| CARVIEW |
Select Language
HTTP/2 200
date: Wed, 23 Jul 2025 17:22:38 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"604aa654cac5fc1c497cac72692fc3ff"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=1wNbhl6oV%2BFAYBxExX77Y1DATgNX2LkJL4osDly5r7ae13sesmQwiH09HDIRiyH%2BhBgpTY4oOS7d%2FYdo%2B5vmREGjAeS%2FGr5%2Bw6KmAQwJaPcX74uk90l5fkJi1nVCs%2Fks3hP3FBWQp8%2BGEVkDqHs9BwS5S5QXXHu0gWD6XktDDzB4rdyGSdPnt7GS%2BfSBLrukbcLQpEolfIIFbWr8t46YFdLCIEzNH2CEdJ7uOgMT%2FeozwD09da31mNKT8%2FoIb4%2FrUoxbrtpVjX9sP0Lhhv8aiw%3D%3D--8l3vNTzLN%2B28W4Hz--vD8ZzMfWfDmbSwIPr1rFEg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.703256641.1753291357; Path=/; Domain=github.com; Expires=Thu, 23 Jul 2026 17:22:37 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Thu, 23 Jul 2026 17:22:37 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: 90EA:2DEF93:F42E7F:1206B2A:68811A5D
Releases ยท aquasecurity/tfsec ยท GitHub
02 May 04:22
11 Jan 04:22
Loading
03 Jan 02:08
Loading
03 Oct 17:59
Loading
03 Jul 00:05
Loading
27 Jun 22:35
Loading
27 Jun 22:31
Loading
27 Jun 21:06
Loading
07 May 04:35
Loading
17 Jan 02:29
Loading
Skip to content
Navigation Menu
{{ message }}
-
Notifications
You must be signed in to change notification settings - Fork 550
Releases: aquasecurity/tfsec
Releases ยท aquasecurity/tfsec
v1.28.14
b692c20
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
What's Changed
- fix: CVE-2025-22869: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh by @jdesouza in #2172
- chore: update and clean up golangci-lint by @mmorel-35 in #2165
- chore: update golangci lint by @simar7 in #2175
- chore(deps): bump golang.org/x/net from 0.33.0 to 0.38.0 by @dependabot in #2174
- chore(deps): bump golangci-lint to v2.1 by @mmorel-35 in #2176
New Contributors
- @mmorel-35 made their first contribution in #2165
Full Changelog: v1.28.13...v1.28.14
Contributors
simar7, jdesouza, and 2 other contributors
Assets 34
- 47.2 MB
2025-05-02T04:24:49Z - 566 Bytes
2025-05-02T04:24:52Z - 45.3 MB
2025-05-02T04:24:44Z - 566 Bytes
2025-05-02T04:24:52Z - 45.9 MB
2025-05-02T04:24:46Z - 566 Bytes
2025-05-02T04:24:52Z - 43.8 MB
2025-05-02T04:24:44Z - 565 Bytes
2025-05-02T04:24:52Z - 47 MB
2025-05-02T04:24:49Z - 566 Bytes
2025-05-02T04:24:52Z -
2025-05-02T04:21:54Z -
2025-05-02T04:21:54Z - Loading
v1.28.13
1ade121
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
Assets 34
v1.28.12
7f016e7
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
Changelog
- 7f016e7 CVE-2024-45337: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass (#2162)
Assets 34
1 person reacted
v1.28.11
6444d31
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
What's Changed
- Upgrading deps by @jdesouza in #2157
- chore(deps): bump github.com/open-policy-agent/opa from 0.44.1-0.20220927105354-00e835a7cc15 to 0.68.0 by @dependabot in #2158
Full Changelog: v1.28.10...v1.28.11
Contributors
jdesouza and dependabot
Assets 34
2 people reacted
v1.28.10
4476b18
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
Contributors
simar7
Assets 34
v1.28.9
4476b18
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
Contributors
simar7
Assets 9
1 person reacted
v1.28.8
382ecff
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
What's Changed
Full Changelog: v1.28.7...v1.28.8
Contributors
simar7
Assets 9
v1.28.7
c221b67
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
What's Changed
- fix: typo by @testwill in #2110
- Bumped Go-Getter due High Vulnerability CVE-2024-6257 by @jdesouza in #2145
- chore(deps): bump golang.org/x/net from 0.19.0 to 0.23.0 by @dependabot in #2146
- chore(deps): bump google.golang.org/protobuf from 1.30.0 to 1.33.0 by @dependabot in #2147
New Contributors
Full Changelog: v1.28.6...v1.28.7
Contributors
jdesouza, testwill, and dependabot
Assets 2
v1.28.6
e24d859
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
Contributors
jdesouza
Assets 34
3 people reacted
v1.28.5
2a2a679
This commit was created on GitHub.com and signed with GitHubโs verified signature.
Compare
What's Changed
- Create auto-close-issues.yml by @simar7 in #2104
- chore(deps): bump github.com/go-git/go-git/v5 from 5.5.2 to 5.11.0 by @dependabot in #2131
- chore(deps): bump google.golang.org/grpc from 1.52.0 to 1.56.3 by @dependabot in #2132
- chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 by @dependabot in #2133
- chore(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #2134
Full Changelog: v1.28.4...v1.28.5
Contributors
simar7 and dependabot
Assets 34
4 people reacted
Previous Next
You canโt perform that action at this time.