DongTai Versions Save

Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.

v1.16.0

6 months ago

What's Changed

feat: improve patch type hint by @st1020 in https://github.com/HXSecurity/DongTai/pull/1841
feat: modify user field by @st1020 in https://github.com/HXSecurity/DongTai/pull/1839
feat: remove login lock by @st1020 in https://github.com/HXSecurity/DongTai/pull/1840
feat:add agent version api. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1838
feat/project_type_summary by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1842
deps: add pyotp dep by @st1020 in https://github.com/HXSecurity/DongTai/pull/1846
feat: add project status change notify by @st1020 in https://github.com/HXSecurity/DongTai/pull/1845
fix: percentage zero error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1847
fix: zero divide by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1849
fix: project current version auth fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1848
feat: add request topo models. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1853
feat: project type summary list. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1854
feat: modify user info api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1856
feat: increase buffer size. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1855
feat: add tantivy search by @st1020 in https://github.com/HXSecurity/DongTai/pull/1857
deps: add qrcode dep by @st1020 in https://github.com/HXSecurity/DongTai/pull/1858
feat: change tantivy index path by @st1020 in https://github.com/HXSecurity/DongTai/pull/1859
Feat/add ldap settings by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1860
feat: add update vul tantivy index receiver by @st1020 in https://github.com/HXSecurity/DongTai/pull/1861
feat: vul status change msg. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1862
build(deps): fix deps . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1864
build(deps): fix deps . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1865
fix: tantivy search error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1866
build(deps): fix deps . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1867
fix: tantivy search error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1868
feat/msg_status_log by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1869
feat load vul fix by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1870
fix: change log level. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1873
fix: load hook strategy with dup data. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1874
fix: tantivy path error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1875
feat: add strategy case. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1877
feat: add vul log time range. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1878
Feat/add vul log time range by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1879
Feat/add 1.16 strategy p2 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1880
feat: add 1.16 strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1876
fix: vul_log msg record by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1881
fix: vul_log msg record by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1882
fix: vul_log msg record by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1883
feat: migration permissions. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1884
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1885
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1886
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1887
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1888
fix: dockerfile by @st1020 in https://github.com/HXSecurity/DongTai/pull/1889
Develop to Beta by @st1020 in https://github.com/HXSecurity/DongTai/pull/1892
Beta to Main by @st1020 in https://github.com/HXSecurity/DongTai/pull/1893
Develop to Beta by @st1020 in https://github.com/HXSecurity/DongTai/pull/1895
Beta to Main by @st1020 in https://github.com/HXSecurity/DongTai/pull/1896
Update release_dongtai.yml by @lingyuguo in https://github.com/HXSecurity/DongTai/pull/1898
Beta by @lingyuguo in https://github.com/HXSecurity/DongTai/pull/1899
cos gitaction by @lingyuguo in https://github.com/HXSecurity/DongTai/pull/1902
Beta by @lingyuguo in https://github.com/HXSecurity/DongTai/pull/1903

New Contributors

@lingyuguo made their first contribution in https://github.com/HXSecurity/DongTai/pull/1898

