Skip to content

v0.14.0
Compare
Choose a tag to compare
@github-actions github-actions released this 25 Jul 16:13
· 99 commits to main since this release
v0.14.0
573ab0b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Changelog for poutine v0.14.0 πŸš€

Also 😁

New Features 🌟

  • Azure DevOps Pipeline Support: Added full support for Azure DevOps Pipelines, including ADO Debug mode and "pwn request" detection, expanding the compatibility of poutine with various CI/CD platforms. (#160, #168, #169, #170)

Improvements πŸ”§

  • CVE Detection Enhancement: Improved GitHub Enterprise / Self-hosted GitLab CVE detection, including updates to the Build Platform CVE Database. (#140, #166)
  • Rules Configuration: Introduced rules configuration for pr_runs_on_self_hosted, providing more control over pull request executions on self-hosted runners. (#159)
  • Dagger Module: Introduced a new Dagger module for improved build and deployment workflows. (#154)
  • Version Handling: Readded version flags for GoReleaser to enhance the release process. (#153)
  • Analyze Command: Updated the analyze command to set PURL version with the provided reference for more accurate analysis. (#152)
  • Simplified Repo Parsing: Simplified the process of parsing repository files to improve efficiency and reliability. (#167)

Dependency Updates ⬆️

  • Open Policy Agent: Bumped github.com/open-policy-agent/opa from 0.65.0 to 0.66.0 for improved policy management. (#150)
  • OAuth2: Updated golang.org/x/oauth2 from 0.20.0 to 0.21.0 for better authentication support. (#149)
  • Progress Bar: Bumped github.com/schollz/progressbar/v3 from 3.14.3 to 3.14.4 to enhance progress tracking. (#147)
  • Dependency Review Action: Updated actions/dependency-review-action from 4.3.2 to 4.3.3 for enhanced dependency analysis. (#145)
  • Harden Runner: Bumped step-security/harden-runner from 2.7.1 to 2.8.1 for improved security during GitHub Actions. (#144)
  • Checkout Action: Updated actions/checkout from 4.1.4 to 4.1.7 for better repository access in workflows. (#142)
  • CodeQL Action: Bumped github/codeql-action from 3.25.7 to 3.25.11 for enhanced code analysis. (#141)
  • GitLab Client: Updated github.com/xanzy/go-gitlab from 0.105.0 to 0.106.0 for improved GitLab API interactions. (#148)

Release Process Changes πŸ”§

  • Dockerfile Addition: Added a Dockerfile and upgraded the Git image to streamline the containerization process. (#139)
  • MAINTAINERS.md Update: Removed @becojo from the MAINTAINERS.md file. (#162) 😒 😭 πŸ‘‹

Contributions 🀝

  • Thanks to all contributors for continuing to improve poutine, ensuring it remains a robust tool for securing CI pipelines.

Full Changelog πŸ“œ

For a detailed diff of everything new and updated, see the full changelog.

Assets 20
Loading