http://open-source-security-software.net/project/graudit/releases.atomRecent releases for graudit2026-04-02T08:11:00.452044+00:00python-feedgengraudit v2.3graudit v2.32019-10-15T08:21:57+00:00
- Added database for finding sensitive information (secrets)
- C database no longer deprecated
- Created low hanging fruit rules for C/C++ (seafruit.db)
- Added more test cases to avoid some past mistakes
- Updated make and make install rules to match new version changes
- Removed the all rules database
- Updated documentation
- Improved bsdgrep/OSX support
- Improved PHP rules for stream bugs (ie: phar://)
- Added and updated python rules
- More Java rules and cleanup of Java rules
- More dotNet rules
- More android rules
- More iOS rules
- Added basic JavaScript rules
- Added additional script to show C taint analysis (misc/b0ftaint.sh)
- Added script for finding low hanging/high impact PHP bugs (misc/flatline.*)
- Added script for using flatline rules in taint analysis (misc/vulntaint.sh)
- Added script for scanning github repos with flatline (misc/gitscan)
- Added script for finding interesting files and secrets (misc/graufflehog.sh)
2019-10-15T08:21:57+00:00graudit v2.4graudit v2.42020-03-28T08:05:28+00:00Updated documentation
Seafruit.db removed (now in fruit.db)
Added low hanging fruit databases for several languages
Added basic support for Go language
Added basic support for COBOL (@_bcoles)
Fixed faulty rules in Python and Java (@quakehead, @l0ss)
Updated C rules
Updated PHP rules (FFI and more)
Updated Node rules
Reworked Makefile for signatures2020-03-28T08:05:28+00:00graudit v2.6graudit v2.62020-06-19T05:09:32+00:00 Fixed carriage return tolerance in graudit
Added basic scala rules
Updated Java rules
QoL tweaks to Nim rules
dotnet fruit rules
dotnet rules overhauled
Added more unit tests
Updated PHP rules
Improved PHP stream rules
Fixed bug for PHP stream rules
Fixed bug when listing databases in empty directories2020-06-19T05:09:32+00:00graudit 2.7graudit 2.72020-10-12T10:59:03+00:00 Carriage return tolerance fixed for non GNU sed versions
Updated PHP rules
Updated C rules
Updated dotnet rules
Updated android rules
Added Electron rules
Additional PHP and secret rules from @beyefendi2020-10-12T10:59:03+00:00graudit v2.8graudit v2.82020-10-30T04:39:47+00:00Updated Electron rules
Updated PHP rules
More scala rules and a scala signature set
Updated C rules
Updated Java rules
Updated fruit rules
Documentation tweaks
Improved error handling
Updated gitscan script
AMPscript and ssjs example rules
git log scanner example script2020-10-30T04:39:47+00:00graudit v2.9graudit v2.92021-04-09T02:15:07+00:00Fix for GRDIR by @micharu123
Improved C fruit rules
Improved js fruit rules
Started python fruit rules
Updated documentation
Fixed typo in dotnet rules (@0x10f2c)
Reformatted parts of graudit for readability
misc/onlyfiles.sh filescanning with only files matching globs2021-04-09T02:15:07+00:00graudit v3.0graudit v3.02021-04-29T06:11:22+00:00Fixed broken Java rule causing massive false positives
Additional PHP fruit rules2021-04-29T06:11:22+00:00graudit v3.1graudit v3.12021-06-21T00:29:01+00:00Updated secret rules
Updated dotnet rules
Updated C rules
Updated Java and Mongose rules (@IoannisMatzaris)
Added ~/graudit/signatures to database locations
Updated documentation (@Montycarlo)2021-06-21T00:29:01+00:00graudit v3.2graudit v3.22021-10-29T03:28:44+00:00- Fixed a compatibilty bug in misc/serializephp.sh
- Updated PHP rules
- Updated Java rules
- Updated fruit rules
- Updated secret rules
- Updated default
- Updated android rules (@r3zk0n)
- Updated dotnet rules
- Changed misc/gitlog.sh to an interactive format
- Added *.map to files that are ignored unless -A is used
- Fixed line endings in some rule files
- Altered some error handling slightly2021-10-29T03:28:44+00:00graudit v3.3graudit v3.32022-01-20T06:48:31+00:00 Fixed false positive rate in compressed js files
More secret rules
Restructured and updated classic asp rules
Updated fruit rules
Updated SQL rules
Updated spsqli rules
Updated ruby rules (@r3zk0n)
Updated android rules
Updated java rules
Updated dotnet rules
Fixed greedyness in perl super global rules
Improved test case
Bug fixes for dotnet and sql rulesets
Added test case for bad quantifiers in rules
Changed test cases for consistency and portability
Rule set for auditing SCA exclusions
Updated ampscript rules
Added .github/ files for sponsorship/issues/pull requests2022-01-20T06:48:31+00:00graudit v3.4graudit v3.42022-03-01T06:14:32+00:00 Fixed a path issue in misc/taintfind.sh
Changed installation instructions for better usage
Added link to tutorial video in documentation
Updated PHP rules
Updated dotnet rules
Updated xss rules
Updated secrets rules
Added support for setting default arguments via env vars
Added test cases for environment variables
Fixed a bug in database listing function
Updated misc/phptaint.sh2022-03-01T06:14:32+00:00graudit v3.5graudit v3.52022-12-23T06:21:18+00:00 Added Eiffel rules (@bcoles)
Updated secret rules
Reduced false positives in php rules
Reduced false positives in nim rules
Added typescript rules
Fixed path issue in misc/gitscan
Bugfix for actionscript, asp and ios rules
Rule correctness adjustments to asp rules
Minor documentation updates2022-12-23T06:21:18+00:00