v0.10.0

Quality / Stability release

This release contains breaking changes for API consumers.

This is a breaking change for consumers of vacuum as an API. It introduces some changes to the Schema of all built in rule functions. These changes are required to correct some broken behavior when using vacuum as an engine for other tools.

A number of built in rule functions have have schemas updated to be accurate.

A new GetCategory method signature has been added to the RuleFunction interface, that requires all rule functions to expose the category the rule is apart of.

severity is now a required property of all rule definitions.

It addresses the following issues

• #495
• #497

Changelog

• 6c3ee1e Added GetCategory to rules and functions.
• bafa430 Added complete rule result for failed validation
• eb1d2bb Added in a missing rule for a function (not recommended)
• 4b92420 Addresses #497
• 5288135 Fixed rule function schemas
• 1f88d45 Fixed tests
• 4a996f8 added 0.10 release notes.
• f444c40 added nill pointer check
• afc6a8d added property check to validation
• cbf35d8 added rule schema json
• 297d059 added severity and formats to required props for rules in schema
• 04149fc addressed max properties on enumeration #495
• 345713f bumped deps
• ec1318c cleaned up LSP handling
• da2e73d corrected ID of post operations rule
• a2de733 exported RuleSchema and RulesetSchema
• 62eab5a fixed schema and casing function schema
• 7e4536e fixed xor schema
• c064a70 nill pointer check added
• c7b3bee removed formats from schema
• 1a9f784 removed severity from required,
• 7cf9d0f renamed post-response-success rule

v0.9.16

Changelog

• 99df10d Added missing example check for parameters with content

v0.9.15

Changelog

• 9ba4676 Address data race issues #487
• 1c37e79 Addressed issue in #482
• b62ed62 Removed duplicate table header
• fa35aa7 bumped deps
• 0762d3c removed dead code

v0.9.14

Changelog

• 2bed9e6 fixed a couple of tests with missing examples
• 9b73e7c missing examples are now sensitive to encased parent objects
• 9e02717 removed dead code.

v0.9.13

Changelog

• 2294f6c Add --timeout and lint --globbed-files non-completions
• 61573d5 Fixed glitch with multi example validation.
• c3fd403 More concise and tighter scoped flag completion registration error handling

@scop

v0.9.12

Changelog

• 6f48501 documentation and rules are now aligned.

v0.9.11

Changelog

• eb21309 Fixed NPE discovered in the platform
• 2dfc2ed Updated truthy to operate correctly
• 77e964c Updated zuplo logos
• 33e29b1 cleaned unused-component
• 3fd475c cleaned up security rule
• acd2165 disable dedupe on rules.
• e3d93b5 missing examples now more sensitive to location accuracy
• d3cd35a moved disgnostics into reusable function
• a5ad684 moved to key node for media types
• 58fcbab prevented stats from erroring out if there are no inputs
• 7718f1f rebuilt operation_descriptions function
• 3a990a7 updated BuildEndNode to accomodate quotes
• c71a1da updated truthy to render correct line
• 5f0bbef we need another build, access token failed.

v0.9.10

Adds remote flag passthrough for bundle command

Removed panic and added log statement when running rules that contain results with no start node. Not sure how this is triggered, but will help diagnose it in the future.

Also bumped libopenapi version.

@emilien-puget

Changelog

• b470622 bumped libopenapi
• 4bacaf7 bundle remote flag
• 7fa3c3e removed panic and added log statement

v0.9.9

Changelog

• 28da3ee Fixed owasp-rate-limit function by removing duplicate name

v0.9.8

Updates to the latest libopenapi which addresses issues:

• #459
• #460

Added new headers to owasp-rate-limit rule

RateLimit is now accepted by this rule.

• #458

Various other resolving issues.

Changelog

• f1ac2f0 Addressed #458
• d4dbd0b Addressed issue #460
• f9a721b bumped deps