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.15.0...v1.16.0

v1.15.0

7 months ago

What's Changed

feat: add 1.14.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1745
v1.14.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1746
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1747
v1.14.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1748
v1.14.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1750
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1751
fix: remove print by @st1020 in https://github.com/HXSecurity/DongTai/pull/1739
pref: use group celery tasks in sca bulk handler by @st1020 in https://github.com/HXSecurity/DongTai/pull/1749
feat: add session engine by @st1020 in https://github.com/HXSecurity/DongTai/pull/1753
pref: improve app vul list pref by @st1020 in https://github.com/HXSecurity/DongTai/pull/1742
feat: set session expiry by @st1020 in https://github.com/HXSecurity/DongTai/pull/1755
feat: remove outdate code by @st1020 in https://github.com/HXSecurity/DongTai/pull/1754
fix: app vul list error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1756
feat: add failed login count by @st1020 in https://github.com/HXSecurity/DongTai/pull/1757
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1760
fix: login error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1761
feat: new patch implementation by @st1020 in https://github.com/HXSecurity/DongTai/pull/1759
feat: add login lock status by @st1020 in https://github.com/HXSecurity/DongTai/pull/1762
build(deps): bump uwsgi from 2.0.21 to 2.0.22 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1764
feat: modify project summary api day_num field by @st1020 in https://github.com/HXSecurity/DongTai/pull/1763
feat: method pool save by @st1020 in https://github.com/HXSecurity/DongTai/pull/1766
feat: reduce memory usage in vul scan. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1767
feat: modify vul save logic by @st1020 in https://github.com/HXSecurity/DongTai/pull/1768
fix: vul method pool error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1769
feat: add has vul method pool field by @st1020 in https://github.com/HXSecurity/DongTai/pull/1771
fix: iast_vulnerability table migration by @st1020 in https://github.com/HXSecurity/DongTai/pull/1772
feat: package focus by @st1020 in https://github.com/HXSecurity/DongTai/pull/1773
feat: focus package priority by @st1020 in https://github.com/HXSecurity/DongTai/pull/1775
feat: add custom tag by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1777
feat: change hook strategy length limit. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1778
Feat/add new topo table by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1779
deps: add pandas dependance by @st1020 in https://github.com/HXSecurity/DongTai/pull/1781
feat: custom max page size by @st1020 in https://github.com/HXSecurity/DongTai/pull/1782
feat: modify notify by @st1020 in https://github.com/HXSecurity/DongTai/pull/1783
refactor: vul details api parse_graph by @st1020 in https://github.com/HXSecurity/DongTai/pull/1784
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1785
feat: add replay header by @st1020 in https://github.com/HXSecurity/DongTai/pull/1786
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1787
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1788
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1790
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1791
feat: modify hook strategy update logic by @st1020 in https://github.com/HXSecurity/DongTai/pull/1789
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1792
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1793
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1794
Feat/add project token by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1797
feat: heartbeat use celery task by @st1020 in https://github.com/HXSecurity/DongTai/pull/1795
fix: save vul did not save uri by @st1020 in https://github.com/HXSecurity/DongTai/pull/1796
feat: add project token by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1798
feat: add new migration by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1799
fix: memory reduce. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1780
dep: add new migration by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1800
fix: modify rule value by @st1020 in https://github.com/HXSecurity/DongTai/pull/1801
fix: set language by @st1020 in https://github.com/HXSecurity/DongTai/pull/1802
fix: modify rule value by @st1020 in https://github.com/HXSecurity/DongTai/pull/1803
deps: add more itertools by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1804
feat/project token p2 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1805
feat/remove no risk level by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1806
feat/project token p2 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1807
feat/api route is cover. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1809
fix: heartbeat task error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1808
feat: sensitive info rule add system type by @st1020 in https://github.com/HXSecurity/DongTai/pull/1811
fix: heartbeat task error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1810
fix: vul status const error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1813
fix: change to directed graph. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1812
Feat/add constrain in vec by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1814
Feat/add doc by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1815
feat: update new strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1816
fix:project_agent_download_token by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1817
feat: update new strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1818
feat: update new strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1819
v1.15.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1820
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1821
v1.15.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1822
v1.15.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1823
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1824
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1825
v1.15.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1826
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1827
fix: load hook strategy by @st1020 in https://github.com/HXSecurity/DongTai/pull/1828
feat: sensitive info pattern use text by @st1020 in https://github.com/HXSecurity/DongTai/pull/1829
fix: agent download. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1830
fix: patch by @st1020 in https://github.com/HXSecurity/DongTai/pull/1831
feat: add new permission. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1832
feat: add new permission. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1833
fix: load hook strategy by @st1020 in https://github.com/HXSecurity/DongTai/pull/1834
fix: modify sensitive info rule status by @st1020 in https://github.com/HXSecurity/DongTai/pull/1835
fix: patch log by @st1020 in https://github.com/HXSecurity/DongTai/pull/1836
pref: sensitive info rule list by @st1020 in https://github.com/HXSecurity/DongTai/pull/1837
Feat/1.15.0 develop by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1843
Beta by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1844

