

🔗 Full list of changes

v0.0.8

✨ New features

• Add a sample HTTP Server service
• Update Apache POI to 3.16
• Compile to native Windows and Linux apps thanks to Excelsior Jet
• Office: Properly remove Compound objects and remove the "has macros" flag on Excel files
• PDF: Improve sanitation and password checking method
• API: Add a ThreatBuilder
• API: Let the API depend on SLF4J-api instead of an implementation
• Improved tests

🐛 Bug fixes

• Archive: Don't copy the compression method
• Office: Remove compound objects
• Office: Don't log when file is invalid

🔥 Backward incompatible changes

• Modules are no more shaded by default

🔗 Full list of changes

v0.0.7-1 - Bug fix!

✨ New features

• The Java icon is no more displayed on macOS

🚒 Bug fixes

• PDF: A NullPointerException was thrown with legitimate files

🔗 Full list of changes

v0.0.7 - Support of embedded files in PDFs

✨ New features

• The PDF Bleach now handles embedded files, and sanitizes them!

🐛 Bug fixes

• Office: The UnsupportedFileFormatException is now handled correctly

🔥 Backward incompatible changes

• Modules are no more shaded by default

🔗 Full list of changes

v0.0.6 - Minor changes

✨ New features

• Add Coverity scan for tagged commits
• Copy OOXML files into memory before processing them, and rollback on failure
• Improved logging, and minor bugs fixed (involving zip, mainly)

🔗 Full list of changes

v0.0.5 - Pretty stuff, ZIP support, prettier code

✨ New features

• New project logo and CHANGELOG file
• Archive Bleach added to handle zip files, recursively sanitising the files
• Code cleaned up to match conventions

🔥 Backward incompatible changes

• API changed: package names and methods changed.

🔗 Full list of changes

v0.0.4 - API Rewrite, JSON Output,

✨ New features

• Total rewrite of the DocBleach API, with a threat model (cf #2)
• -json option for the command line tool (cf #3)
• Office Open XML: Main part's content type is rewritten (cf #6)
• A SecurityManager is set when using the command line tool, preventing some exploits
• New wiki page: Advanced Usage

🐛 Bug fixes

• Fixed typos in the readme

🔥 Backward incompatible changes

• Whole API is rewritten.

🔗 Full list of changes

v0.0.3 - Fix regression

🐛 Bug fixes
A regression was introduced in commit 271f1e6, preventing OOXML files from being sanitized.

That's all.

🔗 Full list of changes

v0.0.2 - Improved code base

✨ New features

• Code is now split into independent Maven modules: api, cli and the bleaches (see #2)
• Improved logging of the exceptions (see #3)
• Automatic SonarQube and SourceClear scans
• Updated dependencies
• Artifacts are pushed on Maven to Central
• 🎉 OOXML Bleach rewritten - now filters using relations and content types

🐛 Bug fixes

• A bug corrupting .docm files has been fixed — #5
• Fixed typos in the readme

🔥 Backward incompatible changes

• Batch mode has been removed
• -in does not handle network files anymore, because of the added code maintenance required (SSL checks, ...)

🔗 Full list of changes

v0.0.1 - Project birth

🎉 This is the first release of the DocBleach project. May there be plenty!

Supported formats:

• Office Open XML
• OLE2
• PDF
• RTF