07 Nov 05:50

sumitsuthar

c0dab24

v2.1.1 Latest

Latest

v2.1.1 (2024-11-07)

Bug fixes

Fix for assignment to logger constant (#266)

Support statement:

New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

Assets 2

05 Nov 16:08

sumitsuthar

v2.1.0

e533cab

v2.1.0

v2.1.0 (2024-11-05)

Features

IAST support for CI/CD (#247)
Support for IAST schedule, delay and ignore scan categories (#259)

Bug fixes

Added default values for scan_schedule, scan_controllers and exclude_from_iast_scan config (#262)
Fix for security home placeholder replacement in fuzz requests (#256)
Handling to not resolve file path in fs module instrumentation (#257)
Fix for batch size and condition of iast-data-request sending (#264)

Miscellaneous chores

Added requestURI field in http request for application-runtime-error (#258)
Updated instrumented to get the transaction directly instead of from the active segment (#261)

Support statement:

Assets 2

20 Sep 10:43

sumitsuthar

v2.0.0

a5602db

v2.0.0

v2.0.0 (2024-09-20)

⚠ BREAKING CHANGES

Dropped support for Node.js v16
Dropped functionality to generate snapshot file

Features

Support to honour proxy settings via config (#236)
Support for secure cookie security event generation (#220)
Report error to Error Inbox upon connection failure to Security Engine (#248)
Support to detect application and server path (#224)
Functionality to truncate Incoming HTTP request upto default limit (#119)
Dropped support for Node.js v16 (#240)
Dropped functionality to generate snapshot file (#241)

Bug fixes

Handling for empty data in IAST fuzzing header (#237)
Added identifiers in events (#235)
Fix for file integrity security event generation (#249)
Fix for missing identifiers in iast-data-request JSON (#252)

Support statement:

Assets 2

14 Aug 12:19

sumitsuthar

v1.5.0

61cb472

v1.5.0

v1.5.0 (2024-08-14)

Features

Support for Node.js v22.x

Bug fixes

Fix for traceId in error reporting (#239)

Miscellaneous chores

(deps): bumped axios from 1.6.8 to 1.7.4 (#243)
(deps-dev): bumped ws from 7.5.9 to 8.18.0 (#244)

Continuous integration

Added Node.js v22.x to unit tests (#234)

Support statement:

Assets 2

24 Jun 14:34

sumitsuthar

v1.4.0

51477d7

v1.4.0

v1.4.0 (2024-06-24)

Features

Added support to report application's errors while IAST scanning (#214)
Support to detect gRPC API endpoints (#223)

Bug fixes

Remove additional headers added by IAST client (#209)
Fix for uncaught exception reporting (#230)

Miscellaneous chores

Updated package.json to bump ws from 8.14.2 to 8.17.1 (#228)
(deps-dev): bump @grpc/grpc-js from 1.9.12 to 1.10.9 (#227)
(deps-dev): bump braces from 3.0.2 to 3.0.3 (#226)
(deps): bump ws from 8.14.2 to 8.17.1 (#225)

Support statement:

Assets 2

03 Jun 05:41

sumitsuthar

v1.3.0

efcd33b

v1.3.0

v1.3.0 (2024-06-03)

Features

Added route field in security event for API endpoint mapping (#212)

Bug fixes

Fix for control commands acknowledgement in security agent (#206)
Added assert for typeof response data in Reflected XSS validation (#207)
Updated @grpc/grpc-js instrumentation to instrument submodules (#203)
Handling to convert header values into string (#213)

Miscellaneous chores

Updated log level for critical messages (#205)
Readme update (#208)
(deps-dev): bump axios from 0.21.4 to 1.7.2 (#216)

Support statement:

Assets 2

12 Apr 04:49

sumitsuthar

v1.2.0

514aec3

v1.2.0

v1.2.0 (2024-04-12)

Features

Added instrumentation for express framework's res.download() and res.sendFile() (#197)

Bug fixes

Handling to decrypt fuzz header data for IAST scanning (#196)
Logging and snapshot file fixes (#198)

Miscellaneous chores

Prepend vulnerability case type with apiId (#202)
Updated jsonVersion to v1.2.0 (#196)
Bumped undici from 5.28.3 to 5.28.4 (#199)

Support statement:

Assets 2

21 Mar 09:45

sumitsuthar

v1.1.1

828c511

v1.1.1

v1.1.1(2024-03-21)

Bug fixes

Reverted IAST support for gRPC(#193)

Support statement:

Assets 2

19 Mar 07:02

sumitsuthar

v1.1.0

6e78603

v1.1.0

v1.1.0 (2024-03-19)

Features

IAST support for grpc (#97)
Functionality to report API endpoints of the application (#178)
IAST support for undici (#130)

Bug fixes

Updated permissions for file/directory created by security agent (#176)

Miscellaneous chores

Bumped follow-redirects from v1.15.2 to v1.15.4 (#188)
Updated axios to v1.6.8 (#189)
Bumped ip from v2.0.0 to v2.0.1 (#181)
Bumped undici from 5.28.2 to v5.28.3 (#179)
Readme update (#184 , #190 )

Support statement:

Assets 2

07 Feb 06:16

sumitsuthar

v1.0.1

1264369

v1.0.1

v1.0.1 (2024-02-07)

Bug fixes

Reporting of framework in security event json (#168)

Miscellaneous chores

Updated software license to New Relic Software License Version 1.0 (#170)
Ability to send critical messages on successful startup of agent (#169)
Updated Copyright headers (#171)
Updated license in readme (#172)

Support statement:

Assets 2

Releases: newrelic/csec-node-agent

v2.1.1

v2.1.1 (2024-11-07)

Bug fixes

Support statement:

v2.1.0

v2.1.0 (2024-11-05)

Features

Bug fixes

Miscellaneous chores

Support statement:

v2.0.0

v2.0.0 (2024-09-20)

⚠ BREAKING CHANGES

Features

Bug fixes

Support statement:

v1.5.0

v1.5.0 (2024-08-14)

Features

Bug fixes

Miscellaneous chores

Continuous integration

Support statement:

v1.4.0

v1.4.0 (2024-06-24)

Features

Bug fixes

Miscellaneous chores

Support statement:

v1.3.0

v1.3.0 (2024-06-03)

Features

Bug fixes

Miscellaneous chores

Support statement:

v1.2.0

v1.2.0 (2024-04-12)

Features

Bug fixes

Miscellaneous chores

Support statement:

v1.1.1

v1.1.1(2024-03-21)

Bug fixes

Support statement:

v1.1.0

v1.1.0 (2024-03-19)

Features

Bug fixes

Miscellaneous chores

Support statement:

v1.0.1

v1.0.1 (2024-02-07)

Bug fixes

Miscellaneous chores

Support statement: