Main features

• Many many many bugfixes to enhance robustness in a productive environment
• First modules dealing with compliance, as this might become a even bigger part in the future
• Extended package QA
• Several fixes to increase the overall speed of execution

New

• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #894 - Ignore some cpplint entries by default - FEATURE REQUEST
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #930 - oelint add additonal features - FEATURE REQUEST
• #931 - console report shall report with a "clickable" path - FEATURE REQUEST
• #945 - String representation of datamodel should return full path of finding - FEATURE REQUEST
• #949 - flake8 functions plugin - FEATURE REQUEST,PYTHON
• #951 - Easy tool for extended package qa - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #985 - Try lc - COMPLIANCE,FEATURE REQUEST
• #999 - Move compliance related tools to new complicance group - COMPLIANCE,FEATURE REQUEST

Updates

• #1000 - Update eslint-plugin-unicorn to 17.2.0 - PACKAGE UPDATE
• #1001 - Update python3-pygments-native to 2.6.1 - PACKAGE UPDATE
• #1004 - Update mvdan.cc-editorconfig-native to 44790c7b343f4390136ed2831f11c67420a3362b - PACKAGE UPDATE
• #1005 - Update python3-wrapt-native to 1.12.1 - PACKAGE UPDATE
• #1007 - Update python3-oelint-adv-native to 1.15.6 - PACKAGE UPDATE
• #1008 - Update python3-click-native to 7.1.1 - PACKAGE UPDATE
• #1009 - Update python3-ddt-native to 1.3.0 - PACKAGE UPDATE
• #1010 - Update python3-oelint-adv-native to 1.15.7 - PACKAGE UPDATE
• #1011 - Update github.com-fsnotify-fsnotify-native to 1.4.9 - PACKAGE UPDATE
• #1012 - Update github.com-urfave-cli-native to 2.2.0 - PACKAGE UPDATE
• #1013 - Update python3-mypy-native to 0.770 - PACKAGE UPDATE
• #1014 - Update github.com-frankban-quicktest-native to 1.8.1 - PACKAGE UPDATE
• #1015 - Update github.com-golang-protobuf-native to 1.3.5 - PACKAGE UPDATE
• #1017 - Update python3-flake8-eradicate-native to 0.3.0 - PACKAGE UPDATE
• #1018 - Update python3-pytest-native to 5.4.0 - PACKAGE UPDATE
• #1019 - Update python3-flake8-broken-line-native to 0.2.0 - PACKAGE UPDATE
• #1020 - Update composer-native to dd82de6ec1fedb6df56ed1790ce7f8bbbaf802d8 - PACKAGE UPDATE
• #1021 - Update python3-pytest-native to 5.4.1 - PACKAGE UPDATE
• #1022 - Update python3-dparse-native to 0.5.0 - PACKAGE UPDATE
• #1023 - Update python3-flake8-builtins-native to 1.5.0 - PACKAGE UPDATE
• #1024 - Update standard-native to 14.3.3 - PACKAGE UPDATE
• #1025 - Update python3-configargparse-native to 1.1 - PACKAGE UPDATE
• #1026 - Update python3-flake8-annotations-complexity-native to 0.0.4 - PACKAGE UPDATE
• #1027 - Update python3-oelint-adv-native to 1.16.0 - PACKAGE UPDATE
• #1028 - Update python3-systemdlint-native to 1.1.9 - PACKAGE UPDATE
• #1032 - Update python3-oelint-adv-native to 1.16.1 - PACKAGE UPDATE
• #1034 - Update python3-flake8-builtins-native to 1.5.2 - PACKAGE UPDATE
• #1036 - Update python3-coverage-native to 5.0.4 - PACKAGE UPDATE
• #1037 - Update python3-flake8-isort-native to 2.9.0 - PACKAGE UPDATE
• #1038 - Update python3-mando-native to 0.7.0 - PACKAGE UPDATE
• #1039 - Update github.com-mozilla-tls-observatory-native to 4fa42e1c2dee78ceb2461d88221da37cf3738237 - PACKAGE UPDATE
• #1041 - Update python3-ddt-native to 1.3.1 - PACKAGE UPDATE
• #766 - Update python3-pyenchant-native to 3.0.1 - PACKAGE UPDATE
• #801 - Update cbmc-native to cbmc-5.12 - PACKAGE UPDATE
• #859 - Update composer-native to d2c7283f9a7df2db2ab64097a047aae780b8f6b7 - PACKAGE UPDATE
• #868 - Update github.com-kr-text-native to 0.2.0 - PACKAGE UPDATE
• #869 - Update stylelint-native to 13.2.1 - PACKAGE UPDATE
• #870 - Update sudokiller to 9f612e369dbd3c3539a7f13fffce994abe663670 - PACKAGE UPDATE
• #871 - Update proot-native to 6b9776f0fda9782142656c00ebfe2398be648da6 - PACKAGE UPDATE
• #872 - Update pyright-native to 1.1.28 - PACKAGE UPDATE
• #874 - Update textlint-rule-terminology to 2.1.3 - PACKAGE UPDATE
• #877 - Update phpstan-native to 0.12.17 - PACKAGE UPDATE
• #878 - Update python3-flake8-string-format-native to 0.3.0 - PACKAGE UPDATE
• #879 - Update python3-testfixtures-native to 6.14.0 - PACKAGE UPDATE
• #880 - Update python3-wrapt-native to 1.12.0 - PACKAGE UPDATE
• #886 - Update python3-gitpython-native to 3.1.0 - PACKAGE UPDATE
• #887 - Update python3-idna-native to 2.9 - PACKAGE UPDATE
• #888 - Update python3-flawfinder-native to 2.0.11 - PACKAGE UPDATE
• #889 - Update python3-oelint-adv-native to 1.14.1 - PACKAGE UPDATE
• #892 - Update github.com-stretchr-native to 1.5.1 - PACKAGE UPDATE
• #893 - Update nodejs-native to 12.16.1 - PACKAGE UPDATE
• #895 - Update ansible-konstruktoid-ansible-role-hardening to 624ba951ed95fb21b7d41a56eeb731d48e25a17a - PACKAGE UPDATE
• #896 - Update python3-flake8-dlint-native to 0.10.2 - PACKAGE UPDATE
• #897 - Update github.com-mozilla-tls-observatory-native to aae45faa4006575015d03f6ce1f1732c12d043d2 - PACKAGE UPDATE
• #898 - Update phan-native to 2.6.1 - PACKAGE UPDATE
• #900 - Update python3-pytype-native to 2020.2.20 - PACKAGE UPDATE
• #907 - Update python3-ropgadget-native to 6.2 - PACKAGE UPDATE
• #913 - Update github.com-mvdan-sh-native to 3.0.2 - PACKAGE UPDATE
• #918 - Update python3-gitdb-native to 4.0.2 - PACKAGE UPDATE
• #920 - Update oelint-adv to 1.14.2 - PACKAGE UPDATE
• #922 - Update phpmd-native to 2.8.2 - PACKAGE UPDATE
• #923 - Update python3-flake8-2020-native to 1.6.0 - PACKAGE UPDATE
• #928 - Update perl-ppix-quotelike-native to 0.009 - PACKAGE UPDATE
• #929 - Update perl-ppix-regexp-native to 0.070 - PACKAGE UPDATE
• #933 - Update python3-oelint-adv-native to 1.15.2 - PACKAGE UPDATE
• #934 - Update github.com-golang-protobuf-native to 1.3.4 - PACKAGE UPDATE
• #935 - Update ruby-parser-native to 2.7.0.3 - PACKAGE UPDATE
• #938 - Update python3-oelint-adv-native to 1.15.3 - PACKAGE UPDATE
• #939 - Update github.com-go-check-check-native to 8fa46927fb4f5b54d48bde78c6c08db205b2298c - PACKAGE UPDATE
• #941 - Update progpilot-native to 0.7.0 - PACKAGE UPDATE
• #946 - Update github.com-mattn-go-colorable-native to 0.1.6 - PACKAGE UPDATE
• #950 - Update python3-decorator-native to 4.4.2 - PACKAGE UPDATE
• #975 - Update perl-test-deep-native to 1.130 - PACKAGE UPDATE
• #976 - Update sudokiller to c24882d0d5eaaab6ab199e2ba86ebefd300a9456 - PACKAGE UPDATE
• #982 - Update ruby-parser-native to 2.7.0.4 - PACKAGE UPDATE
• #986 - Update github.com-mozilla-tls-observatory-native to 406508670b4528643abf6c33e19e85f2fd0ad637 - PACKAGE UPDATE
• #987 - Update python3-bashate-native to 2.0.0 - PACKAGE UPDATE
• #988 - Update python3-pycparser-native to 2.20 - PACKAGE UPDATE
• #990 - Update python3-ansible to 2.9.6 - PACKAGE UPDATE
• #991 - Update python3-packaging-native to 20.3 - PACKAGE UPDATE
• #992 - Update python3-oelint-adv-native to 1.15.4 - PACKAGE UPDATE
• #993 - Update ansible-konstruktoid-ansible-role-hardening to 19cd4a8821289f009b652eb6062d81c309c0d0d3 - PACKAGE UPDATE
• #994 - Update python3-systemdlint-native to 1.1.8 - PACKAGE UPDATE
• #997 - Update python3-darglint-native to 1.2.0 - PACKAGE UPDATE

Bugfixes

• #1006 - oelint: false positive oelint.oelint_var_mandatoryvar SCR_URI for image recipe - BUG
• #1030 - setuptools-lint does not work - BUG
• #1035 - cppcheck options not making sense? - BUG
• #1042 - cve_check function are crashing in zeus - BUG
• #876 - luacheck doesn't report line - it's always 1 - BUG
• #881 - vulture file path report is wrong - BUG
• #901 - kconfighard doesn't export any sources - BUG
• #902 - export path of gixy is wrong - BUG
• #903 - vulture export paths are wrong - BUG
• #904 - flake8 throws 'DAR' warning - BUG
• #905 - File from patch storage .pc are checked - BUG
• #906 - WARNING: k8s.io-klog-native-1.0.0-r0 do_populate_lic: k8s.io-klog-native: No generic license file exists for: APACHE-2.0 in any provider - BUG
• #908 - Wrong export path for ansiblelint - BUG
• #909 - darglint export is broken - BUG
• #911 - pytype export is broken - BUG
• #912 - ropgadget export is broken - BUG
• #915 - Phan output is still broken - BUG
• #916 - ansiblelint shows strange filenames in output - BUG
• #917 - ropgadget doesn't find any input files - BUG
• #924 - python3-anytree-native needs python3-six - BUG
• #925 - global INHERIT += "sca" doesn't work for packagegroups - BUG
• #927 - spare layer detection doesn't work when workspace was setup with rel paths - BUG
• #932 - If pythonnative is inherited by the recipe sca-layer breaks things - BUG
• #936 - Latest change to spare layer feature is broken - BUG
• #937 - sca_get_layer_path_for_file doesn't work with relative paths - BUG
• #943 - Fatal entries aren't working - BUG
• #944 - e.g. ${bindir} in finding message is expanded in datamodel - BUG
• #947 - Fix issue from #943 - BUG
• #973 - pkgqaenc module is missing in README - DOCUMENTATION,BUG
• #977 - pkgqaenc has issues with nested directories - BUG
• #983 - False positive warning from pkgqaenc - BUG
• #989 - sca_get_layer_path_for_file does return wrong path - BUG
• #995 - pkgqaenc bugs - BUG

Misc

• #1002 - Enhance licensecheck - COMPLIANCE,ENHANCEMENT
• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #1033 - Fix coding issues found by LGTM - ENHANCEMENT
• #875 - cpplint multi-process - ENHANCEMENT
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #996 - Fix upstream check for github.com-tealeg-xlsx-native - ENHANCEMENT

Thanks

@fmartinsons, Oleksandr Pozniak, @ravingraven

Main features

• Many many many bugfixes to enhance robustness in a productive environment
• First modules dealing with compliance, as this might become a even bigger part in the future
• Extended package QA
• Several fixes to increase the overall speed of execution
• NOTE this is going to be the last but one release for thud.
  Please consider updating to a more recent YOCTO version, or contact me if you're willing to take the maintainership for thud

New

• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #894 - Ignore some cpplint entries by default - FEATURE REQUEST
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #930 - oelint add additonal features - FEATURE REQUEST
• #931 - console report shall report with a "clickable" path - FEATURE REQUEST
• #945 - String representation of datamodel should return full path of finding - FEATURE REQUEST
• #949 - flake8 functions plugin - FEATURE REQUEST,PYTHON
• #951 - Easy tool for extended package qa - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #985 - Try lc - COMPLIANCE,FEATURE REQUEST
• #999 - Move compliance related tools to new complicance group - COMPLIANCE,FEATURE REQUEST

