Release v0.1.1

What's Changed

• Important Fix/support ast parsing from multiple lines by @TilakMaddy in #496
• Bump version to 0.1.1 by @alexroan in #501
• Dev master merge conflicts by @alexroan in #503

Changes

Emergency bugfix: Parsing earlier Solidity versions

Full Changelog: v0.1.0...v0.1.1

Release v0.1.0

What's Changed

• Bump version to 0.1.0 by @alexroan in #487
• Publishing CI builds by @alexroan in #490
• Remove Legacy workflow, use ICF by @alexroan in #488

Full Changelog: v0.0.28...v0.1.0

v0.0.28

What's Changed

• ISSUE template Create false_positive_issue.md by @TilakMaddy in #476
• Auditor mode only available in ICF by @alexroan in #477
• Auditor Mode: public functions with no sender checks by @alexroan in #479
• Bump version to 0.0.28 by @alexroan in #481
• Update README copy for license by @alexroan in #483
• Restructure Config and Famous File Parsing by @alexroan in #480
• Capture Each inconsistent VariableDeclaration instead of ContractDefinition by @alexroan in #485
• Rename scope and exclude args by @alexroan in #486

Release Notes

• Auditor Mode:
  • ICF engaged when --auditor-mode is run
  • New Feature: Public and External functions with no sender checks
• Tech debt: Restructure Config and Famous File parsing
• Detectors:
  • FIX: Inconsistent type names: capture the inline instances instead of the ContractDefinition
• Argument renaming:
  • --scope/-s is now --path-includes/-i
  • --exclude/-e is now --path-excludes/-x

Full Changelog: v0.0.27...v0.0.28

v0.0.27

What's Changed

• Fix: Include low issues in sarif printer by @alexroan in #442
• Refactor auditor mode for ICF by @alexroan in #446
• Feature: Collapsible Markdown report instances by @alexroan in #448
• BASE BRANCH: Internal compilation framework by @alexroan in #333
• Bump version to 0.0.27 and update readme by @alexroan in #470
• Group ICF related args by @alexroan in #471
• Update foundry-compilers to cyfrin-foundry-compilers by @alexroan in #472
• Add foundry config version by @alexroan in #473
• Remove local foundry gitmodule by @alexroan in #474

Release Notes

• Fix: Include LOW issues in the SARIF report printer
• Refactor Auditor Mode to more easily integrate ICF
• Collapsible Markdown report instances
• Internal Compilation Framework beta!
  • Invoked with --icf option.
  • Once this has been battle tested and ironed out, ICF will replace the current workflow, and the --icf flag will be removed.

Full Changelog: v0.0.26...v0.0.27

v0.0.26

What's Changed

• Experimental: Auditor mode by @alexroan in #405
• Bump version to 0.0.26 by @alexroan in #409
• Optimize layout order detector by @TilakMaddy in #407
• Feature: Detector - Unsafe casting by @alexroan in #410
• remove debt from previous merge by @alexroan in #411
• Refactor/auditor mode (To be able to handle multiple contexts later) by @TilakMaddy in #419
• Feature: SARIF support by @alexroan in #412
• Remove Unused bot_reports by @alexroan in #435
• Remove judgeops by @alexroan in #436
• Tech debt: Reports folder by @alexroan in #437
• Debt: Remove layout order detector by @alexroan in #438

Release Notes:

• Experimental auditor mode
  • Instead of running issue detectors, it runs a separate set of auditor detectors that output tips like "Attack Surface" described in #349.
  • Invoked with --auditor-mode
• Detectors:
  • REMOVE: Wrong layout order detector
  • NEW: Unsafe Casting detector
• SARIF file output support
• Tech debt:
  • Remove judgeops
  • Cleanup stale bot_reports
  • Move test reports to a reports/ folder

