Workflow

Cartography

Latest version: v0.91.0

Safety actively analyzes 629908 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 20 of 27

0.29.0

Note: This release has known issue 434, but we only have 1 confirmed report so we will release anyway. Please reply in that issue if you are affected and we will patch.

- Handle NoSuchBucket exception in get_bucket_policy
- Fix IAM sync node label interpretation by adding missing `:`
- Add AWS EC2 network interface details
- Patch 424 and 425: force Okta library version to <1.0.0
- Fix 428: Skip over AWS describe_tgw_attachment errors
- 347: add support for linking Python libraries in GitHub repos
- Add support for AWS ECR repositories, images, and vulnerability scan results
- Bump boto3 version
- Fix 439: AWS ECR sync transform, adjust log levels
- Raise required Neo4j driver from 1.7.0 to 1.7.6
- Fix 440: consume results in ECR sync
- Remove stale rels in network interface cleanup job
- Fix 448, 450: use generator to fix ECR sync memory issues
- Lower most log messages in ECR sync to debug level

0.28.0

- Fix 407: Correctly ingest EC2security group egress rules
- 399: Add more details for EC2Subnet nodes
- Fix 406 - get_role_manage_policy_data NoSuchEntityException

0.27.0

- Fix 396: incorrect attribute name internet_exposed in GCP docs
- Fix 398: Remove duplicate index on Endpoint(id)
- Add support for GitHub outside collaborators
- Add GitHub email and company to users

0.26.0

- Fix 391 - Set pre-commit version to 3.2.0 to allow cartography unit and integration tests to work on Windows
- Fix 388 - Make drift detection filename compatible with Windows
- Fix 378 - Changed publicdnsname for publicipaddress in EC2 internet exposure analysis job
- Fix 314 - STS_ASSUME_ROLE_ALLOW relationship not created for single IAM principal

0.25.0

- Fix 356: user-specified AWS resource permissions files now work correctly
- Improve perf: implement UNWIND for AWS resourcegroupstaggingapi
- Fix 368: Add ARN field to AWS RDS instances
- Fix 371: Handle `forbidden` error reason in GCP
- Fix 373: AWS IAM: Handle NoSuchEntityException for role-managed policies
- Fix 375: Skip AWS TGW sync on boto3 ClientErrors
- Fix 379: Run GitHub cleanup only on successful sync
- Fix 377: Correctly parse GKE errors

0.24.0

- Fix 341, 343: NoSuchEntity exceptions in IAM sync
- Add support for GitHub users
- Replace empty string node field assignments with None for consistency
- Fix 353 - Only create EC2 subnets if interface.SubnetId is not null
- Add support for AWS EC2 Transit Gateways
- Fix regression 360: missing EC2Instance label
- 348: Connect AWS Lambda functions to their associated AWS accounts

Page 20 of 27

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.