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.14.0...v1.15.0

v1.14.1

8 months ago

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.14.0...v1.14.1

v1.14.0

8 months ago

What's Changed

feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1637
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1638
fix: fix log filter by @st1020 in https://github.com/HXSecurity/DongTai/pull/1639
chore: modify github workflow tests by @st1020 in https://github.com/HXSecurity/DongTai/pull/1640
lint: add ruff linter and black formatter by @st1020 in https://github.com/HXSecurity/DongTai/pull/1643
refactor: use networkit rewrite vul scan. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1642
fix: that a context manager cant be used with FileResponse. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1645
refactor: change file place. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1646
chore: update batect by @st1020 in https://github.com/HXSecurity/DongTai/pull/1647
fix: ruff check by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1648
feat: change auth to use projects by @st1020 in https://github.com/HXSecurity/DongTai/pull/1650
feat: change auth to use projects. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1649
chore: update cython by @st1020 in https://github.com/HXSecurity/DongTai/pull/1651
chore: add workflow dispatch for nightly by @st1020 in https://github.com/HXSecurity/DongTai/pull/1652
Feat/use migrations by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1653
fix: cython build error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1654
feat: change auth to use projects by @st1020 in https://github.com/HXSecurity/DongTai/pull/1655
feat: use migrations. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1656
chore: fix ci error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1657
fix: department token error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1659
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1662
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1663
feat: change agent register. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1660
feat: add project permission model by @st1020 in https://github.com/HXSecurity/DongTai/pull/1661
feat: change role model name by @st1020 in https://github.com/HXSecurity/DongTai/pull/1664
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1665
feat: add request type by @st1020 in https://github.com/HXSecurity/DongTai/pull/1666
feat: change agent register. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1667
feat: modify project group model by @st1020 in https://github.com/HXSecurity/DongTai/pull/1668
feat: add m2m fields. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1669
feat: change auth to use projects. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1671
chore: change Cython build file by @st1020 in https://github.com/HXSecurity/DongTai/pull/1673
feat: add deleted field to user model by @st1020 in https://github.com/HXSecurity/DongTai/pull/1674
feat: remove unused serializer by @st1020 in https://github.com/HXSecurity/DongTai/pull/1672
feat: network scan detect multi path. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1675
fix: fix type summary in project_summary. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1677
fix: user model get_projects method by @st1020 in https://github.com/HXSecurity/DongTai/pull/1679
feat: add project group name field in project list api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1678
fix: user model get_projects method by @st1020 in https://github.com/HXSecurity/DongTai/pull/1680
fix: disk rate parse . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1682
feat: add chinese sca by @st1020 in https://github.com/HXSecurity/DongTai/pull/1683
feat: add chinese sca by @st1020 in https://github.com/HXSecurity/DongTai/pull/1685
feat: remove outdate api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1686
Feat/project metadata by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1687
feat: add report validated sink config by @st1020 in https://github.com/HXSecurity/DongTai/pull/1688
chore(deps): bump cryptography from 41.0.2 to 41.0.3 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1689
chore(deps): bump cryptography from 41.0.2 to 41.0.3 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1690
fix: migration error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1691
feat:add patch point. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1692
feat: add hook strategt type in createion. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1693
chore: add rate limit to schemathesis by @st1020 in https://github.com/HXSecurity/DongTai/pull/1684
feat: add unique constraint to name field by @st1020 in https://github.com/HXSecurity/DongTai/pull/1694
feat: user login add is active field. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1696
pref: improve projects pref by @st1020 in https://github.com/HXSecurity/DongTai/pull/1695
fix: agent register remove department. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1698
fix: now its show the selected status vuls. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1699
feat: add project group name in project detail. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1701
feat: add unique constraint by @st1020 in https://github.com/HXSecurity/DongTai/pull/1697
feat: add unique to project metadata. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1702
fix: remove department. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1704
refactor: vul engine by @st1020 in https://github.com/HXSecurity/DongTai/pull/1703
Feat/validate tag by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1706
feat: project summary add project group name. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1705
fix: modify agent config api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1707
build(deps): bump certifi from 2023.5.7 to 2023.7.22 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1658
fix: project vul_count with status filter. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1710
feat: agent register and heartbeat. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1711
fix: permission fix in strategy create. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1712
fix: add hook rule field validate message. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1713
feat: allow inactive user login. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1714
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1716
pref: add index to db by @st1020 in https://github.com/HXSecurity/DongTai/pull/1709
feat: add role and group name limit. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1717
pref: improve package vul pref by @st1020 in https://github.com/HXSecurity/DongTai/pull/1715
Feat/add project name limit by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1718
feat:add user login massage by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1720
feat:add user login massage by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1721
fix: test error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1722
fix: package vul error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1719
feat: project add create project user rel. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1723
fix: project report export. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1724
Fix/uniform branches models part by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1725
fix:data update by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1726
fix: engine hook rule modify. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1727
build(deps): bump tornado from 6.3.2 to 6.3.3 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1728
fix: package vuls error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1729
feat: update 1.14.0 strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1730
fix: delete session if user disable by @st1020 in https://github.com/HXSecurity/DongTai/pull/1732
feat: update 1.14.0 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1731
fix: delete session if user disable by @st1020 in https://github.com/HXSecurity/DongTai/pull/1733
feat: deploy uwsgi change process number. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1734
fix: remove dockerignore by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1735
build(deps): bump certifi from 2023.5.7 to 2023.7.22 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1736
feat: update permission. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1737
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1738
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1740
pref: do not check user in protocol api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1741
v1.14.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1743
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1744

