- Bump report to v4.1.0 (!47) - Bump command version to command/v2 in go.mod to fix inconsistency with git tag (!47)
Bump report to v4.0.0 (!46)
Bump `report` to `v3.22.1` (!45)
Bump `report` to `v3.19.0` (!44)
Always produce JSON reports at the root of the target project, Bump `report` to `v3.17.0` (!42)
Set permission mode to 0644 instead of 0600 for the report artifact (!41)
Update common to `v3.2.1` to fix gotestsum cmd (!39)
Improve formatting of string slice env vars
Log env vars specified as command flags in the debug level
Improve log messages related to repository-wide scanning (!33)
Upgrade `report` package to `v3.12.2` to remove `common/v2` from dependencies (!34)
Upgrade the `common` package to `v3.2.0` to support globstar patterns (!32)
Log a message asking users to enable `debug` mode when the analyzer fails and the log level is set to `info` or lower (!31)
Add `scan.analyzer` field to the security report. Report analyzer version in the log, instead of the scanner version (!25)
Add Go version information to the version string (!23)
Adds support for overriding rules (!22)