Sourced from oxsecurity/megalinter's releases.

v8.7.0

What's Changed

• Core

  • Replace pychalk (not maintained for 7 years) by termcolor, by @​nvuillam in oxsecurity/megalinter#5316
  • Update make scripts so they also work on Windows, by @​nvuillam in oxsecurity/megalinter#5316
  • Align number columns of markdown tables in reports, by @​nvuillam in oxsecurity/megalinter#4835

• Linters enhancements

  • Add new CSharpier supported file extensions, by @​bdovaz in oxsecurity/megalinter#5292

• Fixes

  • Exclude from sanitization the regular expressions that have awful performances, by @​nvuillam in oxsecurity/megalinter#5308
  • New variable SKIP_LINTER_OUTPUT_SANITIZATION to skip sanitization to improve performances if you are on a private repository with secured access, by @​nvuillam in oxsecurity/megalinter#5308

• Linter versions upgrades (27)

  • ansible-lint from 25.2.1 to 25.4.0
  • bicep_linter from 0.34.44 to 0.35.1
  • cfn-lint from 1.34.1 to 1.34.2
  • checkov from 3.2.404 to 3.2.413
  • checkstyle from 10.23.0 to 10.23.1
  • csharpier from 0.30.6 to 1.0.1
  • cspell from 8.19.2 to 8.19.4
  • gitleaks from 8.24.3 to 8.25.1
  • golangci-lint from 1.64.8 to 2.1.5
  • lightning-flow-scanner from 3.4.0 to 3.8.0
  • phpstan from 2.1.12 to 2.1.14
  • pmd from 7.12.0 to 7.13.0
  • powershell from 7.5.0 to 7.5.1
  • protolint from 0.53.0 to 0.54.1
  • psalm from 6.10.1 to 6.10.2
  • rubocop from 1.75.3 to 1.75.4
  • ruff from 0.11.6 to 0.11.8
  • ruff-format from 0.11.6 to 0.11.8
  • secretlint from 9.3.1 to 9.3.2
  • stylelint from 16.19.0 to 16.19.1
  • terragrunt from 0.77.22 to 0.78.0
  • tflint from 0.56.0 to 0.57.0
  • trivy from 0.61.1 to 0.62.0
  • trivy-sbom from 0.61.1 to 0.62.0
  • v8r from 4.3.0 to 4.4.0
  • yamllint from 1.37.0 to 1.37.1

Full Changelog: https://github.com/oxsecurity/megalinter/compare/v8.6.0...v8.7.0

v8.6.0

What's Changed

... (truncated)

Sourced from oxsecurity/megalinter's changelog.

[v8.7.0] - 2024-05-04

• Core

  • Replace pychalk (not maintained for 7 years) by termcolor, by @​nvuillam in oxsecurity/megalinter#5316
  • Update make scripts so they also work on Windows, by @​nvuillam in oxsecurity/megalinter#5316
  • Align number columns of markdown tables in reports, by @​nvuillam in oxsecurity/megalinter#4835

• Linters enhancements

  • Add new CSharpier supported file extensions, by @​bdovaz in oxsecurity/megalinter#5292

• Fixes

  • Exclude from sanitization the regular expressions that have awful performances, by @​nvuillam in oxsecurity/megalinter#5308
  • New variable SKIP_LINTER_OUTPUT_SANITIZATION to skip sanitization to improve performances if you are on a private repository with secured access, by @​nvuillam in oxsecurity/megalinter#5308

• Linter versions upgrades (27)

  • ansible-lint from 25.2.1 to 25.4.0
  • bicep_linter from 0.34.44 to 0.35.1
  • cfn-lint from 1.34.1 to 1.34.2
  • checkov from 3.2.404 to 3.2.413
  • checkstyle from 10.23.0 to 10.23.1
  • csharpier from 0.30.6 to 1.0.1
  • cspell from 8.19.2 to 8.19.4
  • gitleaks from 8.24.3 to 8.25.1
  • golangci-lint from 1.64.8 to 2.1.5
  • lightning-flow-scanner from 3.4.0 to 3.8.0
  • phpstan from 2.1.12 to 2.1.14
  • pmd from 7.12.0 to 7.13.0
  • powershell from 7.5.0 to 7.5.1
  • protolint from 0.53.0 to 0.54.1
  • psalm from 6.10.1 to 6.10.2
  • rubocop from 1.75.3 to 1.75.4
  • ruff from 0.11.6 to 0.11.8
  • ruff-format from 0.11.6 to 0.11.8
  • secretlint from 9.3.1 to 9.3.2
  • stylelint from 16.19.0 to 16.19.1
  • terragrunt from 0.77.22 to 0.78.0
  • tflint from 0.56.0 to 0.57.0
  • trivy from 0.61.1 to 0.62.0
  • trivy-sbom from 0.61.1 to 0.62.0
  • v8r from 4.3.0 to 4.4.0
  • yamllint from 1.37.0 to 1.37.1

[v8.6.0] - 2024-04-27

• Core

  • New config property ENABLE_ERRORS_LINTERS. If set, only the listed linters will be considered as blocking

• New linters

  • Add cppcheck linter, by @​bdovaz in oxsecurity/megalinter#5224

... (truncated)

• 5a91fb0 Release MegaLinter v8.7.0
• 940b9d0 [automation] Auto-update linters version, help and documentation (#5334)
• 61a6678 chore(deps): update ghcr.io/astral-sh/uv docker tag to v0.7.2 (#5336)
• 4f16aac chore(deps): update dependency astral-sh/uv to v0.7.2 (#5335)
• c0d5a5c Align number columns of markdown tables in reports (#4835)
• b52216a [automation] Auto-update linters version, help and documentation (#5330)
• 636085e chore(deps): update dependency yamllint to v1.37.1 (#5333)
• d96277c chore(deps): update dependency eslint-plugin-prettier to v5.3.1 (#5332)
• 8b2f83f chore(deps): update dependency redis to v6 (#5329)
• 87cb4a8 chore(deps): update zricethezav/gitleaks docker tag to v8.25.1 (#5328)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)