Full Changelog: v0.0.25...v0.0.26

v0.0.25

What's Changed

• Devex: Template comments by @alexroan in #383
• bump version by @alexroan in #392
• Hackathon Winners PR by @alexroan in #388
• Cargo clippy lint update by @TilakMaddy in #395
• Fix LargeLiteralValueDetector: handle hex literals & underscore separators by @kevincharm in #396
• Fix: peek panics by @TilakMaddy in #371
• Fix unused error false positives by @alexroan in #398
• Cleaner driver by @alexroan in #403

Release Notes

• Hackathon winning new detectors:
  • #372 by @scab24
  • #374 by @malawadd
  • #385 by @gr4yha7
• Improved devex comments on templates and capture macro usage
• Fix LargeLiteralValueDetector: Handle Hex and underscores
• Fix peek panics

New Contributors

• @kevincharm made their first contribution in #396
• @scab24 made their first contribution in #372
• @malawadd made their first contribution in #374
• @gr4yha7 made their first contribution in #385

Full Changelog: v0.0.24...v0.0.25

v0.0.24

What's Changed

• Remove openssl dependency from reqwest crate by @TilakMaddy in #337
• bump version to v0.0.24 by @alexroan in #340
• CI Check Reports Debugging by @alexroan in #341
• Add slither acknowledgement by @PatrickAlphaC in #342
• New abstractions: peek_over and peek_under (essential for some detectors) by @TilakMaddy in #338
• Update LICENSE by @PatrickAlphaC in #344
• Updates readme with docs by @Eversmile12 in #347
• Update README.md by @Eversmile12 in #348
• Fix: Remove unused code - ResuableDetectorNamePool by @TilakMaddy in #356
• Non reentrant modifier name detection is more generalized by @TilakMaddy in #351
• Chore: Setting up hackathon demo by @alexroan in #357
• load_multiple_contracts test helper by @alexroan in #365
• New Detector: reverts and requires inside for loops / while loops by @TilakMaddy in #353
• Match readme wording to docs by @alexroan in #367

Release Notes

• Reintroduce update checking but without using OpenSSL in the request crate
• Slither acknowledgment in the Readme
• New AST traversal abstractions: peek_over and peek_under
• Update License to GNU GPL
• https://docs.cyfrin.io/ added to readme
• load_multiple_contracts test helper
• New detector: low, reverts and requires inside loops

Full Changelog: v0.0.23...v0.0.24

v0.0.23

What's Changed

• Remove openSSL dependency by @alexroan in #334
• Bump version v0.0.23 by @alexroan in #336

Full Changelog: v0.0.22...v0.0.23

v0.0.22

What's Changed

• Benchmarks for Aderyn and individual detectors by @TilakMaddy in #290
• Bump version by @alexroan in #329
• Feature peek into node to see the source code as string + TODO Detector by @TilakMaddy in #261
• Remove ENV vars in favour of CLI args by @alexroan in #330
• Notify aderyn users when a new version is released ! by @TilakMaddy in #263
• Reclassify detectors by @alexroan in #331

Release Notes

• Benchmark aderyn and its detectors (not yet included in CI)
• peek() enables detectors to look at the source code of the ASTNode, to run string comparisons against.
• ENV vars moved into CLI args.
• At the end of each run, check if there is a newer version of aderyn available.
• Reclassify detectors to HIGH:
  • avoid_abi_envode_packed
  • unprotected_init_function

Full Changelog: v0.0.21...v0.0.22

v0.0.21

What's Changed

• Staging v0.0.19 by @alexroan in #277
• v0.0.20 Staging by @alexroan in #295
• Merge pull request #295 from Cyfrin/dev by @alexroan in #312
• Update issue templates by @Eversmile12 in #317
• Update CONTRIBUTING.md by @Eversmile12 in #315
• Update CONTRIBUTING.md by @Eversmile12 in #322
• Bump version to 0.0.21 by @alexroan in #323
• Reduce number of severity categories to just High and Low by @alexroan in #324
• small template fixes by @alexroan in #325

Release Notes

• Updates to Contributing and Issue guidelines
• Reduce the number of severity categories to just two: High and Low
  • Highs represent things that should definitely addressed
  • Low represent nice to haves, but not mandatory

Full Changelog: v0.0.20...v0.0.21