Updates

• #1000 - Update eslint-plugin-unicorn to 17.2.0 - PACKAGE UPDATE
• #1001 - Update python3-pygments-native to 2.6.1 - PACKAGE UPDATE
• #1004 - Update mvdan.cc-editorconfig-native to 44790c7b343f4390136ed2831f11c67420a3362b - PACKAGE UPDATE
• #1005 - Update python3-wrapt-native to 1.12.1 - PACKAGE UPDATE
• #1007 - Update python3-oelint-adv-native to 1.15.6 - PACKAGE UPDATE
• #1008 - Update python3-click-native to 7.1.1 - PACKAGE UPDATE
• #1009 - Update python3-ddt-native to 1.3.0 - PACKAGE UPDATE
• #1010 - Update python3-oelint-adv-native to 1.15.7 - PACKAGE UPDATE
• #1011 - Update github.com-fsnotify-fsnotify-native to 1.4.9 - PACKAGE UPDATE
• #1012 - Update github.com-urfave-cli-native to 2.2.0 - PACKAGE UPDATE
• #1013 - Update python3-mypy-native to 0.770 - PACKAGE UPDATE
• #1014 - Update github.com-frankban-quicktest-native to 1.8.1 - PACKAGE UPDATE
• #1015 - Update github.com-golang-protobuf-native to 1.3.5 - PACKAGE UPDATE
• #1017 - Update python3-flake8-eradicate-native to 0.3.0 - PACKAGE UPDATE
• #1018 - Update python3-pytest-native to 5.4.0 - PACKAGE UPDATE
• #1019 - Update python3-flake8-broken-line-native to 0.2.0 - PACKAGE UPDATE
• #1020 - Update composer-native to dd82de6ec1fedb6df56ed1790ce7f8bbbaf802d8 - PACKAGE UPDATE
• #1021 - Update python3-pytest-native to 5.4.1 - PACKAGE UPDATE
• #1022 - Update python3-dparse-native to 0.5.0 - PACKAGE UPDATE
• #1023 - Update python3-flake8-builtins-native to 1.5.0 - PACKAGE UPDATE
• #1024 - Update standard-native to 14.3.3 - PACKAGE UPDATE
• #1025 - Update python3-configargparse-native to 1.1 - PACKAGE UPDATE
• #1027 - Update python3-oelint-adv-native to 1.16.0 - PACKAGE UPDATE
• #1028 - Update python3-systemdlint-native to 1.1.9 - PACKAGE UPDATE
• #1032 - Update python3-oelint-adv-native to 1.16.1 - PACKAGE UPDATE
• #1034 - Update python3-flake8-builtins-native to 1.5.2 - PACKAGE UPDATE
• #1036 - Update python3-coverage-native to 5.0.4 - PACKAGE UPDATE
• #1037 - Update python3-flake8-isort-native to 2.9.0 - PACKAGE UPDATE
• #1038 - Update python3-mando-native to 0.7.0 - PACKAGE UPDATE
• #1039 - Update github.com-mozilla-tls-observatory-native to 4fa42e1c2dee78ceb2461d88221da37cf3738237 - PACKAGE UPDATE
• #1041 - Update python3-ddt-native to 1.3.1 - PACKAGE UPDATE
• #766 - Update python3-pyenchant-native to 3.0.1 - PACKAGE UPDATE
• #801 - Update cbmc-native to cbmc-5.12 - PACKAGE UPDATE
• #859 - Update composer-native to d2c7283f9a7df2db2ab64097a047aae780b8f6b7 - PACKAGE UPDATE
• #868 - Update github.com-kr-text-native to 0.2.0 - PACKAGE UPDATE
• #869 - Update stylelint-native to 13.2.1 - PACKAGE UPDATE
• #870 - Update sudokiller to 9f612e369dbd3c3539a7f13fffce994abe663670 - PACKAGE UPDATE
• #871 - Update proot-native to 6b9776f0fda9782142656c00ebfe2398be648da6 - PACKAGE UPDATE
• #872 - Update pyright-native to 1.1.28 - PACKAGE UPDATE
• #874 - Update textlint-rule-terminology to 2.1.3 - PACKAGE UPDATE
• #877 - Update phpstan-native to 0.12.17 - PACKAGE UPDATE
• #878 - Update python3-flake8-string-format-native to 0.3.0 - PACKAGE UPDATE
• #879 - Update python3-testfixtures-native to 6.14.0 - PACKAGE UPDATE
• #880 - Update python3-wrapt-native to 1.12.0 - PACKAGE UPDATE
• #886 - Update python3-gitpython-native to 3.1.0 - PACKAGE UPDATE
• #887 - Update python3-idna-native to 2.9 - PACKAGE UPDATE
• #888 - Update python3-flawfinder-native to 2.0.11 - PACKAGE UPDATE
• #889 - Update python3-oelint-adv-native to 1.14.1 - PACKAGE UPDATE
• #892 - Update github.com-stretchr-native to 1.5.1 - PACKAGE UPDATE
• #895 - Update ansible-konstruktoid-ansible-role-hardening to 624ba951ed95fb21b7d41a56eeb731d48e25a17a - PACKAGE UPDATE
• #896 - Update python3-flake8-dlint-native to 0.10.2 - PACKAGE UPDATE
• #897 - Update github.com-mozilla-tls-observatory-native to aae45faa4006575015d03f6ce1f1732c12d043d2 - PACKAGE UPDATE
• #898 - Update phan-native to 2.6.1 - PACKAGE UPDATE
• #907 - Update python3-ropgadget-native to 6.2 - PACKAGE UPDATE
• #913 - Update github.com-mvdan-sh-native to 3.0.2 - PACKAGE UPDATE
• #918 - Update python3-gitdb-native to 4.0.2 - PACKAGE UPDATE
• #920 - Update oelint-adv to 1.14.2 - PACKAGE UPDATE
• #922 - Update phpmd-native to 2.8.2 - PACKAGE UPDATE
• #923 - Update python3-flake8-2020-native to 1.6.0 - PACKAGE UPDATE
• #928 - Update perl-ppix-quotelike-native to 0.009 - PACKAGE UPDATE
• #929 - Update perl-ppix-regexp-native to 0.070 - PACKAGE UPDATE
• #933 - Update python3-oelint-adv-native to 1.15.2 - PACKAGE UPDATE
• #934 - Update github.com-golang-protobuf-native to 1.3.4 - PACKAGE UPDATE
• #935 - Update ruby-parser-native to 2.7.0.3 - PACKAGE UPDATE
• #938 - Update python3-oelint-adv-native to 1.15.3 - PACKAGE UPDATE
• #939 - Update github.com-go-check-check-native to 8fa46927fb4f5b54d48bde78c6c08db205b2298c - PACKAGE UPDATE
• #941 - Update progpilot-native to 0.7.0 - PACKAGE UPDATE
• #946 - Update github.com-mattn-go-colorable-native to 0.1.6 - PACKAGE UPDATE
• #950 - Update python3-decorator-native to 4.4.2 - PACKAGE UPDATE
• #975 - Update perl-test-deep-native to 1.130 - PACKAGE UPDATE
• #976 - Update sudokiller to c24882d0d5eaaab6ab199e2ba86ebefd300a9456 - PACKAGE UPDATE
• #982 - Update ruby-parser-native to 2.7.0.4 - PACKAGE UPDATE
• #986 - Update github.com-mozilla-tls-observatory-native to 406508670b4528643abf6c33e19e85f2fd0ad637 - PACKAGE UPDATE
• #987 - Update python3-bashate-native to 2.0.0 - PACKAGE UPDATE
• #988 - Update python3-pycparser-native to 2.20 - PACKAGE UPDATE
• #990 - Update python3-ansible to 2.9.6 - PACKAGE UPDATE
• #991 - Update python3-packaging-native to 20.3 - PACKAGE UPDATE
• #992 - Update python3-oelint-adv-native to 1.15.4 - PACKAGE UPDATE
• #993 - Update ansible-konstruktoid-ansible-role-hardening to 19cd4a8821289f009b652eb6062d81c309c0d0d3 - PACKAGE UPDATE
• #994 - Update python3-systemdlint-native to 1.1.8 - PACKAGE UPDATE
• #997 - Update python3-darglint-native to 1.2.0 - PACKAGE UPDATE

Bugfixes

• #1006 - oelint: false positive oelint.oelint_var_mandatoryvar SCR_URI for image recipe - BUG
• #1029 - [thud] annotation-complexity flake8 plugin doesn't work with thud - BUG
• #1030 - setuptools-lint does not work - BUG
• #1035 - cppcheck options not making sense? - BUG
• #1043 - [thud] ikos fails to compile - BUG
• #876 - luacheck doesn't report line - it's always 1 - BUG
• #881 - vulture file path report is wrong - BUG
• #901 - kconfighard doesn't export any sources - BUG
• #902 - export path of gixy is wrong - BUG
• #903 - vulture export paths are wrong - BUG
• #904 - flake8 throws 'DAR' warning - BUG
• #905 - File from patch storage .pc are checked - BUG
• #906 - WARNING: k8s.io-klog-native-1.0.0-r0 do_populate_lic: k8s.io-klog-native: No generic license file exists for: APACHE-2.0 in any provider - BUG
• #908 - Wrong export path for ansiblelint - BUG
• #909 - darglint export is broken - BUG
• #911 - pytype export is broken - BUG
• #912 - ropgadget export is broken - BUG
• #915 - Phan output is still broken - BUG
• #916 - ansiblelint shows strange filenames in output - BUG
• #917 - ropgadget doesn't find any input files - BUG
• #924 - python3-anytree-native needs python3-six - BUG
• #925 - global INHERIT += "sca" doesn't work for packagegroups - BUG
• #927 - spare layer detection doesn't work when workspace was setup with rel paths - BUG
• #932 - If pythonnative is inherited by the recipe sca-layer breaks things - BUG
• #936 - Latest change to spare layer feature is broken - BUG
• #937 - sca_get_layer_path_for_file doesn't work with relative paths - BUG
• #943 - Fatal entries aren't working - BUG
• #944 - e.g. ${bindir} in finding message is expanded in datamodel - BUG
• #947 - Fix issue from #943 - BUG
• #973 - pkgqaenc module is missing in README - DOCUMENTATION,BUG
• #977 - pkgqaenc has issues with nested directories - BUG
• #980 - Latest pytype update doesn't work with thud - BUG
• #983 - False positive warning from pkgqaenc - BUG
• #989 - sca_get_layer_path_for_file does return wrong path - BUG
• #995 - pkgqaenc bugs - BUG

Misc

• #1002 - Enhance licensecheck - COMPLIANCE,ENHANCEMENT
• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #1033 - Fix coding issues found by LGTM - ENHANCEMENT
• #875 - cpplint multi-process - ENHANCEMENT
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #996 - Fix upstream check for github.com-tealeg-xlsx-native - ENHANCEMENT

Thanks

@fmartinsons, Oleksandr Pozniak, @ravingraven

Main features

• Many many many bugfixes to enhance robustness in a productive environment
• First modules dealing with compliance, as this might become a even bigger part in the future
• Extended package QA
• Several fixes to increase the overall speed of execution
• dunfell compatibility

New

• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #1040 - Set dunfell compat in master and staging - FEATURE REQUEST
• #894 - Ignore some cpplint entries by default - FEATURE REQUEST
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #930 - oelint add additonal features - FEATURE REQUEST
• #931 - console report shall report with a "clickable" path - FEATURE REQUEST
• #945 - String representation of datamodel should return full path of finding - FEATURE REQUEST
• #949 - flake8 functions plugin - FEATURE REQUEST,PYTHON
• #951 - Easy tool for extended package qa - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #985 - Try lc - COMPLIANCE,FEATURE REQUEST
• #999 - Move compliance related tools to new complicance group - COMPLIANCE,FEATURE REQUEST

Updates

• #1000 - Update eslint-plugin-unicorn to 17.2.0 - PACKAGE UPDATE
• #1001 - Update python3-pygments-native to 2.6.1 - PACKAGE UPDATE
• #1004 - Update mvdan.cc-editorconfig-native to 44790c7b343f4390136ed2831f11c67420a3362b - PACKAGE UPDATE
• #1005 - Update python3-wrapt-native to 1.12.1 - PACKAGE UPDATE
• #1007 - Update python3-oelint-adv-native to 1.15.6 - PACKAGE UPDATE
• #1008 - Update python3-click-native to 7.1.1 - PACKAGE UPDATE
• #1009 - Update python3-ddt-native to 1.3.0 - PACKAGE UPDATE
• #1010 - Update python3-oelint-adv-native to 1.15.7 - PACKAGE UPDATE
• #1011 - Update github.com-fsnotify-fsnotify-native to 1.4.9 - PACKAGE UPDATE
• #1012 - Update github.com-urfave-cli-native to 2.2.0 - PACKAGE UPDATE
• #1013 - Update python3-mypy-native to 0.770 - PACKAGE UPDATE
• #1014 - Update github.com-frankban-quicktest-native to 1.8.1 - PACKAGE UPDATE
• #1015 - Update github.com-golang-protobuf-native to 1.3.5 - PACKAGE UPDATE
• #1017 - Update python3-flake8-eradicate-native to 0.3.0 - PACKAGE UPDATE
• #1018 - Update python3-pytest-native to 5.4.0 - PACKAGE UPDATE
• #1019 - Update python3-flake8-broken-line-native to 0.2.0 - PACKAGE UPDATE
• #1020 - Update composer-native to dd82de6ec1fedb6df56ed1790ce7f8bbbaf802d8 - PACKAGE UPDATE
• #1021 - Update python3-pytest-native to 5.4.1 - PACKAGE UPDATE
• #1022 - Update python3-dparse-native to 0.5.0 - PACKAGE UPDATE
• #1023 - Update python3-flake8-builtins-native to 1.5.0 - PACKAGE UPDATE
• #1024 - Update standard-native to 14.3.3 - PACKAGE UPDATE
• #1025 - Update python3-configargparse-native to 1.1 - PACKAGE UPDATE
• #1026 - Update python3-flake8-annotations-complexity-native to 0.0.4 - PACKAGE UPDATE
• #1027 - Update python3-oelint-adv-native to 1.16.0 - PACKAGE UPDATE
• #1028 - Update python3-systemdlint-native to 1.1.9 - PACKAGE UPDATE
• #1032 - Update python3-oelint-adv-native to 1.16.1 - PACKAGE UPDATE
• #1034 - Update python3-flake8-builtins-native to 1.5.2 - PACKAGE UPDATE
• #1036 - Update python3-coverage-native to 5.0.4 - PACKAGE UPDATE
• #1037 - Update python3-flake8-isort-native to 2.9.0 - PACKAGE UPDATE
• #1038 - Update python3-mando-native to 0.7.0 - PACKAGE UPDATE
• #1039 - Update github.com-mozilla-tls-observatory-native to 4fa42e1c2dee78ceb2461d88221da37cf3738237 - PACKAGE UPDATE
• #1041 - Update python3-ddt-native to 1.3.1 - PACKAGE UPDATE
• #766 - Update python3-pyenchant-native to 3.0.1 - PACKAGE UPDATE
• #801 - Update cbmc-native to cbmc-5.12 - PACKAGE UPDATE
• #859 - Update composer-native to d2c7283f9a7df2db2ab64097a047aae780b8f6b7 - PACKAGE UPDATE
• #868 - Update github.com-kr-text-native to 0.2.0 - PACKAGE UPDATE
• #869 - Update stylelint-native to 13.2.1 - PACKAGE UPDATE
• #870 - Update sudokiller to 9f612e369dbd3c3539a7f13fffce994abe663670 - PACKAGE UPDATE
• #871 - Update proot-native to 6b9776f0fda9782142656c00ebfe2398be648da6 - PACKAGE UPDATE
• #872 - Update pyright-native to 1.1.28 - PACKAGE UPDATE
• #874 - Update textlint-rule-terminology to 2.1.3 - PACKAGE UPDATE
• #877 - Update phpstan-native to 0.12.17 - PACKAGE UPDATE
• #878 - Update python3-flake8-string-format-native to 0.3.0 - PACKAGE UPDATE
• #879 - Update python3-testfixtures-native to 6.14.0 - PACKAGE UPDATE
• #880 - Update python3-wrapt-native to 1.12.0 - PACKAGE UPDATE
• #886 - Update python3-gitpython-native to 3.1.0 - PACKAGE UPDATE
• #887 - Update python3-idna-native to 2.9 - PACKAGE UPDATE
• #888 - Update python3-flawfinder-native to 2.0.11 - PACKAGE UPDATE
• #889 - Update python3-oelint-adv-native to 1.14.1 - PACKAGE UPDATE
• #892 - Update github.com-stretchr-native to 1.5.1 - PACKAGE UPDATE
• #893 - Update nodejs-native to 12.16.1 - PACKAGE UPDATE
• #895 - Update ansible-konstruktoid-ansible-role-hardening to 624ba951ed95fb21b7d41a56eeb731d48e25a17a - PACKAGE UPDATE
• #896 - Update python3-flake8-dlint-native to 0.10.2 - PACKAGE UPDATE
• #897 - Update github.com-mozilla-tls-observatory-native to aae45faa4006575015d03f6ce1f1732c12d043d2 - PACKAGE UPDATE
• #898 - Update phan-native to 2.6.1 - PACKAGE UPDATE
• #900 - Update python3-pytype-native to 2020.2.20 - PACKAGE UPDATE
• #907 - Update python3-ropgadget-native to 6.2 - PACKAGE UPDATE
• #913 - Update github.com-mvdan-sh-native to 3.0.2 - PACKAGE UPDATE
• #918 - Update python3-gitdb-native to 4.0.2 - PACKAGE UPDATE
• #920 - Update oelint-adv to 1.14.2 - PACKAGE UPDATE
• #922 - Update phpmd-native to 2.8.2 - PACKAGE UPDATE
• #923 - Update python3-flake8-2020-native to 1.6.0 - PACKAGE UPDATE
• #928 - Update perl-ppix-quotelike-native to 0.009 - PACKAGE UPDATE
• #929 - Update perl-ppix-regexp-native to 0.070 - PACKAGE UPDATE
• #933 - Update python3-oelint-adv-native to 1.15.2 - PACKAGE UPDATE
• #934 - Update github.com-golang-protobuf-native to 1.3.4 - PACKAGE UPDATE
• #935 - Update ruby-parser-native to 2.7.0.3 - PACKAGE UPDATE
• #938 - Update python3-oelint-adv-native to 1.15.3 - PACKAGE UPDATE
• #939 - Update github.com-go-check-check-native to 8fa46927fb4f5b54d48bde78c6c08db205b2298c - PACKAGE UPDATE
• #941 - Update progpilot-native to 0.7.0 - PACKAGE UPDATE
• #946 - Update github.com-mattn-go-colorable-native to 0.1.6 - PACKAGE UPDATE
• #950 - Update python3-decorator-native to 4.4.2 - PACKAGE UPDATE
• #975 - Update perl-test-deep-native to 1.130 - PACKAGE UPDATE
• #976 - Update sudokiller to c24882d0d5eaaab6ab199e2ba86ebefd300a9456 - PACKAGE UPDATE
• #982 - Update ruby-parser-native to 2.7.0.4 - PACKAGE UPDATE
• #986 - Update github.com-mozilla-tls-observatory-native to 406508670b4528643abf6c33e19e85f2fd0ad637 - PACKAGE UPDATE
• #987 - Update python3-bashate-native to 2.0.0 - PACKAGE UPDATE
• #988 - Update python3-pycparser-native to 2.20 - PACKAGE UPDATE
• #990 - Update python3-ansible to 2.9.6 - PACKAGE UPDATE
• #991 - Update python3-packaging-native to 20.3 - PACKAGE UPDATE
• #992 - Update python3-oelint-adv-native to 1.15.4 - PACKAGE UPDATE
• #993 - Update ansible-konstruktoid-ansible-role-hardening to 19cd4a8821289f009b652eb6062d81c309c0d0d3 - PACKAGE UPDATE
• #994 - Update python3-systemdlint-native to 1.1.8 - PACKAGE UPDATE
• #997 - Update python3-darglint-native to 1.2.0 - PACKAGE UPDATE

