Skip to content

Releases: pixee/codemodder-java

v0.90.1

23 Jul 13:47
@github-actions github-actions
v0.90.1
bf886d3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.90.1 
:sparkles: Support multiple rule names for AppScan (#428)

- **:sparkles: support muitiple rule names in AppScan**
- **:bulb: Improve docs for AppScan getRule accessor**
Assets 3
Loading

v0.90.0

18 Jul 20:09
@github-actions github-actions
v0.90.0
6670a3d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.90.0 
:bug: Defensive  null check  (#424)

- **:recycle: provide messageText to all RuleSarifFactory impls**
- **Bind AppScan sarif to rule by rule name from message text**
- **:bug: fix distinct rule ID bug**
- **:bug: defensive null check**
Assets 3
Loading

v0.89.2

17 Jul 21:08
@github-actions github-actions
v0.89.2
4a98fa1
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.89.2 
:sparkles: allow SARIF to be bound from multiple rule IDs (#421)
Assets 3
Loading

v0.89.1

11 Jul 21:02
@github-actions github-actions
v0.89.1
785ead7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.89.1 
Skip SensitiveDataLoggingCodemod when LLM not available (#419)

This codemod does not inherit from the base class with the existing
check so it did not benefit from the work in #418.
Assets 3
Loading

v0.89.0

11 Jul 19:59
@github-actions github-actions
v0.89.0
02b25a8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.89.0 
Skip LLM codemods when no service is available (#418)
Assets 3
Loading

v0.88.1

10 Jul 17:37
@github-actions github-actions
v0.88.1
c58ccf3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.88.1 
Add gpt-4-turbo model; use for code changing (#416)

Without function calling, we need to use models that support
`json_object` as a response format.

At some point we should revisit function calling with the new client,
but it seems substantially more complicated than the old API. It also
appears to be deprecated in favor of "tool calling"":

> For function call sample, see [function
call](https://github.com/Azure/azure-sdk-for-java/tree/azure-ai-openai_1.0.0-beta.10/sdk/openai/azure-ai-openai/src/samples/java/com/azure/ai/openai/ChatCompletionsFunctionCall.java).
However, they are considered a legacy feature. Using tools is the
preferred way. For more details see sample [tool
calls](https://github.com/Azure/azure-sdk-for-java/blob/azure-ai-openai_1.0.0-beta.10/sdk/openai/azure-ai-openai/src/samples/java/com/azure/ai/openai/usage/GetChatCompletionsToolCallSample.java).


https://learn.microsoft.com/en-us/java/api/overview/azure/ai-openai-readme?view=azure-java-preview#chat-completions
Assets 3
Loading

v0.88.0

10 Jul 15:08
@github-actions github-actions
v0.88.0
98991c0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.88.0 
Enable compatibility with Azure OpenAI (#415)
Assets 3
Loading

v0.86.1

04 Jul 03:35
@github-actions github-actions
v0.86.1
7db059c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.86.1 
Fix shared CST state for injected method (#411)

This method fixes a subtle bug that occurs when the CST for a pre-cached
node is shared between codemod uses.
Assets 3
Loading

v0.86.0

03 Jul 23:26
@github-actions github-actions
v0.86.0
35978f5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.86.0 
Build generic XSS remediator (#410)

Also included some Semgrep maintenance to make this easier to test in
downstream projects.
Assets 3
Loading

v0.85.0

29 Jun 04:21
@github-actions github-actions
v0.85.0
08a0915
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.85.0 
Add overlapping fix logic (#409)

This adds more the ability to group fixes by location and more tests for
all the fix candidate searcher logic.
Assets 3
Loading