v0.4.3

What's Changed

• fix(deps): update module github.com/std-uritemplate/std-uritemplate/go to v0.0.55 by @renovate in #70
• feat: perform dictionnary attack against jwt with hmac alg by @emmanuelgautier in #71
• fix: validation operation properly before scanning url by @emmanuelgautier in #72
• fix: change the vulnapi ua by @emmanuelgautier in #73

Full Changelog: v0.4.2...v0.4.3

v0.4.2

What's Changed

• fix: crash when invalid jwt is filled in header by @emmanuelgautier in #62
• feat: add info severity by @emmanuelgautier in #67
• feat: use seclist for discoverable endpoints by @emmanuelgautier in #68
• fix: report when jwt is not verified by @emmanuelgautier in #69

Full Changelog: v0.4.1...v0.4.2

v0.4.1

What's Changed

• feat: skip jwt scan when there is not valid jwt input by @emmanuelgautier in #60
• feat: add some cli curl flags placeholder by @emmanuelgautier in #61

Full Changelog: v0.4.0...v0.4.1

v0.4.0

What's Changed

• fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by @renovate in #46
• fix(deps): update all non-major dependencies by @renovate in #44
• feat: scan for insecure cookies practices by @emmanuelgautier in #54
• feat: scan for discoverable openapi files by @emmanuelgautier in #55
• feat: scan for graphql introspection query by @emmanuelgautier in #56

Full Changelog: v0.3.1...v0.4.0

v0.3.1

What's Changed

• fix(deps): update module github.com/brianvoe/gofakeit/v6 to v7 by @renovate in #45
• refactor: make the structure easier to understand by @emmanuelgautier in #47
• feat: improve command output display by @emmanuelgautier in #48
• feat: allow scan without security scheme by @emmanuelgautier in #49
• feat: add table rendering output for openapi scan by @emmanuelgautier in #50
• Cli token generate by @emmanuelgautier in #51
• fix: remove false positive results and improve detection based on htt… by @emmanuelgautier in #52
• feat: add server signature scan by @emmanuelgautier in #53

Full Changelog: v0.3.0...v0.3.1

v0.3.0

What's Changed

• chore(deps): update codecov/codecov-action action to v4 by @renovate in #38
• chore(deps): update golang docker tag to v1.22 by @renovate in #41
• feat: add openapi scan support by @emmanuelgautier in #32
• feat: add http headers best practices scan by @emmanuelgautier in #42
• feat: add http trace method scan by @emmanuelgautier in #43

Full Changelog: v0.2.1...v0.3.0

v0.2.2

What's Changed

• Publish docker image on Docker Hub

Full Changelog: v0.2.1...v0.2.2

v0.2.1

What's Changed

• Publish docker image on Docker Hub
• Configure Mend Bolt for GitHub by @mend-bolt-for-github in #34
• fix(deps): update all non-major dependencies by @renovate in #35
• fix(deps): update module github.com/golang-jwt/jwt/v5 to v5.2.0 by @renovate in #36
• chore(deps): update actions/setup-go action to v5 by @renovate in #37

New Contributors

• @mend-bolt-for-github made their first contribution in #34
• @renovate made their first contribution in #35

Full Changelog: v0.2.0...v0.2.1

v0.2.0

What's Changed

• feat: new jwt null signature scan by @emmanuelgautier in #21
• feat: add scan reporter by @emmanuelgautier in #20

Full Changelog: v0.1.0...v0.2.0

v0.1.0

What's Changed

• feat: new scan cmd with not verified jwt by @emmanuelgautier in #11
• feat: scan for jwt with alg set to none by @emmanuelgautier in #12
• feat: add user agent by @emmanuelgautier in #17
• feat: scan jwt with blank secret by @emmanuelgautier in #19

New Contributors

• @emmanuelgautier made their first contribution in #11

Full Changelog: https://github.com/cerberauth/vulnapi/commits/v0.1.0