Bugfixes

• #1006 - oelint: false positive oelint.oelint_var_mandatoryvar SCR_URI for image recipe - BUG
• #1030 - setuptools-lint does not work - BUG
• #1035 - cppcheck options not making sense? - BUG
• #876 - luacheck doesn't report line - it's always 1 - BUG
• #881 - vulture file path report is wrong - BUG
• #901 - kconfighard doesn't export any sources - BUG
• #902 - export path of gixy is wrong - BUG
• #903 - vulture export paths are wrong - BUG
• #904 - flake8 throws 'DAR' warning - BUG
• #905 - File from patch storage .pc are checked - BUG
• #906 - WARNING: k8s.io-klog-native-1.0.0-r0 do_populate_lic: k8s.io-klog-native: No generic license file exists for: APACHE-2.0 in any provider - BUG
• #908 - Wrong export path for ansiblelint - BUG
• #909 - darglint export is broken - BUG
• #911 - pytype export is broken - BUG
• #912 - ropgadget export is broken - BUG
• #915 - Phan output is still broken - BUG
• #916 - ansiblelint shows strange filenames in output - BUG
• #917 - ropgadget doesn't find any input files - BUG
• #924 - python3-anytree-native needs python3-six - BUG
• #925 - global INHERIT += "sca" doesn't work for packagegroups - BUG
• #927 - spare layer detection doesn't work when workspace was setup with rel paths - BUG
• #932 - If pythonnative is inherited by the recipe sca-layer breaks things - BUG
• #936 - Latest change to spare layer feature is broken - BUG
• #937 - sca_get_layer_path_for_file doesn't work with relative paths - BUG
• #943 - Fatal entries aren't working - BUG
• #944 - e.g. ${bindir} in finding message is expanded in datamodel - BUG
• #947 - Fix issue from #943 - BUG
• #973 - pkgqaenc module is missing in README - DOCUMENTATION,BUG
• #977 - pkgqaenc has issues with nested directories - BUG
• #983 - False positive warning from pkgqaenc - BUG
• #989 - sca_get_layer_path_for_file does return wrong path - BUG
• #995 - pkgqaenc bugs - BUG
• #998 - cvecheck internally used function changed in upstream - BUG

Misc

• #1002 - Enhance licensecheck - COMPLIANCE,ENHANCEMENT
• #1003 - Disable licensecheck by default - FEATURE REQUEST,ENHANCEMENT
• #1033 - Fix coding issues found by LGTM - ENHANCEMENT
• #875 - cpplint multi-process - ENHANCEMENT
• #890 - Disable diskcheck in CI - CI,ENHANCEMENT
• #899 - Easy method to exclude layer/dirs from SCA - FEATURE REQUEST,ENHANCEMENT
• #919 - CI improvements - CI,ENHANCEMENT
• #996 - Fix upstream check for github.com-tealeg-xlsx-native - ENHANCEMENT

Thanks

@fmartinsons, Oleksandr Pozniak, @ravingraven

Main features

• Several security related tools
• Diff mode (see #655)
• Complete package refresh
• a lot of improvements in all areas

New

• #493 - Use multimetric for ruby code - FEATURE REQUEST,RUBY
• #655 - Present only new items - FEATURE REQUEST
• #657 - If result test fails show the raw content of the tool - CI,FEATURE REQUEST
• #660 - Improve exec speed of proselint - FEATURE REQUEST
• #682 - Add a note that at least python 3.5 is required as a host-tool - DOCUMENTATION,FEATURE REQUEST
• #687 - Eval reconbf - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #691 - Use ansible for hardening roles - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #717 - Try sudo_killer - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #726 - Add code climate compatible output - FEATURE REQUEST
• #743 - Set correct upstream check settings for various packages - CI,FEATURE REQUEST
• #777 - add UPSTREAM_CHECK_COMMITS to non-tag git repos - CI,FEATURE REQUEST

Updates

• #527 - Update nodejs-native to 10.18.1 - PACKAGE UPDATE
• #551 - Update pyright to 1.1.19 - PACKAGE UPDATE
• #552 - Update revive to 1.0.1 - PACKAGE UPDATE
• #554 - Update phan to 2.4.6 - PACKAGE UPDATE
• #555 - Update python-configargparse to 1.0 - PACKAGE UPDATE
• #560 - Update eslint-plugin-vue to 6.1.2 - PACKAGE UPDATE
• #562 - Update python-babel to 2.8.0 - PACKAGE UPDATE
• #563 - Update checkbashism-native to 2.19.7 - PACKAGE UPDATE
• #564 - Update perl-b-keywords-native to 1.21 - PACKAGE UPDATE
• #565 - Update python-cffi-native to 1.13.2 - PACKAGE UPDATE
• #567 - Update sparse to 0.6.1 - PACKAGE UPDATE
• #568 - Update kconfig-hardened-check to 0.5.3 - PACKAGE UPDATE
• #569 - Update multimetric to 1.1.1 - PACKAGE UPDATE
• #570 - Update systemdlint to 1.1.6 - PACKAGE UPDATE
• #574 - Update python-wcwidth to 0.1.8 - PACKAGE UPDATE
• #575 - Update github.com-fatih-color to 1.9.0 - PACKAGE UPDATE
• #587 - Update python3-asn1crypto-native to 1.3.0 - PACKAGE UPDATE
• #588 - Update python3-astroids-native to 2.3.3 - PACKAGE UPDATE
• #589 - Update python3-attrs-native to 19.3.0 - PACKAGE UPDATE
• #590 - Update python3-bcrypt-native to 3.1.7 - PACKAGE UPDATE
• #591 - Update python3-certifi-native to 2019.11.28 - PACKAGE UPDATE
• #593 - Update python3-colorama-native to 0.4.3 - PACKAGE UPDATE
• #594 - Update python3-coverage-native to 5.0.1 - PACKAGE UPDATE
• #595 - Update python3-cryptography-native to 2.8 - PACKAGE UPDATE
• #596 - Update python3-darglint-native to 1.0.0 - PACKAGE UPDATE
• #597 - Update python3-decorator-native to 4.4.1 - PACKAGE UPDATE
• #598 - Update python3-detect-secrets-native to 0.13.0 - PACKAGE UPDATE
• #600 - Update python3-enum-compat-native to 0.0.3 - PACKAGE UPDATE
• #602 - Update python3-flake8-builtins-native to 1.4.2 - PACKAGE UPDATE
• #603 - Update python3-flake8-comprehensions-native to 3.1.4 - PACKAGE UPDATE
• #617 - Update python3-mypy-native to 0.761 - PACKAGE UPDATE
• #629 - Update python3-pylint-native to 2.4.4 - PACKAGE UPDATE
• #631 - Update python3-pytype-native to 2019.12.17 - PACKAGE UPDATE
• #634 - Update python3-setuptools-lint-native to 0.6.0 - PACKAGE UPDATE
• #642 - Update python3-yamllint-native to 1.20.0 - PACKAGE UPDATE
• #648 - Update python3-astor-native to 0.8.1 - PACKAGE UPDATE
• #651 - Update python3-packaging-native to 20.0 - PACKAGE UPDATE
• #652 - Update phpstan to 0.12.4 - PACKAGE UPDATE
• #653 - Update textlint to 11.6.1 - PACKAGE UPDATE
• #661 - Update github.com-mvdan-sh-native to 3.0.1 - PACKAGE UPDATE
• #664 - Update python-mypy-extensions-native to 0.4.3 - PACKAGE UPDATE
• #668 - Update python-more-itertools-native to 8.1.0 - PACKAGE UPDATE
• #669 - Update styelint to 13.0.0 - PACKAGE UPDATE
• #670 - Update phpstan to 0.12.6 - PACKAGE UPDATE
• #672 - Update perl-perl-tidy-native to 20200110 - PACKAGE UPDATE
• #673 - Update perl-term-ansicolor-native to 5.00 - PACKAGE UPDATE
• #674 - Update python3-pydocstyle-native to 5.0.2 - PACKAGE UPDATE
• #675 - Update python3-pytype-native to 2020.1.8 - PACKAGE UPDATE
• #676 - Update python3-pyyaml-native to 5.3 - PACKAGE UPDATE
• #677 - Update pyright to 1.1.21 - PACKAGE UPDATE
• #678 - Update jshint to 2.11.0 - PACKAGE UPDATE
• #680 - Update textlint-rule-stop-words to 2.0.0 - PACKAGE UPDATE
• #681 - Update php-composer to 1.9.2 - PACKAGE UPDATE
• #685 - Update python3-anytree to 2.8.0 - PACKAGE UPDATE
• #689 - Update python-pytest to 5.3.4 - PACKAGE UPDATE
• #695 - Update ropgadget to 6.0 - PACKAGE UPDATE
• #697 - Update phan to 2.4.7 - PACKAGE UPDATE
• #698 - Update python-flake8-2020-native to 1.5.0 - PACKAGE UPDATE
• #704 - Update python3-packaging-native to 20.1 - PACKAGE UPDATE
• #707 - Update perl-path-tiny-native to 0.110 - PACKAGE UPDATE
• #708 - Update perl-ppix-regexp-native to 0.068 - PACKAGE UPDATE
• #709 - Update perl-term-ansicolor-native to 5.01 - PACKAGE UPDATE
• #710 - Update python3-coverage-native to 5.0.3 - PACKAGE UPDATE
• #711 - Update python3-docutils-native to 0.16 - PACKAGE UPDATE
• #712 - Update python3-flake8-comprehensions-native to 3.2.2 - PACKAGE UPDATE
• #713 - Update python3-ruamelyaml-native to 0.16.6 - PACKAGE UPDATE
• #714 - Update python3-six-native to 1.14.0 - PACKAGE UPDATE
• #715 - Update python3-zipp-native to 2.0.0 - PACKAGE UPDATE
• #716 - Update python3-wemake-python-styleguide-native to 0.13.4 - PACKAGE UPDATE
• #720 - Update phan to 2.4.8 - PACKAGE UPDATE
• #723 - Update setuptools_scm to 3.4.3 - PACKAGE UPDATE
• #727 - Update phpstan to 0.12.8 - PACKAGE UPDATE
• #729 - Update textlint-rule-terminology to 2.0.3 - PACKAGE UPDATE
• #734 - Update python3-jinja2 to 2.11.1 - PACKAGE UPDATE
• #735 - Update python-more-itertools to 8.2.0 - PACKAGE UPDATE
• #736 - Update python-pytest to 5.3.5 - PACKAGE UPDATE
• #737 - Update github.com-golang-protobuf to 1.3.3 - PACKAGE UPDATE
• #738 - Update gosec to 2.2.0 - PACKAGE UPDATE
• #745 - Update checkbashism-native to 2.20.1 - PACKAGE UPDATE
• #748 - Update github.com-kr-pretty-native to 0.2.0 - PACKAGE UPDATE
• #749 - Update github.com-kr-pty-native to 1.1.8 - PACKAGE UPDATE
• #750 - Update github.com-mattn-go-colorable-native to 0.1.4 - PACKAGE UPDATE
• #751 - Update github.com-mattn-go-isatty-native to 0.0.12 - PACKAGE UPDATE
• #752 - Update github.com-mattn-go-runewidth-native to 0.0.8 - PACKAGE UPDATE
• #753 - Update github.com-olekukonko-tablewriter-native to 0.0.4 - PACKAGE UPDATE
• #754 - Update github.com-pkg-errors-native to 0.9.1 - PACKAGE UPDATE
• #755 - Update gopkg.in-yaml.v2-native to 2.2.8 - PACKAGE UPDATE
• #756 - Update libtalloc-native to 2.3.1 - PACKAGE UPDATE
• #757 - Update nodejs-native to 12.14.1 - PACKAGE UPDATE
• #759 - Update perl-path-tiny-native to 0.112 - PACKAGE UPDATE
• #760 - Update perl-ppix-regexp-native to 0.068.01 - PACKAGE UPDATE
• #761 - Update php-ast-native to 1.0.5 - PACKAGE UPDATE
• #762 - Update phpcodesniffer-native to 3.5.4 - PACKAGE UPDATE
• #763 - Update python3-ansible to 2.9.4 - PACKAGE UPDATE
• #767 - Update python3-pytype-native to 2020.1.24 - PACKAGE UPDATE
• #768 - Update python3-radon-native to 4.1.0 - PACKAGE UPDATE
• #769 - Update python3-ruamelyaml-native to 0.16.7 - PACKAGE UPDATE
• #770 - Update python3-testfixtures-native to 6.11.0 - PACKAGE UPDATE
• #773 - Update qemu-static-native to 4.2.0 - PACKAGE UPDATE
• #774 - Update standard-native to 14.3.1 - PACKAGE UPDATE
• #776 - Update yara-native to 3.11.0 - PACKAGE UPDATE
• #779 - Update eslint-plugin-unicorn to 16.1.0 - PACKAGE UPDATE
• #780 - Update github.com-go-check-check-native to 41f04d3bba152ddec2103e299fed053415705330 - PACKAGE UPDATE
• #781 - Update github.com-mgechev-dots-native to c36f7dcfbb81d2220bbddabf29c757c861c3e4d8 - PACKAGE UPDATE
• #784 - Update shellcheck to shellcheck_0.7.0-2+b1 - PACKAGE UPDATE
• #788 - Update cpplint-native to 1.4.5 - PACKAGE UPDATE
• #793 - Update ansible-konstruktoid-ansible-role-hardening to d7977388a84b3b43162959b4a4f836cb33e5eb2d - PACKAGE UPDATE
• #799 - Update composer-native to b5a70434f0f582468a7824418553defaf67d5299 - PACKAGE UPDATE
• #802 - Update checkbashism-native to 2.20.2 - PACKAGE UPDATE
• #803 - Update luarocks-native to 3.3.0 - PACKAGE UPDATE
• #804 - Update mvdan.cc-editorconfig-native to e40951bde157136dcd6f65b73d541e5c2860cb77 - PACKAGE UPDATE
• #806 - Update perl-critic-native to 1.138 - PACKAGE UPDATE
• #807 - Update perl-list-utils-native to 1.54 - PACKAGE UPDATE
• #808 - Update phpstan-native to 0.12.9 - PACKAGE UPDATE
• #809 - Update proot-native to 5c05acf72801642d50b6b9c57a0898bc6a7183d1 - PACKAGE UPDATE
• #810 - Update python3-darglint-native to 1.1.3 - PACKAGE UPDATE
• #812 - Update python3-oelint-adv-native to 1.9.0 - PACKAGE UPDATE
• #814 - Update python3-testfixtures-native to 6.12.0 - PACKAGE UPDATE
• #815 - Update python3-vulture-native to 1.3 - PACKAGE UPDATE
• #817 - Update sudokiller to eef689995d3ee9f2ddf4b1a5237387fca05954c0 - PACKAGE UPDATE
• #821 - Update python3-flake8-bandit-native to 2.1.2 - PACKAGE UPDATE
• #822 - Update python3-importlib-metadata-native to 1.5.0 - PACKAGE UPDATE
• #823 - Update python3-pytype-native to 2020.2.6 - PACKAGE UPDATE
• #824 - Update python3-typed-ast-native to 1.4.1 - PACKAGE UPDATE
• #825 - Update python3-typing-extensions-native to 3.7.4.1 - PACKAGE UPDATE
• #826 - Update reek-native to 5.6.0 - PACKAGE UPDATE
• #827 - Update ruby-parser-native to 2.7.0.2 - PACKAGE UPDATE
• #828 - Update sudokiller to a9ac9bfe7cd6482a5f5d4414e5cdaff9927d12f5 - PACKAGE UPDATE
• #830 - Update luarocks-native to 3.3.1 - PACKAGE UPDATE
• #831 - Update textlint-rule-stop-words to 2.0.1 - PACKAGE UPDATE
• #834 - Update github.com-mozilla-tls-observatory-native to 948bf11ba2ca84e57b66c74aa25b894c3762d79b - PACKAGE UPDATE
• #835 - Update python3-cffi-native to 1.14.0 - PACKAGE UPDATE
• #836 - Update python3-oelint-adv-native to 1.10.0 - PACKAGE UPDATE
• #837 - Update python3-systemdlint-native to 1.1.7 - PACKAGE UPDATE
• #838 - Update python3-tlv-native to 1.0.1 - PACKAGE UPDATE
• #843 - Update perl-ppix-regexp-native to 0.069 - PACKAGE UPDATE
• #844 - Update python3-gitpython-native to 3.0.7 - PACKAGE UPDATE
• #845 - Update stylelint-native to 13.1.0 - PACKAGE UPDATE
• #846 - Update python3-multimetric-native to 1.1.3 - PACKAGE UPDATE
• #851 - Update python3-stevedore-native to 1.32.0 - PACKAGE UPDATE
• #852 - Update python3-oelint-adv-native to 1.11.0 - PACKAGE UPDATE
• #853 - Update ansible-konstruktoid-ansible-role-hardening to a0e895045bde22654ea0a6cccce4d3016f7deb50 - PACKAGE UPDATE
• #855 - Update python3-bashate-native to 1.0.0 - PACKAGE UPDATE
• #856 - Update python3-ruamelyaml-native to 0.16.9 - PACKAGE UPDATE
• #860 - Update sudokiller to 93ef0d4bb20638a1926ed2a7677bdf35cdfb6a0c - PACKAGE UPDATE
• #861 - Update phpstan-native to 0.12.10 - PACKAGE UPDATE
• #862 - Update python3-ruamelyaml-native to 0.16.10 - PACKAGE UPDATE
• #863 - Update phan-native to 2.4.9 - PACKAGE UPDATE
• #864 - Update proot-native to 25c925e6a4234de070e96d97b2a426304d2e07d7 - PACKAGE UPDATE
• #865 - Update python3-ansible to 2.9.5 - PACKAGE UPDATE
• #866 - Update python3-setuptools-scm-native to 3.5.0 - PACKAGE UPDATE

