Skip to content

v0.25.2

Compare
Choose a tag to compare
@github-actions github-actions released this 22 Mar 07:59
· 138 commits to master since this release
e25ec99

This release includes one additional feature and some bug fixes.
If you use Amazon Linux 2023, you have to harry to update.

New feature

  • Some enterprise features of WPScan are now added to scan results.

(Potential) Incompatibilities

  • Names and Versions of JAR-like files of scan results can be overwritten at vuls result phase.
    • These values after vuls scan phase may be incorrect or insufficient because Trivy's Java DB is not used at the phase.
    • Correct them at vuls report phase with the help of Java DB.
    • 99cf9db feat(detector/library): update JAR-like files' Name/Version in library list (#1874)

Bug fixes

  • Amazon Linux 2023 have changed its release version format in /etc/amazon-linux-release
    • It causes inability of EOL detection at vuls scan phase and failure of vulnerability detection at vuls report phase.
    • No vulnerabilities are detected unless this bug fix, please update quickly if you use Amazon Linux 2023.
    • e1df74c fix(amazon): use major version for checking eol, security advisories (#1873)

Misc Changes

  • e25ec99 chore(deps): bump github.com/aws/aws-sdk-go from 1.49.21 to 1.51.5 (#1881)
  • 472df0e chore(deps): update dictionary modules (#1877)
  • 7d5a47b chore(deps): bump github.com/docker/docker (#1880)
  • 426eb53 chore(deps): bump github.com/jackc/pgx/v5 from 5.5.1 to 5.5.4 (#1872)
  • bda089b chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (#1871)
  • 02d1f6f chore(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 (#1868)

New Contributors

Full Changelog: v0.25.1...v0.25.2