What's Changed

Note: This is planned to be the last planned feature release before secureCodeBoxv5.0.0.
In case of important bugs, we will still publish bug fix releases under 4.16.x :)

🚓 Security Scanner

• Upgraded gitleaks from v8.24.2 to v8.24.3@secureCodeBoxBot (#2981)
• Upgraded kubeaudit from 0.22.1 to 0.22.2@secureCodeBoxBot (#3001)
• Upgraded semgrep from 1.117.0 to 1.120.0@secureCodeBoxBot (#2974,#2985,#2994)
• Upgraded trivy from 0.61.0 to 0.61.1@secureCodeBoxBot (#2988)
• Upgraded trivy-sbom from 0.61.0 to 0.61.1@secureCodeBoxBot (#2987)
• Add ARM support to Ncrack by@J12934 in#2996

⛩️ DefectDojo

• Use native DefectDojo Importer for SSH Audit results by@J12934 in#3004

🐛 Bug Fixes

• Fix Issue with nested Kubernetes Native Objects not being properly configurable in the Kubernetes AutoDiscovery Config by@BorisShek in#2982
• Fix Invalid ARM Image for DefectDojo hook by@J12934 in#2993

📚 Documentation

• Reorder sections in upgrading.md to list the newest first by@BorisShek in#3000
• Update supported Kubernetes versions by@J12934 in#3003
• Add Link to OWASP Stammtisch Hamburg Talk by@J12934 in#3005
• Fix ncrack config in network scanning how-to by@J12934 in#2995

🔧 Maintenance

• Update Gradle Version used for DefectDojo Hook by@Weltraumschaf in#2975

📌 Dependencies

• Update to Go to 1.24 & Update Go Libraries by@Weltraumschaf in#2978
• Bump golang.org/x/net from 0.37.0 to 0.38.0 in /auto-discovery/cloud-aws by@dependabot in#2986
• Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /documentation in the npm-security-updates group by@dependabot in#2992

Full Changelog:v4.15.0...v4.16.0

Contributors