Bugfixes

• #646 - wemake-python-styleguide requires radon - BUG
• #647 - python-cohesion doesn't work properly - BUG
• #656 - [thud] slick doesn't work because of dep-issues - BUG
• #659 - Dependencies for oelint are missing - BUG
• #663 - Flawfinder has issues with non utf-8 input - BUG
• #665 - Remove all RDEPENDS from the native tools - BUG
• #666 - cspell config is stored in global TOPDIR - BUG
• #667 - mypy cache dir is in TOPDIR - BUG
• #683 - tiger git has changed - BUG
• #690 - host contermination by ansible - BUG
• #699 - setuptoollint does export any issues - BUG
• #700 - remove module limitation from bad-python-reqs - BUG
• #703 - kconfighard doesn't produce findings in CI - BUG
• #722 - sudokiller isn't buildable - package error on 32bit machine - BUG
• #725 - Further packaging issues with sudokiller in CI - BUG
• #739 - Composer contaminates host - BUG
• #746 - Fix tag lookup at cspell-native - BUG
• #758 - Fix tag regex for perl-critic-native - BUG
• #771 - Fix version lookup for python3-urllib3-native - BUG
• #778 - [warrior] [thud] go cache isn't set - BUG
• #783 - Left over nodejs-native in warrior, zeus and thud - BUG
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #789 - Upstream check for cbmc fails - BUG
• #790 - nodejs doesn't work on warrior and thud - BUG
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #797 - Further fixes for upstream check - CI,BUG
• #800 - phpstan sometimes doesn't report line numbers - BUG
• #819 - Fix upstream check for leftover broken recipes - BUG
• #841 - Ansiblelint module conterminates host - BUG
• #842 - Standard does conterminate host - BUG
• #847 - No ID entry for certain findings from rats - BUG
• #848 - Reporting issues for standard - BUG
• #849 - jsonlint reporting issues - BUG
• #850 - Exception: FileNotFoundError: [Errno 2] No such file or directory: work/yocto-tmp/image/work/congatec_tca5_64-poky-linux/plcs-image/1.0-r0/work_upc/recipe-sysroot-native/etc/apt/apt.conf.sample' - BUG
• #857 - Fullpath shown for standard parser error findings - BUG
• #858 - flawfinder reporting is broken - BUG

Misc

• #686 - Run cppcheck in parallel - C/C++,ENHANCEMENT
• #705 - Remove testing for proselint results at python3-git - CI,ENHANCEMENT
• #706 - sca_filter_files is very slow - ENHANCEMENT
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #795 - Disable some more checks of nixaudtor - ENHANCEMENT
• #796 - Disable init001e rule of tiger by default - ENHANCEMENT
• #798 - Remove unnecessary scripts from non-staging branches - ENHANCEMENT
• #811 - Switch python3-jinja2 to git fetcher - ENHANCEMENT
• #813 - Fix python3-snowballstemmer-native to stop using SRCREV - ENHANCEMENT
• #840 - Tag naming is not correct in SECURITY.md - DOCUMENTATION,ENHANCEMENT

Thanks

@MehdiKarimi786

Main features

• Several security related tools
• Diff mode (see #655)
• Complete package refresh
• a lot of improvements in all areas

New

• #493 - Use multimetric for ruby code - FEATURE REQUEST,RUBY
• #655 - Present only new items - FEATURE REQUEST
• #657 - If result test fails show the raw content of the tool - CI,FEATURE REQUEST
• #660 - Improve exec speed of proselint - FEATURE REQUEST
• #682 - Add a note that at least python 3.5 is required as a host-tool - DOCUMENTATION,FEATURE REQUEST
• #687 - Eval reconbf - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #691 - Use ansible for hardening roles - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #717 - Try sudo_killer - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #726 - Add code climate compatible output - FEATURE REQUEST
• #743 - Set correct upstream check settings for various packages - CI,FEATURE REQUEST
• #777 - add UPSTREAM_CHECK_COMMITS to non-tag git repos - CI,FEATURE REQUEST

Updates

• #527 - Update nodejs-native to 10.18.1 - PACKAGE UPDATE
• #551 - Update pyright to 1.1.19 - PACKAGE UPDATE
• #552 - Update revive to 1.0.1 - PACKAGE UPDATE
• #554 - Update phan to 2.4.6 - PACKAGE UPDATE
• #555 - Update python-configargparse to 1.0 - PACKAGE UPDATE
• #560 - Update eslint-plugin-vue to 6.1.2 - PACKAGE UPDATE
• #562 - Update python-babel to 2.8.0 - PACKAGE UPDATE
• #563 - Update checkbashism-native to 2.19.7 - PACKAGE UPDATE
• #564 - Update perl-b-keywords-native to 1.21 - PACKAGE UPDATE
• #565 - Update python-cffi-native to 1.13.2 - PACKAGE UPDATE
• #567 - Update sparse to 0.6.1 - PACKAGE UPDATE
• #568 - Update kconfig-hardened-check to 0.5.3 - PACKAGE UPDATE
• #569 - Update multimetric to 1.1.1 - PACKAGE UPDATE
• #570 - Update systemdlint to 1.1.6 - PACKAGE UPDATE
• #573 - Update python-flake8-bugbear to 20.1.0 - PACKAGE UPDATE
• #574 - Update python-wcwidth to 0.1.8 - PACKAGE UPDATE
• #575 - Update github.com-fatih-color to 1.9.0 - PACKAGE UPDATE
• #587 - Update python3-asn1crypto-native to 1.3.0 - PACKAGE UPDATE
• #588 - Update python3-astroids-native to 2.3.3 - PACKAGE UPDATE
• #589 - Update python3-attrs-native to 19.3.0 - PACKAGE UPDATE
• #590 - Update python3-bcrypt-native to 3.1.7 - PACKAGE UPDATE
• #591 - Update python3-certifi-native to 2019.11.28 - PACKAGE UPDATE
• #593 - Update python3-colorama-native to 0.4.3 - PACKAGE UPDATE
• #594 - Update python3-coverage-native to 5.0.1 - PACKAGE UPDATE
• #595 - Update python3-cryptography-native to 2.8 - PACKAGE UPDATE
• #596 - Update python3-darglint-native to 1.0.0 - PACKAGE UPDATE
• #597 - Update python3-decorator-native to 4.4.1 - PACKAGE UPDATE
• #598 - Update python3-detect-secrets-native to 0.13.0 - PACKAGE UPDATE
• #600 - Update python3-enum-compat-native to 0.0.3 - PACKAGE UPDATE
• #602 - Update python3-flake8-builtins-native to 1.4.2 - PACKAGE UPDATE
• #603 - Update python3-flake8-comprehensions-native to 3.1.4 - PACKAGE UPDATE
• #604 - Update python3-flake8-debugger-native to 3.2.1 - PACKAGE UPDATE
• #605 - Update python3-flake8-dlint-native to 0.9.2 - PACKAGE UPDATE
• #606 - Update python3-flake8-docstrings-native to 1.5.0 - PACKAGE UPDATE
• #617 - Update python3-mypy-native to 0.761 - PACKAGE UPDATE
• #629 - Update python3-pylint-native to 2.4.4 - PACKAGE UPDATE
• #631 - Update python3-pytype-native to 2019.12.17 - PACKAGE UPDATE
• #634 - Update python3-setuptools-lint-native to 0.6.0 - PACKAGE UPDATE
• #642 - Update python3-yamllint-native to 1.20.0 - PACKAGE UPDATE
• #648 - Update python3-astor-native to 0.8.1 - PACKAGE UPDATE
• #650 - Update python3-flake-bugbear to 20.1.2 - PACKAGE UPDATE
• #651 - Update python3-packaging-native to 20.0 - PACKAGE UPDATE
• #652 - Update phpstan to 0.12.4 - PACKAGE UPDATE
• #653 - Update textlint to 11.6.1 - PACKAGE UPDATE
• #661 - Update github.com-mvdan-sh-native to 3.0.1 - PACKAGE UPDATE
• #664 - Update python-mypy-extensions-native to 0.4.3 - PACKAGE UPDATE
• #668 - Update python-more-itertools-native to 8.1.0 - PACKAGE UPDATE
• #669 - Update styelint to 13.0.0 - PACKAGE UPDATE
• #670 - Update phpstan to 0.12.6 - PACKAGE UPDATE
• #672 - Update perl-perl-tidy-native to 20200110 - PACKAGE UPDATE
• #673 - Update perl-term-ansicolor-native to 5.00 - PACKAGE UPDATE
• #674 - Update python3-pydocstyle-native to 5.0.2 - PACKAGE UPDATE
• #675 - Update python3-pytype-native to 2020.1.8 - PACKAGE UPDATE
• #676 - Update python3-pyyaml-native to 5.3 - PACKAGE UPDATE
• #677 - Update pyright to 1.1.21 - PACKAGE UPDATE
• #678 - Update jshint to 2.11.0 - PACKAGE UPDATE
• #680 - Update textlint-rule-stop-words to 2.0.0 - PACKAGE UPDATE
• #681 - Update php-composer to 1.9.2 - PACKAGE UPDATE
• #685 - Update python3-anytree to 2.8.0 - PACKAGE UPDATE
• #689 - Update python-pytest to 5.3.4 - PACKAGE UPDATE
• #695 - Update ropgadget to 6.0 - PACKAGE UPDATE
• #697 - Update phan to 2.4.7 - PACKAGE UPDATE
• #698 - Update python-flake8-2020-native to 1.5.0 - PACKAGE UPDATE
• #704 - Update python3-packaging-native to 20.1 - PACKAGE UPDATE
• #707 - Update perl-path-tiny-native to 0.110 - PACKAGE UPDATE
• #708 - Update perl-ppix-regexp-native to 0.068 - PACKAGE UPDATE
• #709 - Update perl-term-ansicolor-native to 5.01 - PACKAGE UPDATE
• #710 - Update python3-coverage-native to 5.0.3 - PACKAGE UPDATE
• #711 - Update python3-docutils-native to 0.16 - PACKAGE UPDATE
• #712 - Update python3-flake8-comprehensions-native to 3.2.2 - PACKAGE UPDATE
• #713 - Update python3-ruamelyaml-native to 0.16.6 - PACKAGE UPDATE
• #714 - Update python3-six-native to 1.14.0 - PACKAGE UPDATE
• #715 - Update python3-zipp-native to 2.0.0 - PACKAGE UPDATE
• #716 - Update python3-wemake-python-styleguide-native to 0.13.4 - PACKAGE UPDATE
• #720 - Update phan to 2.4.8 - PACKAGE UPDATE
• #723 - Update setuptools_scm to 3.4.3 - PACKAGE UPDATE
• #727 - Update phpstan to 0.12.8 - PACKAGE UPDATE
• #729 - Update textlint-rule-terminology to 2.0.3 - PACKAGE UPDATE
• #733 - Update python3-flake8-bugbear-native to 20.1.4 - PACKAGE UPDATE
• #734 - Update python3-jinja2 to 2.11.1 - PACKAGE UPDATE
• #735 - Update python-more-itertools to 8.2.0 - PACKAGE UPDATE
• #736 - Update python-pytest to 5.3.5 - PACKAGE UPDATE
• #737 - Update github.com-golang-protobuf to 1.3.3 - PACKAGE UPDATE
• #738 - Update gosec to 2.2.0 - PACKAGE UPDATE
• #745 - Update checkbashism-native to 2.20.1 - PACKAGE UPDATE
• #748 - Update github.com-kr-pretty-native to 0.2.0 - PACKAGE UPDATE
• #749 - Update github.com-kr-pty-native to 1.1.8 - PACKAGE UPDATE
• #750 - Update github.com-mattn-go-colorable-native to 0.1.4 - PACKAGE UPDATE
• #751 - Update github.com-mattn-go-isatty-native to 0.0.12 - PACKAGE UPDATE
• #752 - Update github.com-mattn-go-runewidth-native to 0.0.8 - PACKAGE UPDATE
• #753 - Update github.com-olekukonko-tablewriter-native to 0.0.4 - PACKAGE UPDATE
• #754 - Update github.com-pkg-errors-native to 0.9.1 - PACKAGE UPDATE
• #755 - Update gopkg.in-yaml.v2-native to 2.2.8 - PACKAGE UPDATE
• #756 - Update libtalloc-native to 2.3.1 - PACKAGE UPDATE
• #757 - Update nodejs-native to 12.14.1 - PACKAGE UPDATE
• #759 - Update perl-path-tiny-native to 0.112 - PACKAGE UPDATE
• #760 - Update perl-ppix-regexp-native to 0.068.01 - PACKAGE UPDATE
• #761 - Update php-ast-native to 1.0.5 - PACKAGE UPDATE
• #762 - Update phpcodesniffer-native to 3.5.4 - PACKAGE UPDATE
• #763 - Update python3-ansible to 2.9.4 - PACKAGE UPDATE
• #767 - Update python3-pytype-native to 2020.1.24 - PACKAGE UPDATE
• #768 - Update python3-radon-native to 4.1.0 - PACKAGE UPDATE
• #769 - Update python3-ruamelyaml-native to 0.16.7 - PACKAGE UPDATE
• #770 - Update python3-testfixtures-native to 6.11.0 - PACKAGE UPDATE
• #773 - Update qemu-static-native to 4.2.0 - PACKAGE UPDATE
• #774 - Update standard-native to 14.3.1 - PACKAGE UPDATE
• #776 - Update yara-native to 3.11.0 - PACKAGE UPDATE
• #779 - Update eslint-plugin-unicorn to 16.1.0 - PACKAGE UPDATE
• #780 - Update github.com-go-check-check-native to 41f04d3bba152ddec2103e299fed053415705330 - PACKAGE UPDATE
• #781 - Update github.com-mgechev-dots-native to c36f7dcfbb81d2220bbddabf29c757c861c3e4d8 - PACKAGE UPDATE
• #784 - Update shellcheck to shellcheck_0.7.0-2+b1 - PACKAGE UPDATE
• #788 - Update cpplint-native to 1.4.5 - PACKAGE UPDATE
• #793 - Update ansible-konstruktoid-ansible-role-hardening to d7977388a84b3b43162959b4a4f836cb33e5eb2d - PACKAGE UPDATE
• #799 - Update composer-native to b5a70434f0f582468a7824418553defaf67d5299 - PACKAGE UPDATE
• #802 - Update checkbashism-native to 2.20.2 - PACKAGE UPDATE
• #803 - Update luarocks-native to 3.3.0 - PACKAGE UPDATE
• #804 - Update mvdan.cc-editorconfig-native to e40951bde157136dcd6f65b73d541e5c2860cb77 - PACKAGE UPDATE
• #806 - Update perl-critic-native to 1.138 - PACKAGE UPDATE
• #807 - Update perl-list-utils-native to 1.54 - PACKAGE UPDATE
• #808 - Update phpstan-native to 0.12.9 - PACKAGE UPDATE
• #809 - Update proot-native to 5c05acf72801642d50b6b9c57a0898bc6a7183d1 - PACKAGE UPDATE
• #810 - Update python3-darglint-native to 1.1.3 - PACKAGE UPDATE
• #812 - Update python3-oelint-adv-native to 1.9.0 - PACKAGE UPDATE
• #814 - Update python3-testfixtures-native to 6.12.0 - PACKAGE UPDATE
• #815 - Update python3-vulture-native to 1.3 - PACKAGE UPDATE
• #817 - Update sudokiller to eef689995d3ee9f2ddf4b1a5237387fca05954c0 - PACKAGE UPDATE
• #821 - Update python3-flake8-bandit-native to 2.1.2 - PACKAGE UPDATE
• #822 - Update python3-importlib-metadata-native to 1.5.0 - PACKAGE UPDATE
• #823 - Update python3-pytype-native to 2020.2.6 - PACKAGE UPDATE
• #824 - Update python3-typed-ast-native to 1.4.1 - PACKAGE UPDATE
• #825 - Update python3-typing-extensions-native to 3.7.4.1 - PACKAGE UPDATE
• #826 - Update reek-native to 5.6.0 - PACKAGE UPDATE
• #827 - Update ruby-parser-native to 2.7.0.2 - PACKAGE UPDATE
• #828 - Update sudokiller to a9ac9bfe7cd6482a5f5d4414e5cdaff9927d12f5 - PACKAGE UPDATE
• #830 - Update luarocks-native to 3.3.1 - PACKAGE UPDATE
• #831 - Update textlint-rule-stop-words to 2.0.1 - PACKAGE UPDATE
• #834 - Update github.com-mozilla-tls-observatory-native to 948bf11ba2ca84e57b66c74aa25b894c3762d79b - PACKAGE UPDATE
• #835 - Update python3-cffi-native to 1.14.0 - PACKAGE UPDATE
• #836 - Update python3-oelint-adv-native to 1.10.0 - PACKAGE UPDATE
• #837 - Update python3-systemdlint-native to 1.1.7 - PACKAGE UPDATE
• #838 - Update python3-tlv-native to 1.0.1 - PACKAGE UPDATE
• #843 - Update perl-ppix-regexp-native to 0.069 - PACKAGE UPDATE
• #844 - Update python3-gitpython-native to 3.0.7 - PACKAGE UPDATE
• #845 - Update stylelint-native to 13.1.0 - PACKAGE UPDATE
• #846 - Update python3-multimetric-native to 1.1.3 - PACKAGE UPDATE
• #851 - Update python3-stevedore-native to 1.32.0 - PACKAGE UPDATE
• #852 - Update python3-oelint-adv-native to 1.11.0 - PACKAGE UPDATE
• #853 - Update ansible-konstruktoid-ansible-role-hardening to a0e895045bde22654ea0a6cccce4d3016f7deb50 - PACKAGE UPDATE
• #855 - Update python3-bashate-native to 1.0.0 - PACKAGE UPDATE
• #856 - Update python3-ruamelyaml-native to 0.16.9 - PACKAGE UPDATE
• #860 - Update sudokiller to 93ef0d4bb20638a1926ed2a7677bdf35cdfb6a0c - PACKAGE UPDATE
• #861 - Update phpstan-native to 0.12.10 - PACKAGE UPDATE
• #862 - Update python3-ruamelyaml-native to 0.16.10 - PACKAGE UPDATE
• #863 - Update phan-native to 2.4.9 - PACKAGE UPDATE
• #864 - Update proot-native to 25c925e6a4234de070e96d97b2a426304d2e07d7 - PACKAGE UPDATE
• #865 - Update python3-ansible to 2.9.5 - PACKAGE UPDATE
• #866 - Update python3-setuptools-scm-native to 3.5.0 - PACKAGE UPDATE