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.13.0...v1.14.0

v1.13.0

9 months ago

What's Changed

feat: add project id and project version id in project add api. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1544
fix: api route parameter not correct record with multi method case. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1545
feat/new_api_route_upload by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1546
Revert "feat/new_api_route_upload" by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1548
fix: fix heartbeat handler save fail by @st1020 in https://github.com/HXSecurity/DongTai/pull/1551
fix: remove not reliable api data. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1552
fix: type hint error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1553
feat: add project status update task by @st1020 in https://github.com/HXSecurity/DongTai/pull/1554
feat: add project stauts filter by @st1020 in https://github.com/HXSecurity/DongTai/pull/1556
faet: add project warning time config by @st1020 in https://github.com/HXSecurity/DongTai/pull/1557
Update dongtai-pr.yaml by @tscuite in https://github.com/HXSecurity/DongTai/pull/1558
Update dongtai-pr.yaml by @tscuite in https://github.com/HXSecurity/DongTai/pull/1559
feat: add project exclude vul status filter by @st1020 in https://github.com/HXSecurity/DongTai/pull/1560
feat: remove some vul status by @st1020 in https://github.com/HXSecurity/DongTai/pull/1561
Update README.md by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1563
feat: change API log by @st1020 in https://github.com/HXSecurity/DongTai/pull/1562
deps: add shortuuid as deps . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1564
doc: add tags to api extend_schema. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1565
feat: merge changes by @st1020 in https://github.com/HXSecurity/DongTai/pull/1566
feat: remove some api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1567
refactor: remove match statement by @st1020 in https://github.com/HXSecurity/DongTai/pull/1568
fix: agent status log by @st1020 in https://github.com/HXSecurity/DongTai/pull/1569
feat: remove some api by @st1020 in https://github.com/HXSecurity/DongTai/pull/1570
fix: type hint error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1572
fix: log filte by @st1020 in https://github.com/HXSecurity/DongTai/pull/1573
feat: add new patch by @st1020 in https://github.com/HXSecurity/DongTai/pull/1574
feat: cython parallel compilation by @st1020 in https://github.com/HXSecurity/DongTai/pull/1576
fix: project add error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1578
fix: project add error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1580
fix: validator not working in validate command and tag. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1579
fix: max recursive error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1577
feat: update patch by @st1020 in https://github.com/HXSecurity/DongTai/pull/1581
feat: cut out vul list by @st1020 in https://github.com/HXSecurity/DongTai/pull/1582
feat: update Pipfile by @tscuite in https://github.com/HXSecurity/DongTai/pull/1583
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1584
Feat/celery project timestamp update by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1585
feat: add metrics by @tscuite in https://github.com/HXSecurity/DongTai/pull/1586
feat: add metrics by @tscuite in https://github.com/HXSecurity/DongTai/pull/1587
fix: disable branch search. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1588
feat: change default strategy template when add strategy by @st1020 in https://github.com/HXSecurity/DongTai/pull/1589
feat: del metrics by @tscuite in https://github.com/HXSecurity/DongTai/pull/1591
feat: project version timestamp update. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1592
fix: vul status error in heartbeat by @st1020 in https://github.com/HXSecurity/DongTai/pull/1590
feat: add healthcheck by @tscuite in https://github.com/HXSecurity/DongTai/pull/1593
pref: improve projects performance by @st1020 in https://github.com/HXSecurity/DongTai/pull/1594
feat: update helm by @tscuite in https://github.com/HXSecurity/DongTai/pull/1595
fix: celery connection error by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1596
pref: improve strategy types performance by @st1020 in https://github.com/HXSecurity/DongTai/pull/1597
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1599
pref: improve hook rules performance by @st1020 in https://github.com/HXSecurity/DongTai/pull/1598
fix: update project status error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1600
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1601
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1602
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1603
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1604
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1605
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1606
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1607
fix: agent download template id. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1608
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1609
feat: disable drf spectacular log by @st1020 in https://github.com/HXSecurity/DongTai/pull/1610
feat: update ci gevent by @tscuite in https://github.com/HXSecurity/DongTai/pull/1611
feat: update ci timeout by @tscuite in https://github.com/HXSecurity/DongTai/pull/1612
feat: update 1.13.0 strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1613
feat: update 1.13.0 params. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1614
feat: update 1.13.0 strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1615
feat: change init schema log level by @st1020 in https://github.com/HXSecurity/DongTai/pull/1616
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1617
feat: update 1.13.0 strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1618
fix: api documents fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1619
fix: add miss api vul_recheck_payload by @st1020 in https://github.com/HXSecurity/DongTai/pull/1621
fix: schema error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1620
fix: new graph check node exists. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1622
docs: change schema to chinese by @st1020 in https://github.com/HXSecurity/DongTai/pull/1624
feat: update ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1625
fix: logstash prase json error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1627
fix: logstash prase json error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1628
fix: logstash prase json error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1629
build(deps): bump cryptography from 41.0.0 to 41.0.2 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1623
fix: source method repeated. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1631
build(deps): bump cryptography from 41.0.0 to 41.0.2 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1630
docs: change schema to chinese by @st1020 in https://github.com/HXSecurity/DongTai/pull/1626
feat: add ci by @tscuite in https://github.com/HXSecurity/DongTai/pull/1632
fix/logstash_parse_json_error by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1633
docs: fix schema error by @st1020 in https://github.com/HXSecurity/DongTai/pull/1634
beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1635
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1636

New Contributors

@st1020 made their first contribution in https://github.com/HXSecurity/DongTai/pull/1551

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.12.0...v1.13.0

v1.12.0

10 months ago

What's Changed

Release-1.11.0 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1453
Release-1.11.0 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1454
Feat/optimise auth use cache by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1455
feat: search method pool cache. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1457
Ci/update deps celery by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1460
feat: optimise agent upload. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1462
feat: optimise agent upload. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1463
feat: use gevent as default. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1464
fix: gevent using error. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1465
build(deps): bump requests from 2.25.1 to 2.31.0 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1461
feat: rotate use cache. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1458
feat: project timestamp update use async singlton task. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1467
feat: project timestamp update use async singlton task. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1468
Bugfix/agent id in replay queue by @Code-Agitator in https://github.com/HXSecurity/DongTai/pull/1470
Update README.md by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1471
fix: agent heartbeat cache update. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1472
Feat/new sca impl by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1475
Feat/new sca impl scan by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1476
feat: new sca impl. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1477
feat: new sca impl. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1478
feat: new sca impl. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1479
feat: new sca impl api fix . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1480
feat: new sca impl api add field. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1481
feat: new sca impl api add field. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1483
fix: doc fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1484
fix: project time stamp update task. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1485
fix: old scan util type check. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1482
feat: new sca impl api add field. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1486
feat: new sca impl api fix version. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1487
build(deps): bump cryptography from 39.0.1 to 41.0.0 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1488
build(deps): bump cryptography from 39.0.1 to 41.0.0 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1489
fix: sca summary. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1490
fix: type infer in license. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1491
fix: type infer in license. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1492
fix: type infer in license. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1493
fix relation projects. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1494
Feat/add route cover count by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1495
feat: vul status wont change in the final state. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1496
feat: add rate limit by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1497
fix/dast_vul_filter-failed by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1498
fix/dast_vul_filter-failed by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1499
fix: fix sca scan when package_publish_time empty. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1501
fix: summary type in sca. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1502
fix: new asset risk level. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1503
fix: new asset risk summary. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1504
fix: new asset risk summary. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1505
fix: remove update all status. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1506
feat: add new tag. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1507
feat: add new package vul level api. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1509
feat: add new package vul level api. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1510
feat: add new strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1508
fix: sca scan_data transform. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1511
fix: vul_level match count. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1513
feat: project vul filter by uri. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1515
development: add silk as profiler. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1512
fix: sca scan typing. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1518
Development/add silk as profiler p2 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1517
feat: mirgate api route gather to celery task. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1519
feat: hook profile download queries optimise. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1520
fix: agent download replace jar to zip. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1521
fix: scan utils typing check. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1522
fix: scan utils typing check. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1523
fix: scan utils typing check. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1524
feat: add new strategy . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1525
fix stack_recognize white list not working by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1526
feat: add new strategy . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1527
feat: add new startegy 1.12.0 by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1528
feat: package relative version query change. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1529
feat: package relative version query change. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1530
feat: package relative project query change. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1531
change query in sca relation query by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1532
build: add deps by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1533
feat: update images by @tscuite in https://github.com/HXSecurity/DongTai/pull/1534
fix: update images version by @tscuite in https://github.com/HXSecurity/DongTai/pull/1535
v1.12.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1536
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1537
feat: update somaxconn by @tscuite in https://github.com/HXSecurity/DongTai/pull/1538
v1.12.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1539
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1540
feat: update new strategy. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1541
v1.12.0 by @tscuite in https://github.com/HXSecurity/DongTai/pull/1542
Beta by @tscuite in https://github.com/HXSecurity/DongTai/pull/1543

