Cloud June 2022#
These release notes are for the Codacy Cloud updates during June 2022.
📢 Visit the Codacy roadmap and let us know your feedback on both new and planned product updates!
Product enhancements#
- Codacy now supports using expiring access tokens to integrate with GitLab. Users affected by issues connecting to GitLab should re-login on the Codacy UI using their GitLab accounts, or revoke the GitLab integration on Codacy if the issues persist. (CY-6117)
- Pull request notification emails now display the diff coverage metric. (CY-5700)
Bug fixes#
- Fixed an issue to allow saving coverage data for the first commit in a repository. (CY-6196)
- Fixed an issue that could allow an attacker with an account on the Git provider to do destructive actions on Codacy personal organizations, such as removing members from Codacy or deleting the personal organization on Codacy. The issue didn't allow the attacker to see or change any information on the Git provider organization or repositories. CVSS v3.1 score: 7.9 (High) (CY-6184, CY-6187, CY-6188)
- Fixed an issue that could allow an attacker with an account on the Git provider to join a public Codacy organization and know the email addresses of the organization members on Codacy. The issue didn't allow the attacker to see or change any information on the Git provider organization or repositories. CVSS v3.1 score: 5.1 (Low) (CY-6174)
- Removed the username field from the Codacy UI and relevant API endpoints since it's no longer used and could be exploited to leak email addresses that are already in use on Codacy. (CY-6173)
- Fixed a Codacy Analysis CLI error when running markdownlint on a repository without a
.markdownlint.jsonconfig file. (CY-6112) - Fixed the parsing of dartanalyzer results containing many issues. (CY-6067)
Tool versions#
Codacy Cloud now includes the tool versions below. The tools that were recently updated are highlighted in bold:
- Ameba 0.13.1
- Bandit 1.7.0
- Brakeman 4.3.1
- bundler-audit 0.6.1
- Checkov 2.0.399
- Checkstyle 8.44
- Clang-Tidy 10.0.1
- CodeNarc 2.2.0
- CoffeeLint 2.1.0
- Cppcheck 2.2
- Credo 1.4.0
- CSSLint 1.0.5
- dartanalyzer 2.17.0
- detekt 1.19.0
- ESLint 8.18.0 (updated from 8.15.0)
- ESLint (deprecated) 7.32.0
- Faux-Pas 1.7.2
- Flawfinder 2.0.19
- Gosec 2.8.1
- Hadolint 1.18.2
- Jackson Linter 2.10.2
- JSHint 2.12.0
- markdownlint 0.23.1
- PHP Mess Detector 2.10.1
- PHP_CodeSniffer 3.6.2
- PMD 6.36.0
- Prospector 1.3.1
- PSScriptAnalyzer 1.18.3
- Pylint 1.9.5
- Pylint (Python 3) 2.7.4
- remark-lint 7.0.1
- Revive 1.2.1
- RuboCop 1.28.2
- Scalastyle 1.5.0
- ShellCheck 0.8.0 (updated from v0.7.2)
- SonarC# 8.39
- SonarVB 8.15
- Spectral 1.2.7
- SpotBugs 4.5.3
- SQLint 0.2.1
- Staticcheck 2020.1.6
- Stylelint 14.2.0
- SwiftLint 0.43.1
- Tailor 0.12.0
- TSLint 6.1.3
- TSQLLint 1.11.1
Share your feedback 📢
Did this page help you?
Thanks for the feedback! Is there anything else you'd like to tell us about this page?
255 characters left
We're sorry to hear that. Please let us know what we can improve:
255 characters left
Alternatively, you can create a more detailed issue on our GitHub repository.
Thanks for helping improve the Codacy documentation.
Edit this page on GitHub if you notice something wrong or missing.
If you have a question or need help please contact support@codacy.com.