Bugfixes

• #646 - wemake-python-styleguide requires radon - BUG
• #647 - python-cohesion doesn't work properly - BUG
• #659 - Dependencies for oelint are missing - BUG
• #663 - Flawfinder has issues with non utf-8 input - BUG
• #665 - Remove all RDEPENDS from the native tools - BUG
• #666 - cspell config is stored in global TOPDIR - BUG
• #667 - mypy cache dir is in TOPDIR - BUG
• #683 - tiger git has changed - BUG
• #690 - host contermination by ansible - BUG
• #692 - [warrior] cve-check integration from master was merged in poky - BUG
• #699 - setuptoollint does export any issues - BUG
• #700 - remove module limitation from bad-python-reqs - BUG
• #703 - kconfighard doesn't produce findings in CI - BUG
• #722 - sudokiller isn't buildable - package error on 32bit machine - BUG
• #725 - Further packaging issues with sudokiller in CI - BUG
• #739 - Composer contaminates host - BUG
• #746 - Fix tag lookup at cspell-native - BUG
• #758 - Fix tag regex for perl-critic-native - BUG
• #771 - Fix version lookup for python3-urllib3-native - BUG
• #778 - [warrior] [thud] go cache isn't set - BUG
• #783 - Left over nodejs-native in warrior, zeus and thud - BUG
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #789 - Upstream check for cbmc fails - BUG
• #790 - nodejs doesn't work on warrior and thud - BUG
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #797 - Further fixes for upstream check - CI,BUG
• #800 - phpstan sometimes doesn't report line numbers - BUG
• #819 - Fix upstream check for leftover broken recipes - BUG
• #841 - Ansiblelint module conterminates host - BUG
• #842 - Standard does conterminate host - BUG
• #847 - No ID entry for certain findings from rats - BUG
• #848 - Reporting issues for standard - BUG
• #849 - jsonlint reporting issues - BUG
• #850 - Exception: FileNotFoundError: [Errno 2] No such file or directory: work/yocto-tmp/image/work/congatec_tca5_64-poky-linux/plcs-image/1.0-r0/work_upc/recipe-sysroot-native/etc/apt/apt.conf.sample' - BUG
• #857 - Fullpath shown for standard parser error findings - BUG
• #858 - flawfinder reporting is broken - BUG

Misc

• #686 - Run cppcheck in parallel - C/C++,ENHANCEMENT
• #705 - Remove testing for proselint results at python3-git - CI,ENHANCEMENT
• #706 - sca_filter_files is very slow - ENHANCEMENT
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #795 - Disable some more checks of nixaudtor - ENHANCEMENT
• #796 - Disable init001e rule of tiger by default - ENHANCEMENT
• #798 - Remove unnecessary scripts from non-staging branches - ENHANCEMENT
• #811 - Switch python3-jinja2 to git fetcher - ENHANCEMENT
• #813 - Fix python3-snowballstemmer-native to stop using SRCREV - ENHANCEMENT
• #840 - Tag naming is not correct in SECURITY.md - DOCUMENTATION,ENHANCEMENT

Thanks

@MehdiKarimi786

Main features

• Several security related tools
• Diff mode (see #655)
• Complete package refresh
• a lot of improvements in all areas

New

• #493 - Use multimetric for ruby code - FEATURE REQUEST,RUBY
• #655 - Present only new items - FEATURE REQUEST
• #657 - If result test fails show the raw content of the tool - CI,FEATURE REQUEST
• #660 - Improve exec speed of proselint - FEATURE REQUEST
• #682 - Add a note that at least python 3.5 is required as a host-tool - DOCUMENTATION,FEATURE REQUEST
• #687 - Eval reconbf - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #691 - Use ansible for hardening roles - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #717 - Try sudo_killer - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #726 - Add code climate compatible output - FEATURE REQUEST
• #743 - Set correct upstream check settings for various packages - CI,FEATURE REQUEST
• #777 - add UPSTREAM_CHECK_COMMITS to non-tag git repos - CI,FEATURE REQUEST

