Skip to content

Releases: ashanbrown/forbidigo

v2.1.0

25 Jan 23:39
@ashanbrown ashanbrown
v2.1.0
77ce5aa
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.1.0 Latest
Latest

What's Changed

Full Changelog: v2.0.1...v2.1.0

Contributors

ashanbrown and isergieienkov
Assets 2
Loading

Drop golang < 1.18

25 Jan 21:04
@ashanbrown ashanbrown
v2.0.1
c0fe523
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Drop golang < 1.18 
v2.0.1

Bump version to v2 due to change of support for older golang versions…
Loading

Upgrade x/tools

26 Nov 01:35
@ashanbrown ashanbrown
v2.0.0
e4c2790
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Upgrade x/tools

Upgrades x-tools to fix go 1.23, drops support for go < 1.18

Loading

v1.6.0

04 Jul 14:31
@ashanbrown ashanbrown
v1.6.0
ab8eef6
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.0

What's Changed

Full Changelog: v1.5.4...v1.6.0

Contributors

ashanbrown
Loading

v1.5.4

03 Jul 02:02
@ashanbrown ashanbrown
v1.5.4
f6adf99
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.5.4

What's Changed

Full Changelog: v1.5.3...v1.5.4

Contributors

ashanbrown
Loading

Slight change to handling of missing type information

11 Jun 18:12
@ashanbrown ashanbrown
v1.5.3
c506b28
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Slight change to handling of missing type information 
Refactor package name extraction slightly (#36)

Rename one method and handle case where some type information is missing slightly better.
Loading

Ensure that types within a selector are matched

11 Jun 17:39
@ashanbrown ashanbrown
v1.5.2
fbbca18
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Ensure that types within a selector are matched 
Ensure we match types within a selector (#35)

Also refactor expansion code slightly
Loading

Remove deprecated pkg/errors package

25 Feb 14:28
@ashanbrown ashanbrown
v1.5.1
2a92cc5
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Remove deprecated pkg/errors package 
Remove deprecated pkg errors (#28)

Replace github.com/pkg/errors with native error handling

pkg/errors has been deprecated since go1.13.
Let's also set go1.13 as the new minimum.

---------

Co-authored-by: Oleksandr Redko <[email protected]>
Loading

Require a configuration option to expand type info

25 Feb 14:04
@ashanbrown ashanbrown
v1.5.0
7298305
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Require a configuration option to expand type info 
Require an option to be set on analyzer to expand type info (#27)

Because type expansion is a bit experimental and to avoid letting the presence of TypesInfo in the config control the analyzer behavior, let's require a new option to enable analyzing types.
Loading

Match patterns against canonical object name instead of source text

13 Feb 01:49
@ashanbrown ashanbrown
v1.4.0
1396000
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Match patterns against canonical object name instead of source text

This release adds a new matching engine based that matches rules on the canonical name of a package attribute or function instead of raw text as it appears in the source code. It also adds support for a mode where a rule is matched based on the canonical name of a type or interface (see the current README for details). This latter mode requires loading type information from dependencies, which could slow down analysis for things like pre-commit hooks, so it is currently disabled by default. Thanks to @pohly for proposing this change, and for the months he put in to implement it in a way that we hope will cause minimal disruption to existing rules. There are some cases where this may new matching engine may break existing behavior, but we believe the number of such cases will be minimal and have chosen not to consider this a major version release. The release also allows scoping a rule to match from a particular package using a regex.

Contributors

pohly
Loading