v1.5.1

1.5.1 (2024-11-01)

Features

• FoD: Add support for creating application through DO_SETUP (2d91e3c)
• FoD: Automatically set --app-owner if FOD_USER is configured (345ddda)
• FoD: Improve handling of --copy-from option in SETUP_EXTRA_OPTS (2d91e3c)
• Major documentation usability improvements (22ea8e9)
• Simplify setup of Debricked scans on FoD (7c25788)
• Update fcli to 2.9.0 (2d91e3c)
• Update ScanCentral Client to 24.4.0 (f3246ac)

Bug Fixes

• Improve parsing of boolean flags in *_EXTRA_OPTS (2d91e3c)
• Update Debricked CLI to 2.1.7 (2d91e3c)

v1.4.0

1.4.0 (2024-10-25)

Features

• SC-SAST: Add support for passing scan arguments through SC_SAST_SCAN_EXTRA_OPTS (1bb5d5b)

Bug Fixes

• FoD: Use Development as default value for --sdlc-status in SETUP_EXTRA_OPTS (1bb5d5b)
• FoD: Wait for new release to leave suspended state before attempting to start a scan (1bb5d5b)

v1.3.1

1.3.1 (2024-09-27)

Bug Fixes

• Update to fcli 2.7.1 to fix FoD job summary exception (6e269a5)

v1.3.0

1.3.0 (2024-09-25)

Features

• Add DO_POLICY_CHECK and related inputs to enable policy checks after scan completion (6ee342d)
• Add DO_PR_COMMENT and related inputs to enable Pull Request comment generation (6ee342d)
• Add DO_SETUP and related inputs to enable application version/release creation/setup (6ee342d)
• Add EXPORT_ACTION and EXPORT_EXTRA_OPTS inputs to allow for export customization (6ee342d)
• Add ability to run and import Debricked scans into SSC (closes #41) (6ee342d)
• Use fcli instead of FortifyVulnerabilityExporter for vulnerability export (closes #37) (6ee342d)

Bug Fixes

• Allow tool artifacts to be extracted on older PowerShell versions (work-around for actions/toolkit#1179) (6375519)
• Deprecate EXTRA_*_OPTS variables; these are replaced by *_EXTRA_OPTS variables for consistency (6ee342d)
• Install Java version as required by ScanCentral Client (closes #10) (6ee342d)
• Update FOD_RELEASE/SSC_APPVERSION documentation with correct default values (fixes #43) (6ee342d)

v1.2.2

1.2.2 (2024-03-11)

Bug Fixes

• Use github/codeql-action/upload-sarif@v3 to remove deprecation warning (15bc159)

v1.2.1

1.2.1 (2024-03-05)

Bug Fixes

• Fix ScanCentral SAST documentation link to point to right version (3b5cd8b)
• Update internal fcli version to honor GitHub proxy settings (3b5cd8b)

v1.2.0

1.2.0 (2024-02-05)

Features

• Add support for Debricked CLI on fortify/github-action/setup (2c7c1e7)
• Add support for updateable/customizable tool definitions (2c7c1e7)

Bug Fixes

• Fix documentation on ScanCentral SAST inputs (fixes #23) (3a20c7c)

v1.1.0

1.1.0 (2023-11-28)

Features

• Add support for fcli 2.1.0 (7aafc0e)

v1.0.4

1.0.4 (2023-11-28)

Bug Fixes

• Properly handle app/release/version names containing spaces (c04ac28)
• Use proper branch names / versions for sub-action invocations (d4eb955)

v1.0.3

1.0.3 (2023-11-14)

Bug Fixes

• Partial fix to use proper sub-action versions (7272d0d)