Updates

• #527 - Update nodejs-native to 10.18.1 - PACKAGE UPDATE
• #551 - Update pyright to 1.1.19 - PACKAGE UPDATE
• #552 - Update revive to 1.0.1 - PACKAGE UPDATE
• #554 - Update phan to 2.4.6 - PACKAGE UPDATE
• #555 - Update python-configargparse to 1.0 - PACKAGE UPDATE
• #560 - Update eslint-plugin-vue to 6.1.2 - PACKAGE UPDATE
• #562 - Update python-babel to 2.8.0 - PACKAGE UPDATE
• #563 - Update checkbashism-native to 2.19.7 - PACKAGE UPDATE
• #564 - Update perl-b-keywords-native to 1.21 - PACKAGE UPDATE
• #565 - Update python-cffi-native to 1.13.2 - PACKAGE UPDATE
• #567 - Update sparse to 0.6.1 - PACKAGE UPDATE
• #568 - Update kconfig-hardened-check to 0.5.3 - PACKAGE UPDATE
• #569 - Update multimetric to 1.1.1 - PACKAGE UPDATE
• #570 - Update systemdlint to 1.1.6 - PACKAGE UPDATE
• #573 - Update python-flake8-bugbear to 20.1.0 - PACKAGE UPDATE
• #574 - Update python-wcwidth to 0.1.8 - PACKAGE UPDATE
• #575 - Update github.com-fatih-color to 1.9.0 - PACKAGE UPDATE
• #587 - Update python3-asn1crypto-native to 1.3.0 - PACKAGE UPDATE
• #588 - Update python3-astroids-native to 2.3.3 - PACKAGE UPDATE
• #589 - Update python3-attrs-native to 19.3.0 - PACKAGE UPDATE
• #590 - Update python3-bcrypt-native to 3.1.7 - PACKAGE UPDATE
• #591 - Update python3-certifi-native to 2019.11.28 - PACKAGE UPDATE
• #593 - Update python3-colorama-native to 0.4.3 - PACKAGE UPDATE
• #594 - Update python3-coverage-native to 5.0.1 - PACKAGE UPDATE
• #595 - Update python3-cryptography-native to 2.8 - PACKAGE UPDATE
• #596 - Update python3-darglint-native to 1.0.0 - PACKAGE UPDATE
• #597 - Update python3-decorator-native to 4.4.1 - PACKAGE UPDATE
• #598 - Update python3-detect-secrets-native to 0.13.0 - PACKAGE UPDATE
• #600 - Update python3-enum-compat-native to 0.0.3 - PACKAGE UPDATE
• #602 - Update python3-flake8-builtins-native to 1.4.2 - PACKAGE UPDATE
• #603 - Update python3-flake8-comprehensions-native to 3.1.4 - PACKAGE UPDATE
• #604 - Update python3-flake8-debugger-native to 3.2.1 - PACKAGE UPDATE
• #605 - Update python3-flake8-dlint-native to 0.9.2 - PACKAGE UPDATE
• #606 - Update python3-flake8-docstrings-native to 1.5.0 - PACKAGE UPDATE
• #607 - Update python3-flake8-executable-native to 2.0.3 - PACKAGE UPDATE
• #617 - Update python3-mypy-native to 0.761 - PACKAGE UPDATE
• #629 - Update python3-pylint-native to 2.4.4 - PACKAGE UPDATE
• #631 - Update python3-pytype-native to 2019.12.17 - PACKAGE UPDATE
• #634 - Update python3-setuptools-lint-native to 0.6.0 - PACKAGE UPDATE
• #642 - Update python3-yamllint-native to 1.20.0 - PACKAGE UPDATE
• #648 - Update python3-astor-native to 0.8.1 - PACKAGE UPDATE
• #650 - Update python3-flake-bugbear to 20.1.2 - PACKAGE UPDATE
• #651 - Update python3-packaging-native to 20.0 - PACKAGE UPDATE
• #652 - Update phpstan to 0.12.4 - PACKAGE UPDATE
• #653 - Update textlint to 11.6.1 - PACKAGE UPDATE
• #661 - Update github.com-mvdan-sh-native to 3.0.1 - PACKAGE UPDATE
• #664 - Update python-mypy-extensions-native to 0.4.3 - PACKAGE UPDATE
• #668 - Update python-more-itertools-native to 8.1.0 - PACKAGE UPDATE
• #669 - Update styelint to 13.0.0 - PACKAGE UPDATE
• #670 - Update phpstan to 0.12.6 - PACKAGE UPDATE
• #672 - Update perl-perl-tidy-native to 20200110 - PACKAGE UPDATE
• #673 - Update perl-term-ansicolor-native to 5.00 - PACKAGE UPDATE
• #674 - Update python3-pydocstyle-native to 5.0.2 - PACKAGE UPDATE
• #675 - Update python3-pytype-native to 2020.1.8 - PACKAGE UPDATE
• #676 - Update python3-pyyaml-native to 5.3 - PACKAGE UPDATE
• #677 - Update pyright to 1.1.21 - PACKAGE UPDATE
• #678 - Update jshint to 2.11.0 - PACKAGE UPDATE
• #680 - Update textlint-rule-stop-words to 2.0.0 - PACKAGE UPDATE
• #681 - Update php-composer to 1.9.2 - PACKAGE UPDATE
• #685 - Update python3-anytree to 2.8.0 - PACKAGE UPDATE
• #689 - Update python-pytest to 5.3.4 - PACKAGE UPDATE
• #695 - Update ropgadget to 6.0 - PACKAGE UPDATE
• #697 - Update phan to 2.4.7 - PACKAGE UPDATE
• #698 - Update python-flake8-2020-native to 1.5.0 - PACKAGE UPDATE
• #704 - Update python3-packaging-native to 20.1 - PACKAGE UPDATE
• #707 - Update perl-path-tiny-native to 0.110 - PACKAGE UPDATE
• #708 - Update perl-ppix-regexp-native to 0.068 - PACKAGE UPDATE
• #709 - Update perl-term-ansicolor-native to 5.01 - PACKAGE UPDATE
• #710 - Update python3-coverage-native to 5.0.3 - PACKAGE UPDATE
• #711 - Update python3-docutils-native to 0.16 - PACKAGE UPDATE
• #712 - Update python3-flake8-comprehensions-native to 3.2.2 - PACKAGE UPDATE
• #713 - Update python3-ruamelyaml-native to 0.16.6 - PACKAGE UPDATE
• #714 - Update python3-six-native to 1.14.0 - PACKAGE UPDATE
• #715 - Update python3-zipp-native to 2.0.0 - PACKAGE UPDATE
• #716 - Update python3-wemake-python-styleguide-native to 0.13.4 - PACKAGE UPDATE
• #720 - Update phan to 2.4.8 - PACKAGE UPDATE
• #723 - Update setuptools_scm to 3.4.3 - PACKAGE UPDATE
• #727 - Update phpstan to 0.12.8 - PACKAGE UPDATE
• #729 - Update textlint-rule-terminology to 2.0.3 - PACKAGE UPDATE
• #733 - Update python3-flake8-bugbear-native to 20.1.4 - PACKAGE UPDATE
• #734 - Update python3-jinja2 to 2.11.1 - PACKAGE UPDATE
• #735 - Update python-more-itertools to 8.2.0 - PACKAGE UPDATE
• #736 - Update python-pytest to 5.3.5 - PACKAGE UPDATE
• #737 - Update github.com-golang-protobuf to 1.3.3 - PACKAGE UPDATE
• #738 - Update gosec to 2.2.0 - PACKAGE UPDATE
• #745 - Update checkbashism-native to 2.20.1 - PACKAGE UPDATE
• #748 - Update github.com-kr-pretty-native to 0.2.0 - PACKAGE UPDATE
• #749 - Update github.com-kr-pty-native to 1.1.8 - PACKAGE UPDATE
• #750 - Update github.com-mattn-go-colorable-native to 0.1.4 - PACKAGE UPDATE
• #751 - Update github.com-mattn-go-isatty-native to 0.0.12 - PACKAGE UPDATE
• #752 - Update github.com-mattn-go-runewidth-native to 0.0.8 - PACKAGE UPDATE
• #753 - Update github.com-olekukonko-tablewriter-native to 0.0.4 - PACKAGE UPDATE
• #754 - Update github.com-pkg-errors-native to 0.9.1 - PACKAGE UPDATE
• #755 - Update gopkg.in-yaml.v2-native to 2.2.8 - PACKAGE UPDATE
• #756 - Update libtalloc-native to 2.3.1 - PACKAGE UPDATE
• #757 - Update nodejs-native to 12.14.1 - PACKAGE UPDATE
• #759 - Update perl-path-tiny-native to 0.112 - PACKAGE UPDATE
• #760 - Update perl-ppix-regexp-native to 0.068.01 - PACKAGE UPDATE
• #761 - Update php-ast-native to 1.0.5 - PACKAGE UPDATE
• #762 - Update phpcodesniffer-native to 3.5.4 - PACKAGE UPDATE
• #763 - Update python3-ansible to 2.9.4 - PACKAGE UPDATE
• #767 - Update python3-pytype-native to 2020.1.24 - PACKAGE UPDATE
• #768 - Update python3-radon-native to 4.1.0 - PACKAGE UPDATE
• #769 - Update python3-ruamelyaml-native to 0.16.7 - PACKAGE UPDATE
• #770 - Update python3-testfixtures-native to 6.11.0 - PACKAGE UPDATE
• #772 - Update python3-wheel-native to 0.34.2 - PACKAGE UPDATE
• #773 - Update qemu-static-native to 4.2.0 - PACKAGE UPDATE
• #774 - Update standard-native to 14.3.1 - PACKAGE UPDATE
• #776 - Update yara-native to 3.11.0 - PACKAGE UPDATE
• #779 - Update eslint-plugin-unicorn to 16.1.0 - PACKAGE UPDATE
• #780 - Update github.com-go-check-check-native to 41f04d3bba152ddec2103e299fed053415705330 - PACKAGE UPDATE
• #781 - Update github.com-mgechev-dots-native to c36f7dcfbb81d2220bbddabf29c757c861c3e4d8 - PACKAGE UPDATE
• #784 - Update shellcheck to shellcheck_0.7.0-2+b1 - PACKAGE UPDATE
• #788 - Update cpplint-native to 1.4.5 - PACKAGE UPDATE
• #793 - Update ansible-konstruktoid-ansible-role-hardening to d7977388a84b3b43162959b4a4f836cb33e5eb2d - PACKAGE UPDATE
• #799 - Update composer-native to b5a70434f0f582468a7824418553defaf67d5299 - PACKAGE UPDATE
• #802 - Update checkbashism-native to 2.20.2 - PACKAGE UPDATE
• #803 - Update luarocks-native to 3.3.0 - PACKAGE UPDATE
• #804 - Update mvdan.cc-editorconfig-native to e40951bde157136dcd6f65b73d541e5c2860cb77 - PACKAGE UPDATE
• #805 - Update nodejs-native to 12.15.0 - PACKAGE UPDATE
• #806 - Update perl-critic-native to 1.138 - PACKAGE UPDATE
• #807 - Update perl-list-utils-native to 1.54 - PACKAGE UPDATE
• #808 - Update phpstan-native to 0.12.9 - PACKAGE UPDATE
• #809 - Update proot-native to 5c05acf72801642d50b6b9c57a0898bc6a7183d1 - PACKAGE UPDATE
• #810 - Update python3-darglint-native to 1.1.3 - PACKAGE UPDATE
• #812 - Update python3-oelint-adv-native to 1.9.0 - PACKAGE UPDATE
• #814 - Update python3-testfixtures-native to 6.12.0 - PACKAGE UPDATE
• #815 - Update python3-vulture-native to 1.3 - PACKAGE UPDATE
• #817 - Update sudokiller to eef689995d3ee9f2ddf4b1a5237387fca05954c0 - PACKAGE UPDATE
• #818 - Update tbb-native to 75224c4c1f3c0b8b44eacf86118d142586d28ac0 - PACKAGE UPDATE
• #821 - Update python3-flake8-bandit-native to 2.1.2 - PACKAGE UPDATE
• #822 - Update python3-importlib-metadata-native to 1.5.0 - PACKAGE UPDATE
• #823 - Update python3-pytype-native to 2020.2.6 - PACKAGE UPDATE
• #824 - Update python3-typed-ast-native to 1.4.1 - PACKAGE UPDATE
• #825 - Update python3-typing-extensions-native to 3.7.4.1 - PACKAGE UPDATE
• #826 - Update reek-native to 5.6.0 - PACKAGE UPDATE
• #827 - Update ruby-parser-native to 2.7.0.2 - PACKAGE UPDATE
• #828 - Update sudokiller to a9ac9bfe7cd6482a5f5d4414e5cdaff9927d12f5 - PACKAGE UPDATE
• #830 - Update luarocks-native to 3.3.1 - PACKAGE UPDATE
• #831 - Update textlint-rule-stop-words to 2.0.1 - PACKAGE UPDATE
• #834 - Update github.com-mozilla-tls-observatory-native to 948bf11ba2ca84e57b66c74aa25b894c3762d79b - PACKAGE UPDATE
• #835 - Update python3-cffi-native to 1.14.0 - PACKAGE UPDATE
• #836 - Update python3-oelint-adv-native to 1.10.0 - PACKAGE UPDATE
• #837 - Update python3-systemdlint-native to 1.1.7 - PACKAGE UPDATE
• #838 - Update python3-tlv-native to 1.0.1 - PACKAGE UPDATE
• #843 - Update perl-ppix-regexp-native to 0.069 - PACKAGE UPDATE
• #844 - Update python3-gitpython-native to 3.0.7 - PACKAGE UPDATE
• #845 - Update stylelint-native to 13.1.0 - PACKAGE UPDATE
• #846 - Update python3-multimetric-native to 1.1.3 - PACKAGE UPDATE
• #851 - Update python3-stevedore-native to 1.32.0 - PACKAGE UPDATE
• #852 - Update python3-oelint-adv-native to 1.11.0 - PACKAGE UPDATE
• #853 - Update ansible-konstruktoid-ansible-role-hardening to a0e895045bde22654ea0a6cccce4d3016f7deb50 - PACKAGE UPDATE
• #854 - Update nodejs-native to 12.16.0 - PACKAGE UPDATE
• #855 - Update python3-bashate-native to 1.0.0 - PACKAGE UPDATE
• #856 - Update python3-ruamelyaml-native to 0.16.9 - PACKAGE UPDATE
• #860 - Update sudokiller to 93ef0d4bb20638a1926ed2a7677bdf35cdfb6a0c - PACKAGE UPDATE
• #861 - Update phpstan-native to 0.12.10 - PACKAGE UPDATE
• #862 - Update python3-ruamelyaml-native to 0.16.10 - PACKAGE UPDATE
• #863 - Update phan-native to 2.4.9 - PACKAGE UPDATE
• #864 - Update proot-native to 25c925e6a4234de070e96d97b2a426304d2e07d7 - PACKAGE UPDATE
• #865 - Update python3-ansible to 2.9.5 - PACKAGE UPDATE
• #866 - Update python3-setuptools-scm-native to 3.5.0 - PACKAGE UPDATE

Bugfixes

• #646 - wemake-python-styleguide requires radon - BUG
• #647 - python-cohesion doesn't work properly - BUG
• #659 - Dependencies for oelint are missing - BUG
• #663 - Flawfinder has issues with non utf-8 input - BUG
• #665 - Remove all RDEPENDS from the native tools - BUG
• #666 - cspell config is stored in global TOPDIR - BUG
• #667 - mypy cache dir is in TOPDIR - BUG
• #683 - tiger git has changed - BUG
• #690 - host contermination by ansible - BUG
• #699 - setuptoollint does export any issues - BUG
• #700 - remove module limitation from bad-python-reqs - BUG
• #703 - kconfighard doesn't produce findings in CI - BUG
• #722 - sudokiller isn't buildable - package error on 32bit machine - BUG
• #725 - Further packaging issues with sudokiller in CI - BUG
• #739 - Composer contaminates host - BUG
• #746 - Fix tag lookup at cspell-native - BUG
• #758 - Fix tag regex for perl-critic-native - BUG
• #771 - Fix version lookup for python3-urllib3-native - BUG
• #783 - Left over nodejs-native in warrior, zeus and thud - BUG
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #789 - Upstream check for cbmc fails - BUG
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #797 - Further fixes for upstream check - CI,BUG
• #800 - phpstan sometimes doesn't report line numbers - BUG
• #819 - Fix upstream check for leftover broken recipes - BUG
• #841 - Ansiblelint module conterminates host - BUG
• #842 - Standard does conterminate host - BUG
• #847 - No ID entry for certain findings from rats - BUG
• #848 - Reporting issues for standard - BUG
• #849 - jsonlint reporting issues - BUG
• #850 - Exception: FileNotFoundError: [Errno 2] No such file or directory: work/yocto-tmp/image/work/congatec_tca5_64-poky-linux/plcs-image/1.0-r0/work_upc/recipe-sysroot-native/etc/apt/apt.conf.sample' - BUG
• #857 - Fullpath shown for standard parser error findings - BUG
• #858 - flawfinder reporting is broken - BUG

Misc

• #686 - Run cppcheck in parallel - C/C++,ENHANCEMENT
• #705 - Remove testing for proselint results at python3-git - CI,ENHANCEMENT
• #706 - sca_filter_files is very slow - ENHANCEMENT
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #795 - Disable some more checks of nixaudtor - ENHANCEMENT
• #796 - Disable init001e rule of tiger by default - ENHANCEMENT
• #798 - Remove unnecessary scripts from non-staging branches - ENHANCEMENT
• #811 - Switch python3-jinja2 to git fetcher - ENHANCEMENT
• #813 - Fix python3-snowballstemmer-native to stop using SRCREV - ENHANCEMENT
• #840 - Tag naming is not correct in SECURITY.md - DOCUMENTATION,ENHANCEMENT

Thanks

@MehdiKarimi786

Main features

• Several security related tools
• Diff mode (see #655)
• Complete package refresh
• a lot of improvements in all areas

New

• #493 - Use multimetric for ruby code - FEATURE REQUEST,RUBY
• #655 - Present only new items - FEATURE REQUEST
• #657 - If result test fails show the raw content of the tool - CI,FEATURE REQUEST
• #660 - Improve exec speed of proselint - FEATURE REQUEST
• #682 - Add a note that at least python 3.5 is required as a host-tool - DOCUMENTATION,FEATURE REQUEST
• #687 - Eval reconbf - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #691 - Use ansible for hardening roles - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #717 - Try sudo_killer - FEATURE REQUEST,IMAGE/SYSTEM,SECURITY
• #718 - Run pkg version check in CI - CI,FEATURE REQUEST
• #726 - Add code climate compatible output - FEATURE REQUEST
• #730 - Use privkweihmann/yocto-sca-minimal:latest container for building - CI,FEATURE REQUEST
• #743 - Set correct upstream check settings for various packages - CI,FEATURE REQUEST
• #777 - add UPSTREAM_CHECK_COMMITS to non-tag git repos - CI,FEATURE REQUEST

