Releases of August 2022
New features and improvements
Status | Description |
|---|---|
Release of August 10 | |
NEW | You can now import projects from SCM repositories that require SSH authentication. The import supports both global and per project SSH keys. |
NEW | Feedback Apps can now be created for projects that are not imported from the SCM. This includes projects created in pipeline tools, such as Jenkins and GH Actions, or scans in Checkmarx One through ZIP files. |
NEW | When importing an SCM project, you can now opt for the ability to monitor future repositories created in your organization. |
NEW | Added support for GitLab and GitHub self-hosted servers for SCM integrations. |
NEW | Starting with this release, changing the name of a project that was imported from SCM Wizard is not allowed. |
CLI and Plugins Release of August 2022
During August, we released new versions of the CLI, containing important updates and improvements. We also released new plugin versions, containing additional improvements.
New CLI Versions
Version 2.0.26
Improvements and Bug Fixes
Status | Item | Description |
|---|---|---|
NEW | Decorating pull requests | We added a new pr command for decorating pull requests with results from Checkmarx One scans that were triggered by that pull request. The pull request comments show a list of new vulnerabilities that were introduced by the code changes as well a list of vulnerabilities that were fixed by the code changes. See pr NOTE This command is currently supported only for GitHub. |
UPDATED | Documentation links | All documentation links now point to the new Checkmarx documentation portal at https://checkmarx.com/resource/documentation. |
Version 2.0.25
Improvements and Bug Fixes
Status | Item | Description |
|---|---|---|
UPDATED | SCA Resolver error logs | When running SCA Resolver for a Checkmarx One scan, if SCA Resolver fails, detailed error logs from SCA Resolver are now shown in the CLI response. |
FIXED | Sonar output | Fixed issues caused by mistaken column numbering (i.e., 0 or negative values). |
Version 2.0.24
Improvements and Bug Fixes
Status | Item | Description |
|---|---|---|
UPDATED | SCA results | Added additional details to the SCA results. |
Version 2.0.23
Improvements and Bug Fixes
Status | Item | Description |
|---|---|---|
UPDATED | KICS remediation | For the KICS remediation utility, we added the option to remediate all vulnerabilities in the project. See kics |
UPDATED | SCA results | Added additional info to the SCA results, including the association between the vulnerabilities and the open-source packages to which they apply. |
FIXED | KICS error message | When running KICS commands, there is a requirement to have Docker running locally. We now have a dedicated error message for this issue. |
FIXED | Delete zip files | Accumulation of unneeded zip files had been causing issues in Jenkins. We now delete zip files that are no longer in use. |
CI/CD Plugins
In August we released the following CI/CD plugin versions.
IDE Plugins
In August we released the following IDE plugin versions:
Visual Studio Code - 2.0.8 (uses CLI 2.0.21)
Improvements and Bug Fixes
Status | Item | Platform | Description |
|---|---|---|---|
NEW | KICS quick fix | VS Code | We added a "Quick Fix" feature, enabling users to automatically apply remediation recommendations for KICS risks. There is an option to fix a specific risk or to fix all risks in a particular file or in the entire project. |