From f842edc898c06894eb9aeff232e92beb14c1427c Mon Sep 17 00:00:00 2001 From: Aurelien Gateau Date: Tue, 25 Jun 2024 12:11:45 +0200 Subject: [PATCH] chore(release): 1.29.0 --- CHANGELOG.md | 40 ++++++++++++++++-- actions/iac/action.yml | 2 +- actions/sca/action.yml | 2 +- actions/secret/action.yml | 2 +- ...to_make_ggshield_secret_scan_path_honor.md | 3 -- ...203_samuel.guillaume_secret_scan_change.md | 41 ------------------- ..._login_flow_errors_are_not_handled_when.md | 3 -- ...604_110454_fnareoh_refacto_censor_lines.md | 3 -- ...1670_refactor_ggshield_scan_ci_commands.md | 37 ----------------- ...s.sinclair_auth_login_allow_self_signed.md | 3 -- ...55_aurelien.gateau_update_pygitguardian.md | 3 -- ...9_aurelien.gateau_sign_windows_binaries.md | 3 -- ggshield/__init__.py | 2 +- 13 files changed, 41 insertions(+), 103 deletions(-) delete mode 100644 changelog.d/20240515_144740_salome.voltz_scrt_4125_add_an_option_to_make_ggshield_secret_scan_path_honor.md delete mode 100644 changelog.d/20240520_164203_samuel.guillaume_secret_scan_change.md delete mode 100644 changelog.d/20240527_155007_salome.voltz_scrt_4543_ggshield_auth_login_flow_errors_are_not_handled_when.md delete mode 100644 changelog.d/20240604_110454_fnareoh_refacto_censor_lines.md delete mode 100644 changelog.d/20240604_115221_mathias.millet_sca_1670_refactor_ggshield_scan_ci_commands.md delete mode 100644 changelog.d/20240606_114213_james.sinclair_auth_login_allow_self_signed.md delete mode 100644 changelog.d/20240606_180255_aurelien.gateau_update_pygitguardian.md delete mode 100644 changelog.d/20240613_171809_aurelien.gateau_sign_windows_binaries.md diff --git a/CHANGELOG.md b/CHANGELOG.md index df66aba7fa..55fe1b7c50 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,12 +1,46 @@ # Changelog + + +## 1.29.0 — 2024-06-25 + +### Removed + +- The `--all` option of the `ggshield sca scan ci` and `ggshield iac scan ci` commands has been removed. + +### Added + +- `ggshield secret scan path` now provides a `--use-gitignore` option to honor `.gitignore` and related files (#801). + +- A new secret scan command, `ggshield secret scan changes`, has been added to scan changes between the current state of a repository checkout and its default branch. + +- GGShield is now available as a standalone executable on Windows. + +### Changed + +- The behavior of the `ggshield sca scan ci` and `ggshield iac scan ci` commands have changed. These commands are now expected to run in merge-request CI pipelines only, and will compute the diff exactly associated with the merge request. + +### Deprecated + +- Running `ggshield sca scan ci` or `ggshield iac scan ci` outside of a merge request CI pipeline is now deprecated. + +### Fixed + +- Errors thrown during `ggshield auth login` flow with an invalid instance URL are handled and the stack trace is no longer displayed on the console. + +- Patch symbols at the start of lines are now always displayed, even for single line secrets. + +- The `ggshield auth login` command now respects the `--allow-self-signed` flag. + +- GGShield now exits with a proper error message instead of crashing when it receives an HTTP response without `Content-Type` header. + ## 1.28.0 — 2024-05-29 ### Added -- The SCA config `ignored_vulnerabilities` option now supports taking a CVE id as identifier. +- The SCA config `ignored_vulnerabilities` option now supports taking a CVE ID as identifier. @@ -22,7 +56,7 @@ - We now provide signed .pkg files for macOS. -- Add `This feature is still in beta, its behavior may change in future versions` warning to iac scan all +- Add a `This feature is still in beta, its behavior may change in future versions` warning to `ggshield iac scan all` command. ### Changed @@ -238,7 +272,7 @@ ### Removed -- ggshield now refuses to install on python < 3.8 +- ggshield now refuses to install on python < 3.8. ### Added diff --git a/actions/iac/action.yml b/actions/iac/action.yml index 1aa8de7f4e..808a4d2a09 100644 --- a/actions/iac/action.yml +++ b/actions/iac/action.yml @@ -14,7 +14,7 @@ branding: color: 'blue' runs: using: 'docker' - image: 'docker://gitguardian/ggshield:v1.28.0' + image: 'docker://gitguardian/ggshield:v1.29.0' entrypoint: '/app/docker/actions-iac-entrypoint.sh' args: - ${{ inputs.args }} diff --git a/actions/sca/action.yml b/actions/sca/action.yml index a1cc29ae64..610e970f67 100644 --- a/actions/sca/action.yml +++ b/actions/sca/action.yml @@ -14,7 +14,7 @@ branding: color: 'blue' runs: using: 'docker' - image: 'docker://gitguardian/ggshield:v1.28.0' + image: 'docker://gitguardian/ggshield:v1.29.0' entrypoint: '/app/docker/actions-sca-entrypoint.sh' args: - ${{ inputs.args }} diff --git a/actions/secret/action.yml b/actions/secret/action.yml index ad5992dfa8..1847aff303 100644 --- a/actions/secret/action.yml +++ b/actions/secret/action.yml @@ -16,7 +16,7 @@ inputs: runs: using: 'docker' - image: 'docker://gitguardian/ggshield:v1.28.0' + image: 'docker://gitguardian/ggshield:v1.29.0' entrypoint: '/app/docker/actions-secret-entrypoint.sh' args: - ${{ inputs.args }} diff --git a/changelog.d/20240515_144740_salome.voltz_scrt_4125_add_an_option_to_make_ggshield_secret_scan_path_honor.md b/changelog.d/20240515_144740_salome.voltz_scrt_4125_add_an_option_to_make_ggshield_secret_scan_path_honor.md deleted file mode 100644 index 8e50dc5c2e..0000000000 --- a/changelog.d/20240515_144740_salome.voltz_scrt_4125_add_an_option_to_make_ggshield_secret_scan_path_honor.md +++ /dev/null @@ -1,3 +0,0 @@ -### Added - -- `ggshield secret scan path` supports `--use-gitignore` option to honor .gitignore and related files. diff --git a/changelog.d/20240520_164203_samuel.guillaume_secret_scan_change.md b/changelog.d/20240520_164203_samuel.guillaume_secret_scan_change.md deleted file mode 100644 index 71a359348f..0000000000 --- a/changelog.d/20240520_164203_samuel.guillaume_secret_scan_change.md +++ /dev/null @@ -1,41 +0,0 @@ - - - - -### Added - -- `ggshield secret scan changes` to scan the set of changes made in comparison to the default branch - - - - - diff --git a/changelog.d/20240527_155007_salome.voltz_scrt_4543_ggshield_auth_login_flow_errors_are_not_handled_when.md b/changelog.d/20240527_155007_salome.voltz_scrt_4543_ggshield_auth_login_flow_errors_are_not_handled_when.md deleted file mode 100644 index d8e3849b7f..0000000000 --- a/changelog.d/20240527_155007_salome.voltz_scrt_4543_ggshield_auth_login_flow_errors_are_not_handled_when.md +++ /dev/null @@ -1,3 +0,0 @@ -### Fixed - -- Errors thrown during `ggshield auth login` flow with an invalid instance URL are handled and the stack trace is no longer displayed on the console. diff --git a/changelog.d/20240604_110454_fnareoh_refacto_censor_lines.md b/changelog.d/20240604_110454_fnareoh_refacto_censor_lines.md deleted file mode 100644 index 8ffeef3726..0000000000 --- a/changelog.d/20240604_110454_fnareoh_refacto_censor_lines.md +++ /dev/null @@ -1,3 +0,0 @@ -### Fixed - -- Patch symbols at the start of lines are now always displayed, even for single line secrets. diff --git a/changelog.d/20240604_115221_mathias.millet_sca_1670_refactor_ggshield_scan_ci_commands.md b/changelog.d/20240604_115221_mathias.millet_sca_1670_refactor_ggshield_scan_ci_commands.md deleted file mode 100644 index ccd43c406e..0000000000 --- a/changelog.d/20240604_115221_mathias.millet_sca_1670_refactor_ggshield_scan_ci_commands.md +++ /dev/null @@ -1,37 +0,0 @@ - - -### Removed - -- The `--all` option for the `sca scan ci` and `iac scan ci` commands. - - - -### Changed - -- The `sca scan ci` and `iac scan ci` behaviour has changed. They are expected to run in merge-request CI pipelines only, and will compute the diff exactly associated with the merge request. - -### Deprecated - -- Running `sca scan ci` or `iac scan ci` outside of a merge request CI pipeline is now deprecated. - - - diff --git a/changelog.d/20240606_114213_james.sinclair_auth_login_allow_self_signed.md b/changelog.d/20240606_114213_james.sinclair_auth_login_allow_self_signed.md deleted file mode 100644 index b1ce1b88ec..0000000000 --- a/changelog.d/20240606_114213_james.sinclair_auth_login_allow_self_signed.md +++ /dev/null @@ -1,3 +0,0 @@ -### Fixed - -- The `ggshield auth login` command now respects the `--allow-self-signed` flag. diff --git a/changelog.d/20240606_180255_aurelien.gateau_update_pygitguardian.md b/changelog.d/20240606_180255_aurelien.gateau_update_pygitguardian.md deleted file mode 100644 index bfbfe006a0..0000000000 --- a/changelog.d/20240606_180255_aurelien.gateau_update_pygitguardian.md +++ /dev/null @@ -1,3 +0,0 @@ -### Fixed - -- GGShield now exit with a proper error message instead of crashing when it receives an HTTP response without `Content-Type` header. diff --git a/changelog.d/20240613_171809_aurelien.gateau_sign_windows_binaries.md b/changelog.d/20240613_171809_aurelien.gateau_sign_windows_binaries.md deleted file mode 100644 index 72a796c796..0000000000 --- a/changelog.d/20240613_171809_aurelien.gateau_sign_windows_binaries.md +++ /dev/null @@ -1,3 +0,0 @@ -### Added - -- GGShield is now available as a standalone executable on Windows. diff --git a/ggshield/__init__.py b/ggshield/__init__.py index b3f408df1c..c347ac29ba 100644 --- a/ggshield/__init__.py +++ b/ggshield/__init__.py @@ -1 +1 @@ -__version__ = "1.28.0" +__version__ = "1.29.0"