Updates

• #527 - Update nodejs-native to 10.18.1 - PACKAGE UPDATE
• #551 - Update pyright to 1.1.19 - PACKAGE UPDATE
• #552 - Update revive to 1.0.1 - PACKAGE UPDATE
• #554 - Update phan to 2.4.6 - PACKAGE UPDATE
• #560 - Update eslint-plugin-vue to 6.1.2 - PACKAGE UPDATE
• #563 - Update checkbashism-native to 2.19.7 - PACKAGE UPDATE
• #564 - Update perl-b-keywords-native to 1.21 - PACKAGE UPDATE
• #567 - Update sparse to 0.6.1 - PACKAGE UPDATE
• #568 - Update kconfig-hardened-check to 0.5.3 - PACKAGE UPDATE
• #569 - Update multimetric to 1.1.1 - PACKAGE UPDATE
• #570 - Update systemdlint to 1.1.6 - PACKAGE UPDATE
• #575 - Update github.com-fatih-color to 1.9.0 - PACKAGE UPDATE
• #596 - Update python3-darglint-native to 1.0.0 - PACKAGE UPDATE
• #598 - Update python3-detect-secrets-native to 0.13.0 - PACKAGE UPDATE
• #617 - Update python3-mypy-native to 0.761 - PACKAGE UPDATE
• #629 - Update python3-pylint-native to 2.4.4 - PACKAGE UPDATE
• #631 - Update python3-pytype-native to 2019.12.17 - PACKAGE UPDATE
• #634 - Update python3-setuptools-lint-native to 0.6.0 - PACKAGE UPDATE
• #642 - Update python3-yamllint-native to 1.20.0 - PACKAGE UPDATE
• #648 - Update python3-astor-native to 0.8.1 - PACKAGE UPDATE
• #650 - Update python3-flake-bugbear to 20.1.2 - PACKAGE UPDATE
• #651 - Update python3-packaging-native to 20.0 - PACKAGE UPDATE
• #652 - Update phpstan to 0.12.4 - PACKAGE UPDATE
• #653 - Update textlint to 11.6.1 - PACKAGE UPDATE
• #661 - Update github.com-mvdan-sh-native to 3.0.1 - PACKAGE UPDATE
• #664 - Update python-mypy-extensions-native to 0.4.3 - PACKAGE UPDATE
• #668 - Update python-more-itertools-native to 8.1.0 - PACKAGE UPDATE
• #669 - Update styelint to 13.0.0 - PACKAGE UPDATE
• #670 - Update phpstan to 0.12.6 - PACKAGE UPDATE
• #672 - Update perl-perl-tidy-native to 20200110 - PACKAGE UPDATE
• #673 - Update perl-term-ansicolor-native to 5.00 - PACKAGE UPDATE
• #674 - Update python3-pydocstyle-native to 5.0.2 - PACKAGE UPDATE
• #675 - Update python3-pytype-native to 2020.1.8 - PACKAGE UPDATE
• #676 - Update python3-pyyaml-native to 5.3 - PACKAGE UPDATE
• #677 - Update pyright to 1.1.21 - PACKAGE UPDATE
• #678 - Update jshint to 2.11.0 - PACKAGE UPDATE
• #680 - Update textlint-rule-stop-words to 2.0.0 - PACKAGE UPDATE
• #681 - Update php-composer to 1.9.2 - PACKAGE UPDATE
• #685 - Update python3-anytree to 2.8.0 - PACKAGE UPDATE
• #689 - Update python-pytest to 5.3.4 - PACKAGE UPDATE
• #695 - Update ropgadget to 6.0 - PACKAGE UPDATE
• #697 - Update phan to 2.4.7 - PACKAGE UPDATE
• #698 - Update python-flake8-2020-native to 1.5.0 - PACKAGE UPDATE
• #704 - Update python3-packaging-native to 20.1 - PACKAGE UPDATE
• #707 - Update perl-path-tiny-native to 0.110 - PACKAGE UPDATE
• #708 - Update perl-ppix-regexp-native to 0.068 - PACKAGE UPDATE
• #709 - Update perl-term-ansicolor-native to 5.01 - PACKAGE UPDATE
• #710 - Update python3-coverage-native to 5.0.3 - PACKAGE UPDATE
• #711 - Update python3-docutils-native to 0.16 - PACKAGE UPDATE
• #712 - Update python3-flake8-comprehensions-native to 3.2.2 - PACKAGE UPDATE
• #713 - Update python3-ruamelyaml-native to 0.16.6 - PACKAGE UPDATE
• #714 - Update python3-six-native to 1.14.0 - PACKAGE UPDATE
• #715 - Update python3-zipp-native to 2.0.0 - PACKAGE UPDATE
• #716 - Update python3-wemake-python-styleguide-native to 0.13.4 - PACKAGE UPDATE
• #720 - Update phan to 2.4.8 - PACKAGE UPDATE
• #723 - Update setuptools_scm to 3.4.3 - PACKAGE UPDATE
• #727 - Update phpstan to 0.12.8 - PACKAGE UPDATE
• #729 - Update textlint-rule-terminology to 2.0.3 - PACKAGE UPDATE
• #733 - Update python3-flake8-bugbear-native to 20.1.4 - PACKAGE UPDATE
• #734 - Update python3-jinja2 to 2.11.1 - PACKAGE UPDATE
• #735 - Update python-more-itertools to 8.2.0 - PACKAGE UPDATE
• #736 - Update python-pytest to 5.3.5 - PACKAGE UPDATE
• #737 - Update github.com-golang-protobuf to 1.3.3 - PACKAGE UPDATE
• #738 - Update gosec to 2.2.0 - PACKAGE UPDATE
• #745 - Update checkbashism-native to 2.20.1 - PACKAGE UPDATE
• #748 - Update github.com-kr-pretty-native to 0.2.0 - PACKAGE UPDATE
• #749 - Update github.com-kr-pty-native to 1.1.8 - PACKAGE UPDATE
• #750 - Update github.com-mattn-go-colorable-native to 0.1.4 - PACKAGE UPDATE
• #751 - Update github.com-mattn-go-isatty-native to 0.0.12 - PACKAGE UPDATE
• #752 - Update github.com-mattn-go-runewidth-native to 0.0.8 - PACKAGE UPDATE
• #753 - Update github.com-olekukonko-tablewriter-native to 0.0.4 - PACKAGE UPDATE
• #754 - Update github.com-pkg-errors-native to 0.9.1 - PACKAGE UPDATE
• #755 - Update gopkg.in-yaml.v2-native to 2.2.8 - PACKAGE UPDATE
• #756 - Update libtalloc-native to 2.3.1 - PACKAGE UPDATE
• #757 - Update nodejs-native to 12.14.1 - PACKAGE UPDATE
• #759 - Update perl-path-tiny-native to 0.112 - PACKAGE UPDATE
• #760 - Update perl-ppix-regexp-native to 0.068.01 - PACKAGE UPDATE
• #761 - Update php-ast-native to 1.0.5 - PACKAGE UPDATE
• #762 - Update phpcodesniffer-native to 3.5.4 - PACKAGE UPDATE
• #763 - Update python3-ansible to 2.9.4 - PACKAGE UPDATE
• #767 - Update python3-pytype-native to 2020.1.24 - PACKAGE UPDATE
• #768 - Update python3-radon-native to 4.1.0 - PACKAGE UPDATE
• #769 - Update python3-ruamelyaml-native to 0.16.7 - PACKAGE UPDATE
• #770 - Update python3-testfixtures-native to 6.11.0 - PACKAGE UPDATE
• #772 - Update python3-wheel-native to 0.34.2 - PACKAGE UPDATE
• #773 - Update qemu-static-native to 4.2.0 - PACKAGE UPDATE
• #774 - Update standard-native to 14.3.1 - PACKAGE UPDATE
• #776 - Update yara-native to 3.11.0 - PACKAGE UPDATE
• #779 - Update eslint-plugin-unicorn to 16.1.0 - PACKAGE UPDATE
• #780 - Update github.com-go-check-check-native to 41f04d3bba152ddec2103e299fed053415705330 - PACKAGE UPDATE
• #781 - Update github.com-mgechev-dots-native to c36f7dcfbb81d2220bbddabf29c757c861c3e4d8 - PACKAGE UPDATE
• #784 - Update shellcheck to shellcheck_0.7.0-2+b1 - PACKAGE UPDATE
• #788 - Update cpplint-native to 1.4.5 - PACKAGE UPDATE
• #793 - Update ansible-konstruktoid-ansible-role-hardening to d7977388a84b3b43162959b4a4f836cb33e5eb2d - PACKAGE UPDATE
• #799 - Update composer-native to b5a70434f0f582468a7824418553defaf67d5299 - PACKAGE UPDATE
• #802 - Update checkbashism-native to 2.20.2 - PACKAGE UPDATE
• #803 - Update luarocks-native to 3.3.0 - PACKAGE UPDATE
• #804 - Update mvdan.cc-editorconfig-native to e40951bde157136dcd6f65b73d541e5c2860cb77 - PACKAGE UPDATE
• #805 - Update nodejs-native to 12.15.0 - PACKAGE UPDATE
• #806 - Update perl-critic-native to 1.138 - PACKAGE UPDATE
• #807 - Update perl-list-utils-native to 1.54 - PACKAGE UPDATE
• #808 - Update phpstan-native to 0.12.9 - PACKAGE UPDATE
• #809 - Update proot-native to 5c05acf72801642d50b6b9c57a0898bc6a7183d1 - PACKAGE UPDATE
• #810 - Update python3-darglint-native to 1.1.3 - PACKAGE UPDATE
• #812 - Update python3-oelint-adv-native to 1.9.0 - PACKAGE UPDATE
• #814 - Update python3-testfixtures-native to 6.12.0 - PACKAGE UPDATE
• #815 - Update python3-vulture-native to 1.3 - PACKAGE UPDATE
• #817 - Update sudokiller to eef689995d3ee9f2ddf4b1a5237387fca05954c0 - PACKAGE UPDATE
• #818 - Update tbb-native to 75224c4c1f3c0b8b44eacf86118d142586d28ac0 - PACKAGE UPDATE
• #821 - Update python3-flake8-bandit-native to 2.1.2 - PACKAGE UPDATE
• #822 - Update python3-importlib-metadata-native to 1.5.0 - PACKAGE UPDATE
• #823 - Update python3-pytype-native to 2020.2.6 - PACKAGE UPDATE
• #824 - Update python3-typed-ast-native to 1.4.1 - PACKAGE UPDATE
• #825 - Update python3-typing-extensions-native to 3.7.4.1 - PACKAGE UPDATE
• #826 - Update reek-native to 5.6.0 - PACKAGE UPDATE
• #827 - Update ruby-parser-native to 2.7.0.2 - PACKAGE UPDATE
• #828 - Update sudokiller to a9ac9bfe7cd6482a5f5d4414e5cdaff9927d12f5 - PACKAGE UPDATE
• #830 - Update luarocks-native to 3.3.1 - PACKAGE UPDATE
• #831 - Update textlint-rule-stop-words to 2.0.1 - PACKAGE UPDATE
• #834 - Update github.com-mozilla-tls-observatory-native to 948bf11ba2ca84e57b66c74aa25b894c3762d79b - PACKAGE UPDATE
• #835 - Update python3-cffi-native to 1.14.0 - PACKAGE UPDATE
• #836 - Update python3-oelint-adv-native to 1.10.0 - PACKAGE UPDATE
• #837 - Update python3-systemdlint-native to 1.1.7 - PACKAGE UPDATE
• #838 - Update python3-tlv-native to 1.0.1 - PACKAGE UPDATE
• #843 - Update perl-ppix-regexp-native to 0.069 - PACKAGE UPDATE
• #844 - Update python3-gitpython-native to 3.0.7 - PACKAGE UPDATE
• #845 - Update stylelint-native to 13.1.0 - PACKAGE UPDATE
• #846 - Update python3-multimetric-native to 1.1.3 - PACKAGE UPDATE
• #851 - Update python3-stevedore-native to 1.32.0 - PACKAGE UPDATE
• #852 - Update python3-oelint-adv-native to 1.11.0 - PACKAGE UPDATE
• #853 - Update ansible-konstruktoid-ansible-role-hardening to a0e895045bde22654ea0a6cccce4d3016f7deb50 - PACKAGE UPDATE
• #854 - Update nodejs-native to 12.16.0 - PACKAGE UPDATE
• #855 - Update python3-bashate-native to 1.0.0 - PACKAGE UPDATE
• #856 - Update python3-ruamelyaml-native to 0.16.9 - PACKAGE UPDATE
• #860 - Update sudokiller to 93ef0d4bb20638a1926ed2a7677bdf35cdfb6a0c - PACKAGE UPDATE
• #861 - Update phpstan-native to 0.12.10 - PACKAGE UPDATE
• #862 - Update python3-ruamelyaml-native to 0.16.10 - PACKAGE UPDATE
• #863 - Update phan-native to 2.4.9 - PACKAGE UPDATE
• #864 - Update proot-native to 25c925e6a4234de070e96d97b2a426304d2e07d7 - PACKAGE UPDATE
• #865 - Update python3-ansible to 2.9.5 - PACKAGE UPDATE
• #866 - Update python3-setuptools-scm-native to 3.5.0 - PACKAGE UPDATE

Bugfixes

• #646 - wemake-python-styleguide requires radon - BUG
• #647 - python-cohesion doesn't work properly - BUG
• #659 - Dependencies for oelint are missing - BUG
• #662 - enchant was replaced by enchant2 - BUG
• #663 - Flawfinder has issues with non utf-8 input - BUG
• #665 - Remove all RDEPENDS from the native tools - BUG
• #666 - cspell config is stored in global TOPDIR - BUG
• #667 - mypy cache dir is in TOPDIR - BUG
• #683 - tiger git has changed - BUG
• #690 - host contermination by ansible - BUG
• #693 - libtalloc is broken - BUG
• #699 - setuptoollint does export any issues - BUG
• #700 - remove module limitation from bad-python-reqs - BUG
• #701 - [master] pytype doesn't support python 3.8 - BUG
• #703 - kconfighard doesn't produce findings in CI - BUG
• #722 - sudokiller isn't buildable - package error on 32bit machine - BUG
• #725 - Further packaging issues with sudokiller in CI - BUG
• #732 - Pipelines are broken - CI,BUG
• #739 - Composer contaminates host - BUG
• #740 - pyenchant doesn't build - BUG
• #746 - Fix tag lookup at cspell-native - BUG
• #758 - Fix tag regex for perl-critic-native - BUG
• #771 - Fix version lookup for python3-urllib3-native - BUG
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #789 - Upstream check for cbmc fails - BUG
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #797 - Further fixes for upstream check - CI,BUG
• #800 - phpstan sometimes doesn't report line numbers - BUG
• #819 - Fix upstream check for leftover broken recipes - BUG
• #820 - Build isn't properly terminated within given time - CI,BUG
• #841 - Ansiblelint module conterminates host - BUG
• #842 - Standard does conterminate host - BUG
• #847 - No ID entry for certain findings from rats - BUG
• #848 - Reporting issues for standard - BUG
• #849 - jsonlint reporting issues - BUG
• #850 - Exception: FileNotFoundError: [Errno 2] No such file or directory: work/yocto-tmp/image/work/congatec_tca5_64-poky-linux/plcs-image/1.0-r0/work_upc/recipe-sysroot-native/etc/apt/apt.conf.sample' - BUG
• #857 - Fullpath shown for standard parser error findings - BUG
• #858 - flawfinder reporting is broken - BUG

Misc

• #686 - Run cppcheck in parallel - C/C++,ENHANCEMENT
• #705 - Remove testing for proselint results at python3-git - CI,ENHANCEMENT
• #706 - sca_filter_files is very slow - ENHANCEMENT
• #785 - oelint reports line count 0 for some items - BUG,ENHANCEMENT
• #786 - cpplint reports line count 0 - BUG,ENHANCEMENT
• #787 - flake8 reports findings with line count 0 - BUG,ENHANCEMENT
• #792 - pyright reports line count 0 - BUG,ENHANCEMENT
• #795 - Disable some more checks of nixaudtor - ENHANCEMENT
• #796 - Disable init001e rule of tiger by default - ENHANCEMENT
• #798 - Remove unnecessary scripts from non-staging branches - ENHANCEMENT
• #811 - Switch python3-jinja2 to git fetcher - ENHANCEMENT
• #813 - Fix python3-snowballstemmer-native to stop using SRCREV - ENHANCEMENT
• #832 - Lower build runtime to 5:35h - CI,ENHANCEMENT
• #840 - Tag naming is not correct in SECURITY.md - DOCUMENTATION,ENHANCEMENT

Thanks

@MehdiKarimi786

Notes

This is the initial tag release for sumo.
Please keep in mind that in comparison to thud and later releases the functionality and support is limited.
See README.md for details

Reminder

Pull requests for bugs and package updates are welcome

Notes

This is the initial tag release for rocko.
Please keep in mind that in comparison to thud and later releases the functionality and support is limited.
See README.md for details

Reminder

Pull requests for bugs and package updates are welcome

Notes

This is the initial tag release for pyro.
Please keep in mind that in comparison to thud and later releases the functionality and support is limited.
See README.md for details

Reminder

Pull requests for bugs and package updates are welcome

Notes

This is the initial tag release for krogoth.
Please keep in mind that in comparison to thud and later releases the functionality and support is limited.
See README.md for details

Reminder

Pull requests for bugs and package updates are welcome

Main features / Important changes

• PERL(5) support
• security related PHP tools
• cqmetric and radon module have been superseded by multimetric module
  • if you somehow referenced cqmetric and/or radon manually, please replace that by multimetric before starting a new build
• ikos has different version depending on the core layer
  • as ikos requires a specific version of LLVM/clang, the layer ships the matching version. This also implies that behavior/feature set might differ between release layer

New

• #389 - configcheck: check further application configuration files (part 2)
• #467, #471 - PHP_CodeSniffer
• #470 - PHPMD
• #489 - perlcritic
• #490 - Perl5
• #509 - jshint
• #511 - setuptools-lint
• #532 - multimetric

Updates

• [master, zeus] #514 - Update ikos to 3.0
• [thud] #515 - Downgrade ikos to 2.1
• #418 - Update ansiblelint to 4.2.0
• #480 - Update eslint-plugin-react to 7.17.0
• #481 - Update textlint-rule-no-dead-link to 4.6.2
• #483, #538 - Update eslint-plugin-unicorn to 15.0.1
• #484, #501 - Update python-more-itertools to 8.0.2
• #485, #499, #508, #516, #529, #535, #541, #545 - Update pyright to 1.1.15
• #486, #533 - Update eslint to 6.8.0
• #487 - Update systemdlint to 1.1.5
• #488 - Update python-ddt to 1.2.2
• #496 - Update python-flake8-quotes to 2.1.1
• #498, #507, #517 - Update phpstan to 0.12.3
• #500 - Update go-structtag to 1.2.0
• #505 - Update python-anytree to 2.7.3
• #506 - Update python-configargparse to 0.15.2
• #510 - Update nodejs-native to 10.17.0
• #512 - Update phan to 2.4.5
• #518 - Update python-pytest to 5.3.2
• #522 - Update github.com-mvdan-sh-native to 3.0.0
• #523 - Update phpcodefixer to 2.0.23
• #526 - Update flake8-eradicate to 0.2.4
• #528 - Update github.com-lib-pq to 1.3.0
• #531 - Update qemu-static to 4.1.0
• #534 - Update cppcheck to 1.90
• #536 - Update python-pygments to 2.5.2
• #540 - Update textlint-rule-stop-words to 1.0.18
• #544 - Update python-pyparsing to 2.4.6
• #546 - Update stylelint to 12.0.1
• #547 - Update eslint-plugin-node to 11.0.0
• #548, #550 - Update eslint-plugin-vue to 6.1.1

Bugfixes

• [master, zeus] #513 - Switch to NVD feed 1.1 breaks cve-check integration
• [thud] #525 - new cvecheck got backported
• [zeus] #524 - cve-check integration from master was merged in poky

