diff --git a/CHANGELOG.md b/CHANGELOG.md index aac23afa2e8..8ed4a0533a9 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -8,100 +8,96 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-linter.yml file, or with `oxsecurity/megalinter:beta` docker image -- Allow to use value `any` to always activate a linter who as a **_DIRECTORY** variable. Example: `KUBERNETES_DIRECTORY: any` -- New flavor **c_cpp**: New flavor for pure C/C++ projects -- Updated lintr config template to use `linters_with_defaults()` (formerly `with_defaults()`) -- Update base image to `python:3.11.6-alpine3.18` -- Write checkov SARIF report `results_sarif.sarif` in `REPORT_FOLDER` +- Core + +- Media - Fixes - - Fix issue Gitleaks `--no-git` does not work anymore, [#2945](https://github.com/oxsecurity/megalinter/issues/2945), in [PR 3112](https://github.com/oxsecurity/megalinter/pull/3112) - - Update lintr links to their current locations, by @echoix in [#3122](https://github.com/oxsecurity/megalinter/issues/3122) - - Update Pylint links to their current locations, by @echoix in [#3116](https://github.com/oxsecurity/megalinter/issues/3116) + +- Doc + +- CI + +- Linter versions upgrades + + +## [v7.6.0] - 2023-11-19 + +- Major enhancements + - New flavor [**c_cpp**](https://megalinter.io/latest/flavors/c_cpp/): New flavor for pure C/C++ projects, by @daltonv in https://github.com/oxsecurity/megalinter/pull/3067 + - New flavor [**formatters**](https://megalinter.io/beta/flavors/formatters/): Contains only formatter linters, by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3071 + - Add [**Salesforce Lightning Flow Scanner**](https://github.com/Lightning-Flow-Scanner), by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3092 + +- Core + - Allow to use value `any` to always activate a linter who as a **_DIRECTORY** variable. Example: `KUBERNETES_DIRECTORY: any`, by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3058 + - Update base Docker image to `python:3.11.6-alpine3.18` + +- Fixes + - Fix issue Gitleaks `--no-git` does not work anymore, [#2945](https://github.com/oxsecurity/megalinter/issues/2945), in [#3112](https://github.com/oxsecurity/megalinter/pull/3112) - Fix way to install powershell on Alpine linux image - Fix issue with VS Code devcontainer not building [#3114](https://github.com/oxsecurity/megalinter/issues/3114) - - Fix Default Workflow to handle latest ActionLint rules + - Fix Default Workflow to handle latest ActionLint rules, by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3130 + - Write checkov SARIF report `results_sarif.sarif` in `REPORT_FOLDER`, by @gmeligio in https://github.com/oxsecurity/megalinter/pull/3121 + - Updated lintr config template to use `linters_with_defaults()` (formerly `with_defaults()`) + - Fix csharp installation dependencies, by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3075 + - Fix powershell installation by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3126 + + +- Doc + - Update lintr links to their current locations, by @echoix in [#3122](https://github.com/oxsecurity/megalinter/issues/3122) + - Update Pylint links to their current locations, by @echoix in [#3116](https://github.com/oxsecurity/megalinter/issues/3116) + - Add R2DevOps way to setup MegaLinter on Gitlab, by @nvuillam in https://github.com/oxsecurity/megalinter/pull/3129 - CI - Upgrade pymdown-extensions and markdown, by @BryanQuigley in [#3053](https://github.com/oxsecurity/megalinter/pull/3053) - Use docker/metadata-action for some internal CI, by @echoix in [#3110](https://github.com/oxsecurity/megalinter/pull/3110) - Call docker buildx prune instead of docker builder prune, by @echoix in [#3127](https://github.com/oxsecurity/megalinter/pull/3127) - -- Linter versions upgrades - - [protolint](https://github.com/yoheimuta/protolint) from 0.46.2 to **0.46.3** on 2023-10-29 - - [checkov](https://www.checkov.io/) from 3.0.12 to **3.0.13** on 2023-10-30 - - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 0.83.0 to **0.83.1** on 2023-10-31 - - [phpstan](https://phpstan.org/) from 1.10.39 to **1.10.40** on 2023-10-31 - - [checkov](https://www.checkov.io/) from 3.0.13 to **3.0.14** on 2023-10-31 - - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.61.0 to **3.62.0** on 2023-10-31 - - [checkov](https://www.checkov.io/) from 3.0.14 to **3.0.15** on 2023-11-01 - - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.62.0 to **3.62.1** on 2023-11-01 - - [checkov](https://www.checkov.io/) from 3.0.15 to **3.0.16** on 2023-11-01 - - [bicep_linter](https://learn.microsoft.com/en-us/azure/azure-resource-manager/bicep/linter) from 0.22.6 to **0.23.1** on 2023-11-03 - - [golangci-lint](https://golangci-lint.run/) from 1.55.1 to **1.55.2** on 2023-11-03 - - [pyright](https://github.com/Microsoft/pyright) from 1.1.333 to **1.1.334** on 2023-11-03 - - [ruff](https://github.com/astral-sh/ruff) from 0.1.3 to **0.1.4** on 2023-11-03 - - [checkov](https://www.checkov.io/) from 3.0.16 to **3.0.19** on 2023-11-03 - - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** on 2023-11-03 - - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** on 2023-11-03 - - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** on 2023-11-03 - - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.2 to **1.6.3** on 2023-11-03 - - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.0 to **0.53.1** on 2023-11-03 - - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 11.1.1 to **12.0.0** on 2023-11-04 - - [eslint](https://eslint.org) from 8.52.0 to **8.53.0** on 2023-11-04 - - [npm-package-json-lint](https://npmpackagejsonlint.org/) from 7.0.0 to **7.1.0** on 2023-11-05 - - [checkov](https://www.checkov.io/) from 3.0.19 to **3.0.20** on 2023-11-05 - - [phpstan](https://phpstan.org/) from 1.10.40 to **1.10.41** on 2023-11-05 - - [checkov](https://www.checkov.io/) from 3.0.20 to **3.0.21** on 2023-11-05 - - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 12.0.0 to **12.0.1** on 2023-11-06 - - [checkov](https://www.checkov.io/) from 3.0.21 to **3.0.24** on 2023-11-06 - - [semgrep](https://semgrep.dev/) from 1.46.0 to **1.48.0** on 2023-11-06 - - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** on 2023-11-06 - - [trivy](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** on 2023-11-06 - - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.1 to **0.53.2** on 2023-11-06 - - [csharpier](https://csharpier.com/) from 0.25.0 to **0.26.0** on 2023-11-07 - - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.21.1 to **6.22.0** on 2023-11-11 - - [csharpier](https://csharpier.com/) from 0.26.0 to **0.26.1** on 2023-11-11 - - [black](https://black.readthedocs.io/en/stable/) from 23.10.1 to **23.11.0** on 2023-11-11 - - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.6.1 to **1.7.0** on 2023-11-11 - - [pyright](https://github.com/Microsoft/pyright) from 1.1.334 to **1.1.335** on 2023-11-11 - - [ruff](https://github.com/astral-sh/ruff) from 0.1.4 to **0.1.5** on 2023-11-11 - - [checkov](https://www.checkov.io/) from 3.0.24 to **3.0.32** on 2023-11-11 - - [kics](https://www.kics.io) from 1.7.10 to **1.7.11** on 2023-11-11 - - [syft](https://github.com/anchore/syft) from 0.94.0 to **0.96.0** on 2023-11-11 - - [cspell](https://github.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 7.3.8 to **8.0.0** on 2023-11-11 - - [swiftlint](https://github.com/realm/SwiftLint) from 0.53.0 to **0.54.0** on 2023-11-11 - - [yamllint](https://yamllint.readthedocs.io/) from 1.32.0 to **1.33.0** on 2023-11-11 - - [checkov](https://www.checkov.io/) from 3.0.32 to **3.0.34** on 2023-11-12 - - [secretlint](https://github.com/secretlint/secretlint) from 7.0.7 to **7.1.0** on 2023-11-12 - - [prettier](https://prettier.io/) from 3.0.3 to **3.1.0** on 2023-11-13 - - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 0.83.1 to **0.83.2** on 2023-11-15 - - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 6.0.416 to **6.0.417** on 2023-11-15 - - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.4 to **10.12.5** on 2023-11-15 - - [checkov](https://www.checkov.io/) from 3.0.34 to **3.0.36** on 2023-11-15 - - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.2 to **0.53.3** on 2023-11-15 - - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 0.83.2 to **0.83.3** on 2023-11-18 - - [csharpier](https://csharpier.com/) from 0.26.1 to **0.26.2** on 2023-11-18 - - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 12.0.1 to **12.1.0** on 2023-11-18 - - [eslint](https://eslint.org) from 8.53.0 to **8.54.0** on 2023-11-18 - - [kubeconform](https://github.com/yannh/kubeconform) from 0.6.3 to **0.6.4** on 2023-11-18 - - [phpstan](https://phpstan.org/) from 1.10.41 to **1.10.42** on 2023-11-18 - - [powershell_formatter](https://github.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** on 2023-11-18 - - [powershell](https://github.