v1.1.3

What's Changed

• ➕ comment a PR even if there are no vulns by @acidjazz in #53

Full Changelog: v1.1.2...v1.1.3

v1.1.2

What's Changed

• ♻️ switch to updated binary by @acidjazz in #51

Full Changelog: v1.1.1...v1.1.2

v1.1.1

What's Changed

• ✨ cve details setting by @acidjazz in #33
• 🚧 harness npm ls by @acidjazz in #39

New option scan-cve-npm-rel will run an npm ls on package@version for any CVES to show that packages parents through annotations

Full Changelog: v1.1.0...v1.1.1

v1.1.0

What's Changed

• ✨ cve details setting by @acidjazz in #33

A new optional parameter has been added for scans: scan-cve-details

This will include an annotation for every found CVE showing package type, cataloger, and locations, below is an example output

Notice: CVE-2021-23337 found in npm package lodash in /package-lock.json using javascript-lock-cataloger
Notice: CVE-2021-44906 found in npm package minimist in /package-lock.json using javascript-lock-cataloger

Full Changelog: v1.0.4...v1.1.0

v1.0.4

What's Changed

• 💚 table module and more test coverage by @acidjazz in #23
• ✨ add link support for table headers - link KEV to VulnCheck KEV by @acidjazz in #24

Full Changelog: v1.0.3...v1.0.4

In KEV field and separate tables for thresholds

What's Changed

• ⬆️ general dep updates by @acidjazz in #20
• ♻️ show separate tables for thresholds vs undelrine by @acidjazz in #21
• Show new In Kev field from CLI v0.3.7 - displays if the vuln is in the VulnCheck KEV by @acidjazz in #22

Full Changelog: v1.0.2...v1.0.3

specify scan folder

What's Changed

• ✨ ability to specify the scan path by @acidjazz in #17

Full Changelog: v1.0.1...v1.0.2

Initial marketplace release

Initial release of the VulnCheck Action

Initial Release

What's Changed

• 💚 thresholds take 1 by @acidjazz in #11
• 🎨 readme update by @acidjazz in #12

New Contributors

• @acidjazz made their first contribution in #3
• @dependabot made their first contribution in #2

Full Changelog: https://github.com/vulncheck-oss/action/commits/v1.0.0