Main features / Important changes

• PERL(5) support
• security related PHP tools
• cqmetric and radon module have been superseded by multimetric module
  • if you somehow referenced cqmetric and/or radon manually, please replace that by multimetric before starting a new build
• ikos has different version depending on the core layer
  • as ikos requires a specific version of LLVM/clang, the layer ships the matching version. This also implies that behavior/feature set might differ between release layer

New

• #389 - configcheck: check further application configuration files (part 2)
• #467, #471 - PHP_CodeSniffer
• #470 - PHPMD
• #489 - perlcritic
• #490 - Perl5
• #509 - jshint
• #511 - setuptools-lint
• #532 - multimetric

Updates

• [master, zeus] #514 - Update ikos to 3.0
• [thud] #515 - Downgrade ikos to 2.1
• #418 - Update ansiblelint to 4.2.0
• #480 - Update eslint-plugin-react to 7.17.0
• #481 - Update textlint-rule-no-dead-link to 4.6.2
• #483, #538 - Update eslint-plugin-unicorn to 15.0.1
• #484, #501 - Update python-more-itertools to 8.0.2
• #485, #499, #508, #516, #529, #535, #541, #545 - Update pyright to 1.1.15
• #486, #533 - Update eslint to 6.8.0
• #487 - Update systemdlint to 1.1.5
• #488 - Update python-ddt to 1.2.2
• #496 - Update python-flake8-quotes to 2.1.1
• #498, #507, #517 - Update phpstan to 0.12.3
• #500 - Update go-structtag to 1.2.0
• #505 - Update python-anytree to 2.7.3
• #506 - Update python-configargparse to 0.15.2
• #510 - Update nodejs-native to 10.17.0
• #512 - Update phan to 2.4.5
• #518 - Update python-pytest to 5.3.2
• #522 - Update github.com-mvdan-sh-native to 3.0.0
• #523 - Update phpcodefixer to 2.0.23
• #526 - Update flake8-eradicate to 0.2.4
• #528 - Update github.com-lib-pq to 1.3.0
• #531 - Update qemu-static to 4.1.0
• #534 - Update cppcheck to 1.90
• #536 - Update python-pygments to 2.5.2
• #540 - Update textlint-rule-stop-words to 1.0.18
• #544 - Update python-pyparsing to 2.4.6
• #546 - Update stylelint to 12.0.1
• #547 - Update eslint-plugin-node to 11.0.0
• #548, #550 - Update eslint-plugin-vue to 6.1.1

Bugfixes

• [master, zeus] #513 - Switch to NVD feed 1.1 breaks cve-check integration
• [thud] #525 - new cvecheck got backported
• [zeus] #524 - cve-check integration from master was merged in poky

Main features / Important changes

• PERL(5) support
• security related PHP tools
• cqmetric and radon module have been superseded by multimetric module
  • if you somehow referenced cqmetric and/or radon manually, please replace that by multimetric before starting a new build
• ikos has different version depending on the core layer
  • as ikos requires a specific version of LLVM/clang, the layer ships the matching version. This also implies that behavior/feature set might differ between release layer

New

• #389 - configcheck: check further application configuration files (part 2)
• #467, #471 - PHP_CodeSniffer
• #470 - PHPMD
• #489 - perlcritic
• #490 - Perl5
• #509 - jshint
• #511 - setuptools-lint
• #532 - multimetric

Updates

• [master, zeus] #514 - Update ikos to 3.0
• [thud] #515 - Downgrade ikos to 2.1
• #418 - Update ansiblelint to 4.2.0
• #480 - Update eslint-plugin-react to 7.17.0
• #481 - Update textlint-rule-no-dead-link to 4.6.2
• #483, #538 - Update eslint-plugin-unicorn to 15.0.1
• #484, #501 - Update python-more-itertools to 8.0.2
• #485, #499, #508, #516, #529, #535, #541, #545 - Update pyright to 1.1.15
• #486, #533 - Update eslint to 6.8.0
• #487 - Update systemdlint to 1.1.5
• #488 - Update python-ddt to 1.2.2
• #496 - Update python-flake8-quotes to 2.1.1
• #498, #507, #517 - Update phpstan to 0.12.3
• #500 - Update go-structtag to 1.2.0
• #505 - Update python-anytree to 2.7.3
• #506 - Update python-configargparse to 0.15.2
• #510 - Update nodejs-native to 10.17.0
• #512 - Update phan to 2.4.5
• #518 - Update python-pytest to 5.3.2
• #522 - Update github.com-mvdan-sh-native to 3.0.0
• #523 - Update phpcodefixer to 2.0.23
• #526 - Update flake8-eradicate to 0.2.4
• #528 - Update github.com-lib-pq to 1.3.0
• #531 - Update qemu-static to 4.1.0
• #534 - Update cppcheck to 1.90
• #536 - Update python-pygments to 2.5.2
• #540 - Update textlint-rule-stop-words to 1.0.18
• #544 - Update python-pyparsing to 2.4.6
• #546 - Update stylelint to 12.0.1
• #547 - Update eslint-plugin-node to 11.0.0
• #548, #550 - Update eslint-plugin-vue to 6.1.1

Bugfixes

• [master, zeus] #513 - Switch to NVD feed 1.1 breaks cve-check integration
• [thud] #525 - new cvecheck got backported
• [zeus] #524 - cve-check integration from master was merged in poky

Main features / Important changes

• PERL(5) support
• security related PHP tools
• cqmetric and radon module have been superseded by multimetric module
  • if you somehow referenced cqmetric and/or radon manually, please replace that by multimetric before starting a new build
• ikos has different version depending on the core layer
  • as ikos requires a specific version of LLVM/clang, the layer ships the matching version. This also implies that behavior/feature set might differ between release layer

New

• #389 - configcheck: check further application configuration files (part 2)
• #467, #471 - PHP_CodeSniffer
• #470 - PHPMD
• #489 - perlcritic
• #490 - Perl5
• #509 - jshint
• #511 - setuptools-lint
• #532 - multimetric

Updates

• [master, zeus] #514 - Update ikos to 3.0
• [thud] #515 - Downgrade ikos to 2.1
• #418 - Update ansiblelint to 4.2.0
• #480 - Update eslint-plugin-react to 7.17.0
• #481 - Update textlint-rule-no-dead-link to 4.6.2
• #483, #538 - Update eslint-plugin-unicorn to 15.0.1
• #484, #501 - Update python-more-itertools to 8.0.2
• #485, #499, #508, #516, #529, #535, #541, #545 - Update pyright to 1.1.15
• #486, #533 - Update eslint to 6.8.0
• #487 - Update systemdlint to 1.1.5
• #488 - Update python-ddt to 1.2.2
• #496 - Update python-flake8-quotes to 2.1.1
• #498, #507, #517 - Update phpstan to 0.12.3
• #500 - Update go-structtag to 1.2.0
• #505 - Update python-anytree to 2.7.3
• #506 - Update python-configargparse to 0.15.2
• #510 - Update nodejs-native to 10.17.0
• #512 - Update phan to 2.4.5
• #518 - Update python-pytest to 5.3.2
• #522 - Update github.com-mvdan-sh-native to 3.0.0
• #523 - Update phpcodefixer to 2.0.23
• #526 - Update flake8-eradicate to 0.2.4
• #528 - Update github.com-lib-pq to 1.3.0
• #531 - Update qemu-static to 4.1.0
• #534 - Update cppcheck to 1.90
• #536 - Update python-pygments to 2.5.2
• #540 - Update textlint-rule-stop-words to 1.0.18
• #544 - Update python-pyparsing to 2.4.6
• #546 - Update stylelint to 12.0.1
• #547 - Update eslint-plugin-node to 11.0.0
• #548, #550 - Update eslint-plugin-vue to 6.1.1

Bugfixes

• [master, zeus] #513 - Switch to NVD feed 1.1 breaks cve-check integration
• [thud] #525 - new cvecheck got backported
• [zeus] #524 - cve-check integration from master was merged in poky

Main features / Important changes

• This release is mainly to address very important (or long known) issues, see Bugfixs section for details
• the other 'big things' are
  • console output - a new output format, which can be activated in exchange for checkstyle format (see #462 for details)
  • common suppression format - a common way to suppress single findings across the whole layer (see #463 for details)
  • optional layer don't require any manual steps, when to work (see #468 for details)
• Enhanced eslint with a lot of useful extension modules, which greatly improves the quality of the tool's findings
• As promised in the milestone planning, pyright is now included
• Added a new image auditing tool: Nix-Auditor
• Added a very limited (in terms of scope) but very useful tool, pscan, which adds checks for the error prone usage of printf-style functions
• Disable cvecheck by default, as this lead to frequent rebuilds of all affected recipes. If you need the functionality you can still enable it manually (see #476 for details)
• Improved the documentation

New

• #287 - Add pyright as tool
• #453 - Add some more useful eslint plugins
• #455 - Nix-Auditor
• #457 - pscan
• #462 - Console export
• #463 - Generalized finding suppression

Updates

• #452, #461 - Update eslint to 6.7.1
• #454, #475 - Update pyright to 1.1.6
• #460 - Update phan to 2.4.4
• #469 - Update python-pytest to 5.3.1
• #474 - Update shellcheck to 0.7.0-2

Bugfixes

• #372 - SCA tasks are run despite no source changes
• #468 - Use BBFILES_DYNAMIC instead of dummy recipes
• #476 - Disable cvecheck by default
• All few fixed around the topic of CI
• Fixed a few inconsistencies across all branches

Main features / Important changes

• This release is mainly to address very important (or long known) issues, see Bugfixs section for details
• the other 'big things' are
  • console output - a new output format, which can be activated in exchange for checkstyle format (see #462 for details)
  • common suppression format - a common way to suppress single findings across the whole layer (see #463 for details)
  • optional layer don't require any manual steps, when to work (see #468 for details)
• Enhanced eslint with a lot of useful extension modules, which greatly improves the quality of the tool's findings
• As promised in the milestone planning, pyright is now included
• Added a new image auditing tool: Nix-Auditor
• Added a very limited (in terms of scope) but very useful tool, pscan, which adds checks for the error prone usage of printf-style functions
• Disable cvecheck by default, as this lead to frequent rebuilds of all affected recipes. If you need the functionality you can still enable it manually (see #476 for details)
• Improved the documentation

New

• #287 - Add pyright as tool
• #453 - Add some more useful eslint plugins
• #455 - Nix-Auditor
• #457 - pscan
• #462 - Console export
• #463 - Generalized finding suppression

Updates

• #452, #461 - Update eslint to 6.7.1
• #454, #475 - Update pyright to 1.1.6
• #460 - Update phan to 2.4.4
• #469 - Update python-pytest to 5.3.1
• #474 - Update shellcheck to 0.7.0-2

Bugfixes

• #372 - SCA tasks are run despite no source changes
• #468 - Use BBFILES_DYNAMIC instead of dummy recipes
• #476 - Disable cvecheck by default
• All few fixed around the topic of CI
• Fixed a few inconsistencies across all branches

Main features / Important changes

• This release is mainly to address very important (or long known) issues, see Bugfixs section for details
• the other 'big things' are
  • console output - a new output format, which can be activated in exchange for checkstyle format (see #462 for details)
  • common suppression format - a common way to suppress single findings across the whole layer (see #463 for details)
  • optional layer don't require any manual steps, when to work (see #468 for details)
• Enhanced eslint with a lot of useful extension modules, which greatly improves the quality of the tool's findings
• As promised in the milestone planning, pyright is now included
• Added a new image auditing tool: Nix-Auditor
• Added a very limited (in terms of scope) but very useful tool, pscan, which adds checks for the error prone usage of printf-style functions
• Disable cvecheck by default, as this lead to frequent rebuilds of all affected recipes. If you need the functionality you can still enable it manually (see #476 for details)
• Improved the documentation

New

• #287 - Add pyright as tool
• #453 - Add some more useful eslint plugins
• #455 - Nix-Auditor
• #457 - pscan
• #462 - Console export
• #463 - Generalized finding suppression

Updates

• #452, #461 - Update eslint to 6.7.1
• #454, #475 - Update pyright to 1.1.6
• #460 - Update phan to 2.4.4
• #469 - Update python-pytest to 5.3.1
• #474 - Update shellcheck to 0.7.0-2

Bugfixes

• #372 - SCA tasks are run despite no source changes
• #468 - Use BBFILES_DYNAMIC instead of dummy recipes
• #476 - Disable cvecheck by default
• All few fixed around the topic of CI
• Fixed a few inconsistencies across all branches

Main features / Important changes

• This release is mainly to address very important (or long known) issues, see Bugfixs section for details
• the other 'big things' are
  • console output - a new output format, which can be activated in exchange for checkstyle format (see #462 for details)
  • common suppression format - a common way to suppress single findings across the whole layer (see #463 for details)
  • optional layer don't require any manual steps, when to work (see #468 for details)
• Enhanced eslint with a lot of useful extension modules, which greatly improves the quality of the tool's findings
• As promised in the milestone planning, pyright is now included
• Added a new image auditing tool: Nix-Auditor
• Added a very limited (in terms of scope) but very useful tool, pscan, which adds checks for the error prone usage of printf-style functions
• Disable cvecheck by default, as this lead to frequent rebuilds of all affected recipes. If you need the functionality you can still enable it manually (see #476 for details)
• Improved the documentation

New

• #287 - Add pyright as tool
• #453 - Add some more useful eslint plugins
• #455 - Nix-Auditor
• #457 - pscan
• #462 - Console export
• #463 - Generalized finding suppression

Updates

• #452, #461 - Update eslint to 6.7.1
• #454, #475 - Update pyright to 1.1.6
• #460 - Update phan to 2.4.4
• #469 - Update python-pytest to 5.3.1
• #474 - Update shellcheck to 0.7.0-2

Bugfixes

• #372 - SCA tasks are run despite no source changes
• #468 - Use BBFILES_DYNAMIC instead of dummy recipes
• #476 - Disable cvecheck by default
• All few fixed around the topic of CI
• Fixed a few inconsistencies across all branches

Main features

• dedicated release branches
  • for each poky release since thud there is a dedicated branch of this layer
  • If a change affects only a few of the branches, it will be highlighted with [branch name]
• CI
• zeus compatibility
• lua language support
• pre-packed dependencies for NPM and composer based modules. This should heavily reduce build time

Important changes

• [master, zeus, warrior] cvecheck module is working again
• [master, zeus] ansible-lint is currently disabled, as it isn't currently buildable with the underlying poky release
• [master, zeus, thud] mind the slightly different requirements when using layer in combination with meta-clang. See branch README for details
• [thud] gosec module is disabled by default, as it requires a newer version of go, as available in thud-poky
• oclint module was removed. A stub-recipe still exists, which will warn you about this fact, in case you manually had enabled this module

New

• #119 - luacheck
• #421 - msgcheck
• #444 - slick

Updates

• #390 - Update textlint-rule-no-nfd to 1.0.2
• #392, #395, #400 - Update phpstan to 0.11.19
• #393, #406, #413, #424, #450 - Update phan to 2.4.3
• #402, #436, #447 - Update python-pytest to 5.3.0
• #404 - Update eslint to 6.6.0
• #407 - Update python-black to 19.10b0
• #409 - Update ropgadget to 5.9
• #410 - Update composer to 1.9.1
• #411 - Update textlint to 11.5.0
• #415, #420, #428 - Update python-pyparsing to 2.4.5
• #431, #432 - Update systemdlint to 1.1.3
• #434 - Update phpcodefixer to 2.0.21
• #437 - Update stylelint to 12.0.0
• #439 - Update oelint-adv to 1.8.0

Bugfixes

• #408 - Unbuildable dependency for 'core-image-minimal'
• #414 - SDK setting of scatest distro throws error on zeus
• #425 - gosec isn't working for thud
• #433 - Syntax issue in clang integration
• #448 - ImportError: The 'enchant' C library was not found
• Fix xmllint suppress

Thanks

@CarstenHansenHBK, @RobertBerger, @ptsarath