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** on 2023-11-18 - - [pyright](https://github.com/Microsoft/pyright) from 1.1.335 to **1.1.336** on 2023-11-18 - - [ruff](https://github.com/astral-sh/ruff) from 0.1.5 to **0.1.6** on 2023-11-18 - - [checkov](https://www.checkov.io/) from 3.0.36 to **3.0.38** on 2023-11-18 - - [semgrep](https://semgrep.dev/) from 1.48.0 to **1.50.0** on 2023-11-18 - - [syft](https://github.com/anchore/syft) from 0.96.0 to **0.97.1** on 2023-11-18 - - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.62.1 to **3.63.0** on 2023-11-18 - - [clippy](https://github.com/rust-lang/rust-clippy) from 0.1.73 to **0.1.74** on 2023-11-18 - - [vale](https://vale.sh/) from 2.29.5 to **2.29.7** on 2023-11-18 - - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.3 to **1.6.4** on 2023-11-18 - - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.3 to **0.53.4** on 2023-11-18 - - [tflint](https://github.com/terraform-linters/tflint) from 0.48.0 to **0.49.0** on 2023-11-18 - - [checkov](https://www.checkov.io/) from 3.0.38 to **3.0.39** on 2023-11-19 - - [xmllint](http://xmlsoft.org/xmllint.html) from 21104 to **21106** on 2023-11-19 - + - Set schedule earlier for auto-update-linters.yml, allow manual runs, by @echoix in https://github.com/oxsecurity/megalinter/pull/3066 + - Add mike to dev/requirements.txt, by @echoix in https://github.com/oxsecurity/megalinter/pull/3070 + - Modernize dependabot.yml in correct directories, by @echoix in https://github.com/oxsecurity/megalinter/pull/3093 + - Fix devcontainer Dockerfile typo (fixes #3114) by @daltonv in https://github.com/oxsecurity/megalinter/pull/3115 + +- Linter versions upgrades + - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.21.1 to **6.22.0** + - [bicep_linter](https://learn.microsoft.com/en-us/azure/azure-resource-manager/bicep/linter) from 0.22.6 to **0.23.1** + - [black](https://black.readthedocs.io/en/stable/) from 23.10.1 to **23.11.0** + - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 0.83.0 to **0.83.3** + - [checkov](https://www.checkov.io/) from 3.0.12 to **3.0.39** + - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.4 to **10.12.5** + - [clippy](https://github.com/rust-lang/rust-clippy) from 0.1.73 to **0.1.74** + - [csharpier](https://csharpier.com/) from 0.25.0 to **0.26.2** + - [cspell](https://github.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 7.3.8 to **8.0.0** + - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 6.0.416 to **6.0.417** + - [eslint](https://eslint.org) from 8.52.0 to **8.54.0** + - [golangci-lint](https://golangci-lint.run/) from 1.55.1 to **1.55.2** + - [kics](https://www.kics.io) from 1.7.10 to **1.7.11** + - [kubeconform](https://github.com/yannh/kubeconform) from 0.6.3 to **0.6.4** + - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.6.1 to **1.7.0** + - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 11.1.1 to **12.1.0** + - [npm-package-json-lint](https://npmpackagejsonlint.org/) from 7.0.0 to **7.1.0** + - [phpstan](https://phpstan.org/) from 1.10.39 to **1.10.42** + - [powershell](https://github.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** + - [powershell_formatter](https://github.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** + - [prettier](https://prettier.io/) from 3.0.3 to **3.1.0** + - [protolint](https://github.com/yoheimuta/protolint) from 0.46.2 to **0.46.3** + - [pyright](https://github.com/Microsoft/pyright) from 1.1.333 to **1.1.336** + - [ruff](https://github.com/astral-sh/ruff) from 0.1.3 to **0.1.6** + - [secretlint](https://github.com/secretlint/secretlint) from 7.0.7 to **7.1.0** + - [semgrep](https://semgrep.dev/) from 1.46.0 to **1.50.0** + - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** + - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** + - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** + - [swiftlint](https://github.com/realm/SwiftLint) from 0.53.0 to **0.54.0** + - [syft](https://github.com/anchore/syft) from 0.94.0 to **0.97.1** + - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.2 to **1.6.4** + - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.0 to **0.53.4** + - [tflint](https://github.com/terraform-linters/tflint) from 0.48.0 to **0.49.0** + - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** + - [trivy](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** + - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.61.0 to **3.63.0** + - [vale](https://vale.sh/) from 2.29.5 to **2.29.7** + - [xmllint](http://xmlsoft.org/xmllint.html) from 21104 to **21106** + - [yamllint](https://yamllint.readthedocs.io/) from 1.32.0 to **1.33.0** ## [v7.5.0] - 2023-10-29