Releases: newrelic/csec-node-agent
v0.5.0
v0.5.0 (2023-11-17)
Features
- IAST support for NestJS framework (#118)
Bug Fixes
Miscellaneous chores
- Upgraded ws to v8.14.2 and updated initialization of websocket for v8.x. (#120)
- Upgraded check-disk-space to v3.4.0 (#121)
- Upgraded @aws-sdk/client-lambda to v3.436.0 (#127)
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.4.0
v0.4.0 (2023-10-27)
Features
- Added event stats for RASP, IAST and exit events in healthcheck. (#105)
Miscellaneous chores
- Deps: Updated uuid to v9.0.1 and @aws-sdk/client-lambda to v3.405.0 (#113)
- Upgraded axios to 1.6.0 to resolve CVE-2023-45857 (#115)
Continuous integration
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.3.0
v0.3.0 (2023-09-25)
Features
- Last leg acknowledgement in IAST scanning. (#87)
Bug Fixes
- Fix for mysql query params in security events. (#82)
- Logging update for default log level and status file flags. (#85)
- Update in IAST batch size processing. (#81)
- Disable instrumentation when security enabled flag is set to false (#80)
Miscellaneous Chores
- Readme update (#95)
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.2.1
v0.2.1 (2023-08-07)
Bug Fixes
- Pinned check-disk-space to v3.3.1 to support Node.js v14 (#75)
Miscellaneous Chores
- deps: Updated semver to v7.5.4 and @aws-sdk/client-lambda to v3.363.0 (#73)
Continuous Integration
- Add Node.js 20.x to CI (#72)
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.2.0
v0.2.0 (2023-07-24)
Features
- IAST data pull implementation(#63)
- New IAST informational messages in logs - start of URL and application trace analysis
- Feature to write logs to stdout
Bug Fixes
- Param fixes for mysql and file hooks(#66)
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.1.3
- Updated semver to v7.5.3 (Fix for CWE-1333)
- Updated request-ip, log4js, html-entities, uuid and fast-safe-stringify to latest version.
- Fix for system call event generation to avoid null parameters in event.
- Fix for id in nr-csec-tracing-data (#57)
- WS logging update (#58)
Support statement:
New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.
v0.1.2
- bump @aws-sdk/client-lambda to v3.348.0
- Minor fix in ws reconnect.
v0.1.1
v0.1.1
- Fix in mysql instrumentation on getConnection to check if callback is wrapped
- NR-123832: Support for fire and forget vulnerability detection
- Fixes for snapshot file.
- Handling for high_security config.
v0.1.0
- IAST support for windows.
- Handling to use OS specific path separator.
- Functionality to create security agent related directories in windows environment.
v0.0.8
- Handling for IP resolving to IPV4 as Node.js v17 and above no longer re-sorts results of IP address lookups and returns them as-is.
- Third Party Notices update
- Update in publish workflow