v1.2.3

Changelog

maintenance version

Added

• Versioned documentation in https://docs.kics.io/

Fixes

• Fix KICS not rendering Helm chart bug #2761 (#2762)
• Fix malformed files not reporting error #1930 (#2754)

v1.2.2

Changelog

Added

• Add support to terraform vars (#2675)
• Added --log-level flag that determines log verbosity
• Added --log-path flag that determines the log file location
• Added --ci flag that print only logs in stdout (no CLI UI output)

Changed

• Updated documentation
• Bumping external dependencies (#2722)

Fixes

• Fixing gosec issues (#2694)
• Missing log on fail to parse invalid YAML (#2698)
• The flag --no-color should remove color from log messages to console (#2692)
• Fixed bug that panics KICS when --queries-path not exists (#2732)

v1.2.1

Changelog

Added

Helm Support
HTML results output format
One-line install script​
New functions to queries' library
New queries

Changed

Queries improved to reduce FPs
Removed unused 'value' field in queries result

Fixed

Filesystem couldn't close file #2270

v1.2.0

Changelog

Added

SARIF results output format
Flag --exclude-queries to enable to exclude specific queries from the results
Flag --no-color to specify if CLI should have color codes enabled
Flag --minimal-ui to revert to minimal results output
Flag --report-formats to specify in which format to output the results (json, sarif)
Command list-platforms to list all supported platforms (names to use when filtering with --type flag)

Changed

CLI UI major revamp
Updated Go version to v1.16
All queries categories revised
Updated queries to remove FPs and improve accuracy

Fixed

Flag --type passed as empty #2137
KICS config file arrays #2140

v1.1.4

Changelog

Added

Support JSON files for AWS CloudFormation
Configuration file to handle all KICS flags
Query category and description to result output
Flag exclude-results to enable excluding unwanted results from the output

Changed

Improved several queries across all platforms to improve accuracy

Fixed

Type flag is now case insensitive #2092

v1.1.3

Changelog

Added

MacOS binaries in the release
Common query - Password and Secrets in Infrastructure as Code
Platform field to query in metadata.json and results JSON
Progress bar in CLI
Type flag to select type to scan (e.g. Terraform, Dockerfile, etc.)
Exclude-paths flag to enable excluding unwanted folders/files from being scanned
Config flag added to enable passing a .json/yaml config file that contains all flags configured
Added support for multiple unit tests samples in queries
Printing location of generated output file

Fixed

SimilarityID bug when computing with absolute file path (#1977)
KICS failing to scan when queries path is not in same context as kics execution (#1964)

v1.1.2

Changelog

Added

Rego Generic Functions
SimilarityID for each result (a unique identifier for each vulnerability)
Scan duration in output and log
Improved log to display queries that failed during scan
Added version command

Changed

generate-id now a command instead of flag -g

Fixed

Codacy code issues

v1.1.1

Changelog

Added

Results summary (both console and JSON output)
UUID generator for query support

Changed

Replaced queryIds to a UUID format

Fixed

Bug with query "Access Key Is Not Rotated Within 90 Days" appearing in every scan
SonarCloud code issues

v1.1.0

Changelog

Added

• Kubernetes queries
• Cloudformation queries
• Support for Dockerfile files
• Dockerfile queries
• Support for Ansible .yaml files
• Ansible queries

Changed

Improved logging capabilities (now can output to a log file)

Fixed

Missing categories for Terraform queries

v1.0.0

Changelog

0fd1875 fixes bad json parsing #547 (#548)
54f0b29 Update getting-started.md
609afb6 Merge pull request #551 from Checkmarx/docs-update
632f06c add links
4cc90a5 docker usage instructions
46f6885 kics exe running command example
bc8d225 release process additions