Changelog

Synapse-Vulncheck Changelog

v1.2.0 - 2024-06-28

Features and Enhancements

  • Replace deprecated risk:hasvuln usage with risk:vulnerable.

This release contains an automatic data migration that will run when the package is first upgraded. The migration creates risk:vulnerable nodes from the deprecated risk:hasvuln nodes.

v1.1.0 - 2024-06-05

Bugfixes

  • Safely skip invalid CPE strings.

v1.0.1 - 2024-02-20

Features and Enhancements

  • Update deprecated $lib.dict() usage to JSON style syntax.

v1.0.0 - 2023-12-22

NOTE: The Vulncheck V3 API uses a new authentication method which will require re-adding an API token with the vulncheck.setup.apikey command.

Features and Enhancements

  • Update to use the Vulncheck V3 API.

  • Add vulncheck.index command for ingesting a Vulncheck index.

v0.3.0 - 2023-06-16

Features and Enhancements

  • Updated to use new CVSS model and $lib.infosec.cvss.vectToScore()

v0.2.0 - 2023-03-22

Features and Enhancements

  • Update Power-Up to build with code signing.

v0.1.0 - 2023-01-05

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

  • Set risk:threat:name if unset.

v0.0.2 - 2022-11-16

NOTE: This release is considered Beta and may be subject to change.

Bugfixes

  • Fix an issue with API token refreshing.

  • Avoid creating empty risk:threat nodes from empty API results.

v0.0.1 - 2022-11-04

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

  • Initial release of the Synapse-Vulncheck Power-Up