Tags: noraj/tls-map
Tags
v3.0.0
- **Breaking changes**:
- Drop support for Ruby 2.6 and 2.7 as they are EOL
- [Ruby - Ruby Maintenance Branches](https://www.ruby-lang.org/en/downloads/branches/)
- [endoflife.date - Ruby](https://endoflife.date/ruby)
- Update data
- Patch GnuTLS parsing regexp to reflect upstream source code format change
- Patch GnuTLS parsing regexp to reflect upstream source code format change (again)
- Update dependencies
- Add `csv` as a dependency as it will be removed from standard library
v2.0.0
**BREAKING CHANGES:**
- More modular file architecture in `lib`
- It shouldn't change anything from user perspective (CLI & lib)
- It will change the `require` path for people who want to develop on tls-map or that use some fragments of the library
Additions:
- `TLSmap::App::Extended`:
- add security level mapping: `SECURITY_LEVEL`
- add a new attribute and getter `enhanced_data`, it contains a hash with enhanced information of all cipher suites (like the output of `extend` but for all cipher suites)
- add a new attribute `ciphersuite_all` containing raw data from ciphersuite.info (non-yet enhanced version of `enhanced_data`), only for internal use.
- internal method `fetch_ciphersuite` that populate `ciphersuite_all` attribute
- add `enhance_all` method, fetch and enhance data from ciphersuite.info for all cipher suites and store it for batch usage.
- new attribute for `extend` method: `caching`: will fetch info for all cipher suites the 1st time and used the cached value for further requests
- `TLSmap::App`:
- add a `search` class method for stateless usage
- add a getter for `tls_map` attribute
- `TLSmap::App::Cipher`:
- New class allowing to manipulate cipher suite information (check the library doc for more details)
- `TLSmap::CLI`
- small transparent fixes and spelling mistakes corrected
- `TLSmap::CLI::Extended`
- new class implementing an offline version of `TLSmap::CLI::Extended`, intended for CLI or offline usage and batch requests (using `data/extended.marshal`)
- CLI
- `Search`
- `--extended`: colorize `security` value depending on the security level
- `Extract`
- add `--only-weak` to `--hide-weak` to have the ability to show/hide weak cipher suites
- `Update`
- add `--with-extended` option to backup `extended.marshal` in addition to `mapping.marshal`
Chore:
- Dev dependencies:
- Remove commonmarker since it's not supported by yard yet
- Add yard-coderay for basic syntax highlight
- Update rubocop
v1.3.2 Additions: - add `helper()` method to `TLSmap::App::Extractor` so it will display a useful error message when the wrong format is provided. Chore: - New dependency requirement architecture: runtime dependencies are set both in `.gemspec` + `Gemfile` while development ones are set in `Gemfile` only. - `Gemfile` dependencies are categorized in groups. So it's now possible to exclude the _docs_ group while installing in a CI while keeping _test_ and _lint_. `.gempsec` is only able to create _runtime_ and _development_ but not custom groups.
v1.2.0 Additions: - New `TLSmap::App::Extractor` class: extract ciphers from external tools file output (see [lib doc](https://sec-it.github.io/tls-map/yard/TLSmap/App/Extractor)) - Support SSLyze, sslscan2, testssl.sh, ssllabs-scan - New `extract` CLI command Documentation: - Change yard doc format from rdoc to markdown Quality: - Create unit tests
v1.1.0 Additions: - New `TLSmap::App::Extended` class: partial wrapper around ciphersuite.info API to get extra info about a cipher - New `--extended` and `-acronym` CLI option for the `search` command using the new class Changes: - Move `tmpfile()` to a `Utils` module (no breaking changes) Fix: - fix NSS and GnuTLS parser: many ciphers were not parsed due to a wrong regexp - make search case-insensitive for hexadecimal codepoints - fix OpenSSL parser: some TLS 1.0 ciphers where defined in SSL 3.0 source code file Documentation: - Added a _limitations_ page - No SSL support - No custom cipher suites support - Unassigned and reserved codepoints are hidden