New Contributors

@Code-Agitator made their first contribution in https://github.com/HXSecurity/DongTai/pull/1470

Full Changelog: https://github.com/HXSecurity/DongTai/compare/v1.11.0...v1.12.0

v1.11.0

11 months ago

Feature

Increase the location display of dangerous methods and user code identification
Add code black and white list configuration
Add custom rule configuration items
Add agent list data display
Added hard-coded vulnerability display
The call chain search is modified to include matches, and a search timeout reminder is added.
Fixed the situation where an error was reported in a certain scenario in the vulnerability search part
Fix the problem of getting the wrong url corresponding to the api in the case of redirection
Fixed the markdown parsing problem of vulnerability description and repair plan
Fixed the problem of incorrect calculation of the number of agents in the project list interface
Fixed the bug that the number of connections surged due to connection reuse that conflicted with celery
Fixed the problem that the resource usage of excel report export was too high
Adjusted the verification of webhook, now as long as the receiving end returns a 200 status code, it can pass

What's Changed

fix: remove departured urls. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1426
fix: stack recognize trie match by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1428
fix/agent_count_in_project_list by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1429
feat:agent allow upload by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1427
fix: agent list args validation. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1430
fix: ci codeql update. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1431
fix: project summary typing fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1432
fix: engine method pool change to contains. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1433
fix: agnet register allow report by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1434
fix: string parsing error in lookup . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1435
fix: engine method pool change to contains p2. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1436
feat: agent_v2_allow_report_filter by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1437
fix: add method_pool search timeout . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1438
fix: pep lint fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1441
fix: get real uri in redirect case . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1443
build(deps): bump django from 3.2.18 to 3.2.19 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1442
build(deps): bump django from 3.2.18 to 3.2.19 by @dependabot in https://github.com/HXSecurity/DongTai/pull/1444
fix: project id in recognize api . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1447
fix: project delete in recognize api . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1448
fix: project delete in recognize api . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1449
fix: project delete in recognize api . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1450
fix: recognize rule project id range fix. by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1451
feat: new strategy rules . by @Bidaya0 in https://github.com/HXSecurity/DongTai/pull/1452

Full Changelog: https://github.com/HXSecurity/DongTai/commits/v1.11.0

v1.10.0

1 year ago

Feature

SAST integration: Support SAST scanner to push vulnerabilities to scan vulnerabilities under the project
SAST integration: supports the association of instrumented vulnerabilities and SAST scanning vulnerabilities
Project configuration: Add project level modification log level and switch
Custom rules: Added two options: Ignore Internal Call and Ignore Blacklist
Fixed an issue where replay association based on file path similarity failed
Fixed the problem that the original URL address for extracting vulnerabilities was invalid
Fix the problem of highlight failure caused by abnormal data
Fixed SSRF false positives not being properly excluded in the engine
Fix the problem that the number of statistical items in the vulnerability display is incorrect due to the Agent being deleted
Fixed the wrong binding problem caused by projects with the same name in multiple departments during Agent registration
Updated the text of some vulnerability descriptions